Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
File: 1Iml3dMALoAJmbXBhn94Z4G68T0.mft (raw, json)
Hash identifier: uHZI0AiTFT7v25soo8rjy946mC8sflcltbrrPAlNsZA=
Subject key identifier: C4:03:78:AE:DF:7C:C7:23:98:B2:57:EB:30:0A:6D:C5:64:12:A2:D4
Authority key identifier: D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
Certificate issuer: /CN=d489a5ddd3002e800999b5c1867f786781baf13d
Certificate serial: 019EBE7FD39534D1E94750BF25D979044EF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
Manifest number: 195A
Signing time: Sat 13 Jun 2026 01:01:48 +0000
Manifest this update: Sat 13 Jun 2026 01:01:48 +0000
Manifest next update: Sun 14 Jun 2026 01:01:48 +0000
Files and hashes: 1: 1Iml3dMALoAJmbXBhn94Z4G68T0.crl (hash: YnnMCrFEYNHxNhCgQTgiVwRJhmmDF+8nu5AB9a24z10=)
2: DaaeybnDDjVMgv8BbWZFPTyNFo4.roa (hash: QK+KxPGbli7LVnH/RtIUSITsGkxuycBQ6YKL9fWLh6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:7f:d3:95:34:d1:e9:47:50:bf:25:d9:79:04:4e:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d489a5ddd3002e800999b5c1867f786781baf13d
Validity
Not Before: Jun 13 01:01:48 2026 GMT
Not After : Jun 14 01:01:48 2026 GMT
Subject: CN=c40378aedf7cc72398b257eb300a6dc56412a2d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c8:d7:62:59:17:cf:29:0b:b4:18:b9:0a:13:
6b:46:91:ba:46:39:c3:7a:e3:47:4d:93:d4:83:78:
9a:7f:25:da:e7:ef:f1:75:a2:0d:d6:f0:b6:d2:7e:
4c:29:83:76:9c:87:9b:50:58:79:81:f6:98:f3:48:
a3:fd:6c:10:17:6d:95:79:46:11:a9:b9:28:f9:d8:
93:f2:1f:f3:4e:9e:a6:8f:99:2f:28:28:05:0e:80:
71:cf:e4:be:2e:e3:5f:c2:d9:23:47:db:f9:5a:af:
f5:61:42:e3:ce:b8:b2:36:08:d7:48:2c:44:de:09:
a1:69:5d:31:bf:7d:7d:9e:77:ea:28:2d:57:d5:f5:
2e:cd:74:ab:a0:15:15:e7:cb:ef:0d:fc:a9:e0:e3:
2d:4c:89:c7:15:57:ae:b8:c6:27:f8:d4:b0:2a:57:
f8:64:0a:8c:63:07:c8:5d:28:73:37:aa:2e:86:67:
50:5a:12:5b:6c:21:fd:22:96:7a:37:1b:a6:e7:25:
04:c9:9a:c0:67:cb:56:6f:c7:6e:06:81:90:33:2c:
94:17:87:bb:9d:47:8c:d6:d9:ef:1e:00:77:ea:03:
82:68:a3:a3:15:95:fc:db:28:78:c1:90:d0:5f:ef:
f4:60:be:cf:44:b9:f4:39:8f:3b:ad:79:5b:7d:92:
65:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:03:78:AE:DF:7C:C7:23:98:B2:57:EB:30:0A:6D:C5:64:12:A2:D4
X509v3 Authority Key Identifier:
keyid:D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:30:1e:b4:8e:c5:66:12:b2:2f:c4:d2:3b:b8:62:4e:65:e7:
a6:63:e0:35:74:38:ca:6e:75:fb:86:2a:c8:f4:a1:0a:70:ae:
c3:4a:da:0a:b1:1e:5e:15:1d:53:71:c5:3d:f6:b3:df:63:66:
24:b9:7a:cc:e9:81:4a:ed:5a:a8:ba:9f:f2:4a:76:46:50:dd:
ac:8f:bc:ba:51:1c:3c:23:aa:2d:48:f8:04:fb:63:be:6b:83:
06:27:5a:07:03:df:1f:b1:f5:5e:ab:2b:f4:42:a3:d4:05:af:
01:48:9f:ef:bf:fe:6b:7b:2e:a2:27:bc:4b:4e:32:18:04:2e:
8d:46:23:2f:88:58:e2:03:64:97:16:a9:0c:bb:7c:35:1d:ce:
0d:f6:d8:d9:f7:0f:2f:f9:42:ea:fb:30:5d:1d:de:17:99:bc:
87:dc:ab:f4:f0:ec:92:b3:4b:48:3d:d3:b3:69:cd:20:f4:72:
41:b3:24:97:46:27:13:73:4e:80:f2:09:85:a4:8a:97:49:b0:
62:af:09:78:9e:7e:73:03:a7:17:15:01:c1:7d:14:d8:0f:21:
0e:4a:a9:7a:0d:b2:26:91:e7:97:5a:e7:a6:69:f3:72:7e:5b:
c5:ab:47:a0:db:37:c3:d6:15:37:e2:d8:f8:97:74:85:8c:4e:
19:e8:a1:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:32:28 2026 by rpki-client