Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
File: cNvqB1PfCD5XgrufOAtdeZy3igY.mft (raw, json)
Hash identifier: ybcNaHCUy2I9A22KVp9Vt2xCX5XsETjvs8jNcuOqq9U=
Subject key identifier: D8:F1:21:52:35:86:EA:A3:D5:F3:E3:3B:BD:20:A6:34:37:D4:6D:86
Authority key identifier: 70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
Certificate issuer: /CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Certificate serial: 019ED42B97B7F1EFCB97234A0458D108303D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
Manifest number: 18F8
Signing time: Wed 17 Jun 2026 06:01:27 +0000
Manifest this update: Wed 17 Jun 2026 06:01:27 +0000
Manifest next update: Thu 18 Jun 2026 06:01:27 +0000
Files and hashes: 1: YeLaacDEqyOHodEKhBUtu92hvRw.roa (hash: Ji1cHzcmwBaizYoDGG5KY1yTxLM1jIXJ3gtR7NQt17s=)
2: cNvqB1PfCD5XgrufOAtdeZy3igY.crl (hash: RQ05UsVKkLn9Ed2EZRELnMcqZHNgnq4sRgnwSf3crOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d4:2b:97:b7:f1:ef:cb:97:23:4a:04:58:d1:08:30:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Validity
Not Before: Jun 17 06:01:27 2026 GMT
Not After : Jun 18 06:01:27 2026 GMT
Subject: CN=d8f121523586eaa3d5f3e33bbd20a63437d46d86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b0:43:2e:78:8c:1a:d9:e7:8d:fd:79:8f:20:
d4:22:17:d0:3b:77:0a:2e:a2:67:b5:59:61:4b:64:
03:f1:40:b4:44:44:a2:c6:cd:1a:4f:a6:9b:20:ee:
a9:71:23:29:f6:f1:19:cf:08:6e:e5:50:2f:7b:82:
7a:22:11:1d:d4:5b:92:54:43:e3:14:9d:42:6f:a1:
97:9e:4a:d6:91:90:b8:27:59:59:80:9e:fc:46:72:
0f:9c:db:9f:06:37:da:3c:09:3d:af:85:46:04:5e:
38:01:80:7e:4a:6f:6c:bd:a1:d5:06:6f:a2:07:be:
5d:11:64:8f:88:5e:4a:ff:a7:4a:0d:0a:8a:74:4d:
b1:ca:8c:bd:46:a1:44:ee:7b:e2:b1:27:c2:93:fc:
0c:ea:e5:e7:75:28:2c:a0:2a:67:b1:7b:6a:fa:b8:
79:63:13:6d:c9:65:97:5c:a2:33:55:23:1c:5b:bd:
2e:2e:65:22:be:72:66:1c:f0:3a:13:92:88:4e:7d:
27:07:ab:1b:d1:f7:6c:c7:3c:a4:7b:be:f1:18:00:
cb:7a:0c:46:0e:92:4c:9c:65:cf:87:16:fd:07:f7:
a9:dc:ec:15:83:45:9d:f2:b8:97:60:dc:11:ce:7a:
31:0b:d0:5f:8a:1f:71:11:68:54:5d:78:41:15:d6:
1d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:F1:21:52:35:86:EA:A3:D5:F3:E3:3B:BD:20:A6:34:37:D4:6D:86
X509v3 Authority Key Identifier:
keyid:70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:c0:3f:67:47:77:2d:81:d4:c6:4d:45:61:4f:89:1a:7b:5b:
33:2b:ab:7e:94:34:f0:eb:58:8a:7f:06:63:c4:c3:97:3d:68:
e9:a7:02:bd:23:56:39:65:3a:c5:94:51:30:e9:fe:d6:b5:76:
3a:bd:c5:4c:c6:a6:40:6c:78:07:c9:2e:dd:57:fb:5f:9e:ed:
23:37:81:84:b0:df:5f:2d:47:d0:4e:37:d0:b6:a6:df:fa:16:
24:d2:1e:37:d3:a0:1c:7f:53:8c:72:8d:56:cc:5d:e4:16:18:
7d:8a:4e:c9:f7:e0:ae:ad:9a:30:8b:73:2d:3f:6b:b2:2f:a5:
1a:f6:0a:bc:0c:d4:bb:51:ad:5c:4b:56:be:4a:cc:47:60:96:
62:15:e4:00:db:3b:da:47:fc:be:12:81:22:98:b1:59:57:15:
03:25:45:df:55:b4:18:ac:32:54:0b:f6:22:bf:54:42:b8:a4:
17:74:26:bb:dd:09:59:b4:bb:3d:3b:63:64:49:80:70:01:93:
01:f3:e1:75:41:03:93:8a:e6:0b:6b:cc:c0:42:07:95:ce:da:
c7:36:fe:67:ef:0e:f4:0d:9f:69:e5:78:92:9d:4b:9e:25:76:
cc:85:d3:a2:27:16:8c:f4:ee:02:6d:43:1a:d1:12:5e:ad:dc:
bf:8e:ac:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 09:11:48 2026 by rpki-client