Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
File: A1KD5iNe2yXotUdJtihfXj74U3E.mft (raw, json)
Hash identifier: sCRqm5lbJc3BOMidWL2FHPJ985SwdkR4CdEqPVYBde0=
Subject key identifier: 48:28:47:DB:8B:EA:EA:31:EA:C4:28:70:A1:75:97:C5:19:99:96:04
Authority key identifier: 03:52:83:E6:23:5E:DB:25:E8:B5:47:49:B6:28:5F:5E:3E:F8:53:71
Certificate issuer: /CN=035283e6235edb25e8b54749b6285f5e3ef85371
Certificate serial: 019EC17FD821A536E49F919FCCA5BCE6641D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
Manifest number: 04A9
Signing time: Sat 13 Jun 2026 15:00:41 +0000
Manifest this update: Sat 13 Jun 2026 15:00:41 +0000
Manifest next update: Sun 14 Jun 2026 15:00:41 +0000
Files and hashes: 1: A1KD5iNe2yXotUdJtihfXj74U3E.crl (hash: tx4znYXZ8W1I92xYmdv4kzqQMJGbuC0ylkle+eKY4cc=)
2: yX9ydvOKgI9DtKgtlG1m9Fn2ZI8.roa (hash: qPtAu4bwy3Juh5so6bwqIDZWhOQpRsegMYoucr8NrwE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 15:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:7f:d8:21:a5:36:e4:9f:91:9f:cc:a5:bc:e6:64:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=035283e6235edb25e8b54749b6285f5e3ef85371
Validity
Not Before: Jun 13 15:00:41 2026 GMT
Not After : Jun 14 15:00:41 2026 GMT
Subject: CN=482847db8beaea31eac42870a17597c519999604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:62:f9:19:34:2e:9d:4a:92:4b:37:37:bf:5c:
f5:00:cb:3f:f2:d2:ec:0e:2d:1c:84:ee:d5:14:f9:
4f:74:00:ac:00:d0:44:5a:ff:30:06:b7:81:c0:df:
d4:81:0f:36:58:44:7f:60:47:05:a1:c9:82:91:6a:
73:9c:13:2f:35:a9:91:ed:74:31:b4:f8:f6:b4:90:
34:7d:69:27:39:9e:3c:34:9a:ff:6f:46:15:1b:5b:
2b:84:ef:26:a8:f7:76:e7:81:78:39:8c:32:87:b8:
2b:5c:76:d4:99:8b:ce:48:58:c1:73:69:da:3b:24:
16:c2:94:69:8d:0b:47:3c:df:4b:75:bd:6e:d9:8b:
d9:51:11:00:a5:9c:cb:ef:81:74:87:28:fc:5c:31:
e8:e9:fc:45:a3:82:a8:fe:c8:8a:59:b1:05:ec:07:
2b:bc:50:0a:9c:2b:25:13:49:c1:ed:86:4d:5e:a3:
33:85:a4:d8:19:e2:5c:e2:66:61:fc:d5:63:1b:d0:
85:6c:a1:fe:a6:97:df:df:99:6a:d7:64:aa:96:0b:
b1:55:52:1e:b4:65:8f:61:d4:4e:bc:6c:91:57:20:
69:78:92:72:dd:dd:0d:a7:39:c3:c6:ce:16:7c:6d:
ef:e6:7c:2d:f4:79:8f:29:f5:5e:78:4d:da:d5:39:
b6:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:28:47:DB:8B:EA:EA:31:EA:C4:28:70:A1:75:97:C5:19:99:96:04
X509v3 Authority Key Identifier:
keyid:03:52:83:E6:23:5E:DB:25:E8:B5:47:49:B6:28:5F:5E:3E:F8:53:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:16:16:09:9b:9b:20:a7:f2:6b:4f:fa:3c:0d:11:aa:6c:0b:
22:cc:fb:2f:0c:0d:5a:15:a7:c9:97:9b:ef:02:33:45:44:06:
83:33:8e:7d:08:d3:54:da:ad:f1:9b:6e:a2:5f:0e:52:f8:7e:
ed:d1:a6:35:61:30:e5:95:52:8a:f2:21:55:1f:aa:d7:b5:a0:
c4:c2:d3:66:fa:0a:2f:19:44:be:de:fa:10:8c:e7:48:a2:ce:
a9:b1:e7:37:64:73:83:63:af:c1:24:1e:d0:34:44:b5:51:26:
7d:40:47:49:99:ed:eb:8a:0e:36:a5:d7:a4:30:3c:e8:05:16:
04:72:e1:44:53:7c:5c:98:59:54:76:e8:2e:3e:33:9f:b5:55:
3f:09:f0:17:c4:10:e7:42:14:2e:a1:30:5a:9f:c5:2f:66:0f:
3c:85:f5:dc:f2:5d:64:4d:b2:a7:a2:51:3c:78:c3:2b:a2:75:
6c:17:0e:4e:b4:a9:c8:52:8e:ae:67:93:d5:0e:14:af:1b:6c:
8d:5e:97:de:38:2a:93:e3:98:1e:61:17:73:6c:72:30:2b:37:
17:32:f8:27:21:d5:cb:c8:13:de:ac:56:73:68:8a:0c:3e:fe:
a6:5b:90:73:6b:66:3b:d4:59:d4:e0:ec:b4:87:40:14:ab:58:
d9:c4:4e:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 02:32:03 2026 by rpki-client