Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.mft
File: hrIjA95LCocPz-e2VWwCT3XHajQ.mft (raw, json)
Hash identifier: eL6Dt7yczRMoDr2cCYzyW5QPFhGvyb6FFNxVQgBdt0Y=
Subject key identifier: 61:BF:83:69:0B:D3:3A:86:E2:5A:B5:C4:35:FD:E5:B7:B5:89:A1:F2
Authority key identifier: 86:B2:23:03:DE:4B:0A:87:0F:CF:E7:B6:55:6C:02:4F:75:C7:6A:34
Certificate issuer: /CN=86b22303de4b0a870fcfe7b6556c024f75c76a34
Certificate serial: 019EBFFF9E32218B06CB59A5367053DE1B2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hrIjA95LCocPz-e2VWwCT3XHajQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.mft
Manifest number: 145B
Signing time: Sat 13 Jun 2026 08:01:00 +0000
Manifest this update: Sat 13 Jun 2026 08:01:00 +0000
Manifest next update: Sun 14 Jun 2026 08:01:00 +0000
Files and hashes: 1: PreLEhXrBI_UKFJOTXBGTgHoYF0.roa (hash: YyPA9bxM1XffwGYRaKy9yqFp9gB0LZF+tWz17YqGofw=)
2: fW-vmq3lP_3MyQWkZHy-CbMNL3I.roa (hash: tS5uriJcYFbYG/ALXKZnCG1DLjQm/ccSm8DkPwEWxXI=)
3: hrIjA95LCocPz-e2VWwCT3XHajQ.crl (hash: wsLg9f1ch2AqEVReSjipBOYSdvZjGy8SKnx8j4vS5Ww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hrIjA95LCocPz-e2VWwCT3XHajQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:ff:9e:32:21:8b:06:cb:59:a5:36:70:53:de:1b:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86b22303de4b0a870fcfe7b6556c024f75c76a34
Validity
Not Before: Jun 13 08:01:00 2026 GMT
Not After : Jun 14 08:01:00 2026 GMT
Subject: CN=61bf83690bd33a86e25ab5c435fde5b7b589a1f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b1:fb:7b:23:88:89:4b:53:7a:3f:2e:02:19:
7b:f6:6a:a8:3f:63:6c:53:4f:c1:e8:d8:ec:47:6f:
d7:af:22:b1:70:70:49:43:12:ad:4e:ba:55:0b:42:
35:34:88:b2:05:5b:2b:91:ab:ba:4c:dd:d2:dc:3d:
c6:b2:b5:66:1e:ca:00:40:09:e4:38:53:c5:64:db:
d7:3e:1d:78:ed:8d:a4:e2:b0:c6:c9:d4:41:27:c4:
97:ec:71:70:0a:c9:f7:6f:15:ee:e4:dc:d7:63:3d:
b5:fb:42:4a:80:4d:27:41:fb:e8:b6:a1:54:bc:66:
72:6b:82:4f:18:aa:eb:0d:1e:5a:ed:73:f8:16:c6:
ed:e4:1f:bf:ad:69:22:42:29:11:65:b4:4c:7d:07:
23:fd:24:91:a1:76:96:df:39:22:49:e7:fc:94:81:
95:1d:24:21:35:ed:2d:6e:76:cd:49:19:6c:1b:e5:
73:37:72:a8:00:95:57:76:38:81:25:9a:f9:69:17:
0d:c8:03:12:42:57:f3:7a:db:c6:08:e9:c2:f4:85:
5c:21:00:76:1f:72:89:89:f7:f5:d9:fd:40:74:18:
a9:1c:9f:87:db:91:df:30:c2:b5:78:61:d5:ac:4c:
46:44:87:7b:74:c9:12:77:76:19:70:85:b7:b3:25:
60:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:BF:83:69:0B:D3:3A:86:E2:5A:B5:C4:35:FD:E5:B7:B5:89:A1:F2
X509v3 Authority Key Identifier:
keyid:86:B2:23:03:DE:4B:0A:87:0F:CF:E7:B6:55:6C:02:4F:75:C7:6A:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hrIjA95LCocPz-e2VWwCT3XHajQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:ff:0f:99:5a:e4:41:2e:7e:b9:0b:f7:63:d5:4e:c6:a2:d9:
2d:bd:68:ac:4c:37:75:b0:d4:9c:98:71:d2:8a:81:7f:56:82:
4a:70:dc:59:df:f4:d8:35:bd:67:22:55:65:7d:f7:6c:11:c8:
f7:8a:a1:47:8e:5c:61:2f:91:60:a3:c7:34:25:0b:92:d3:b8:
63:de:82:ef:e5:4c:96:9f:39:fb:58:7f:f4:49:be:20:92:70:
26:86:7b:66:bb:23:f0:1e:9d:69:80:93:87:27:fb:17:24:c1:
bd:6d:f2:64:c5:fb:ab:5e:9f:d7:41:db:07:ff:02:a5:7b:3a:
a0:54:87:74:da:54:08:60:e2:99:ea:9d:a1:50:f9:06:bf:5b:
04:e5:0e:62:d9:68:4a:e7:11:5c:38:01:cc:43:dc:b5:91:4d:
ea:09:b7:9c:a4:81:9f:e2:a8:c6:a2:99:f7:33:36:35:b7:18:
56:12:c0:3f:08:e7:3f:69:68:67:c9:28:04:4f:60:dd:8f:4f:
62:ec:22:54:18:ec:a3:ab:7c:48:91:9e:f4:56:c0:4d:ee:e2:
0d:d7:38:d6:03:ac:b5:d2:b5:b9:27:16:c1:21:b4:91:c2:1b:
83:74:88:0a:e0:01:5c:ab:fd:92:6e:bb:19:76:63:89:d2:ce:
c5:94:12:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 16:55:10 2026 by rpki-client