Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
File: dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft (raw, json)
Hash identifier: 60pdDxvwMpJxKW7kTbOrA4sbPhr4slzT1t6gslWSJkI=
Subject key identifier: 93:64:15:02:7E:D3:2E:9C:8E:A0:1C:C7:13:F6:7B:96:6F:EB:76:8D
Authority key identifier: 74:9D:8A:43:28:93:0B:93:8F:A8:60:18:B1:E4:47:EE:4D:8D:A8:F9
Certificate issuer: /CN=749d8a4328930b938fa86018b1e447ee4d8da8f9
Certificate serial: 019EC3A5BDAEC94B87B3250D6FEEB5ABE036
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
Manifest number: 02D4
Signing time: Sun 14 Jun 2026 01:01:19 +0000
Manifest this update: Sun 14 Jun 2026 01:01:19 +0000
Manifest next update: Mon 15 Jun 2026 01:01:19 +0000
Files and hashes: 1: dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl (hash: CJ5FnqshLPDgjhfDTRhW/oGVZu+sVPEDE3SZPqBz4lk=)
2: i5v8Z7TLwK1d1522dak6QJo-ZdI.roa (hash: dORF0I0Mm7ul7rA3/PIS0cDu8jhdXdBq0BX2+YuQ/kM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:a5:bd:ae:c9:4b:87:b3:25:0d:6f:ee:b5:ab:e0:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749d8a4328930b938fa86018b1e447ee4d8da8f9
Validity
Not Before: Jun 14 01:01:19 2026 GMT
Not After : Jun 15 01:01:19 2026 GMT
Subject: CN=936415027ed32e9c8ea01cc713f67b966feb768d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:81:18:27:9b:61:e5:b0:67:a2:6e:3e:14:22:
2d:23:e7:8e:fe:95:b2:86:b6:69:a8:8a:da:bb:06:
41:59:7e:12:ed:7b:e5:1f:e4:b6:62:53:23:b5:7d:
ea:00:bb:45:8a:31:52:16:97:d2:af:49:2b:67:ed:
03:64:92:45:3b:73:ec:df:7f:8e:13:2e:70:31:75:
e8:cd:27:95:ab:51:4f:bf:af:d7:6a:e5:fe:c0:2c:
3e:3f:a2:2a:e3:c8:fa:d4:85:63:2b:f8:66:f7:b0:
64:66:5c:0d:e9:e4:81:45:8d:1e:e3:3d:61:e1:e1:
86:f2:08:ea:ab:37:7a:b9:3f:04:c4:6f:68:25:19:
00:8a:1a:cb:d7:95:3c:f2:1c:72:44:9c:ae:47:07:
73:88:1f:ca:bd:73:66:e5:bc:14:9a:d9:fc:3d:c3:
f0:e9:30:65:46:28:d4:35:0a:11:f9:69:c3:d0:72:
d7:55:87:99:63:f3:df:51:4a:39:77:bf:7f:20:15:
2e:d5:a4:a8:ef:9f:f5:c1:25:84:3b:6b:03:3b:f9:
70:09:91:cf:1b:95:0b:5d:d9:c1:85:df:35:d1:c4:
63:4d:37:bb:e1:75:c3:3b:44:f0:dd:d0:d0:cc:59:
8f:1f:08:aa:89:01:5c:cc:34:d4:22:60:9f:67:6b:
47:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:64:15:02:7E:D3:2E:9C:8E:A0:1C:C7:13:F6:7B:96:6F:EB:76:8D
X509v3 Authority Key Identifier:
keyid:74:9D:8A:43:28:93:0B:93:8F:A8:60:18:B1:E4:47:EE:4D:8D:A8:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:49:2d:de:b4:5e:f6:01:62:55:88:67:bd:02:08:19:fa:97:
d1:c7:da:21:15:a8:0b:4e:5c:6d:cb:f4:ac:47:a4:e9:f7:e6:
a4:25:d1:3e:0a:71:21:8b:d1:18:20:bf:b6:8e:09:d5:ed:94:
c2:60:57:79:45:d8:93:64:51:7a:e1:ed:92:e9:ba:c0:1a:c5:
52:14:48:8f:1e:ee:7e:de:c4:fc:69:1c:e8:b2:73:7f:e5:6d:
29:a5:81:f6:d7:74:7d:fa:76:78:f4:3b:aa:29:50:42:c6:51:
a0:b8:27:19:b5:94:b1:5b:92:c8:41:e7:5f:19:1b:8f:87:9a:
23:81:bd:53:ba:49:4d:2f:9c:aa:f7:34:8e:99:c5:c7:69:f9:
47:c2:59:ce:c8:37:71:87:62:25:c7:df:a4:21:05:8e:76:77:
08:42:f4:84:52:c7:ec:c0:38:0e:e3:dd:15:e6:0e:ee:33:26:
0c:43:99:f7:85:c0:67:42:d8:eb:b3:90:d0:49:a0:e1:7c:3c:
3f:cc:e0:5a:3e:e9:d1:95:18:14:ac:91:6a:e0:80:95:20:a8:
5c:fd:5c:fd:9d:41:ab:e5:64:83:ba:c6:13:9d:31:64:39:f2:
0f:93:31:7f:b3:2f:b8:07:7a:08:96:37:bb:b1:21:2e:b9:fd:
de:af:8b:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 04:15:34 2026 by rpki-client