Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft
File: tj8U3_NUhamVlBKGMDe4XfqfE9g.mft (raw, json)
Hash identifier: eZ9crw3J+CCRtb6VLoaqjVKtAINjNpQMDYSnsvjA7ow=
Subject key identifier: 4D:BE:CA:C0:77:0B:DD:DC:FF:96:69:00:9D:6E:1B:FB:08:F2:CA:A4
Authority key identifier: B6:3F:14:DF:F3:54:85:A9:95:94:12:86:30:37:B8:5D:FA:9F:13:D8
Certificate issuer: /CN=b63f14dff35485a9959412863037b85dfa9f13d8
Certificate serial: 019EBF5A441D9AD8343A98658BF5AC9E9406
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tj8U3_NUhamVlBKGMDe4XfqfE9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft
Manifest number: 088F
Signing time: Sat 13 Jun 2026 05:00:24 +0000
Manifest this update: Sat 13 Jun 2026 05:00:24 +0000
Manifest next update: Sun 14 Jun 2026 05:00:24 +0000
Files and hashes: 1: gEvPQohUnuc28gSU_LnB2n8byio.asa (hash: Fubnzf0xJmvbucD3B1n2PG0e9xPoaWRyPDCkp6ZRe2c=)
2: tj8U3_NUhamVlBKGMDe4XfqfE9g.crl (hash: rBTo6MpOieIm53EynlI2xIhFtV1hlOviO++v6VHdTCk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/tj8U3_NUhamVlBKGMDe4XfqfE9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5a:44:1d:9a:d8:34:3a:98:65:8b:f5:ac:9e:94:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b63f14dff35485a9959412863037b85dfa9f13d8
Validity
Not Before: Jun 13 05:00:24 2026 GMT
Not After : Jun 14 05:00:24 2026 GMT
Subject: CN=4dbecac0770bdddcff9669009d6e1bfb08f2caa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:89:7b:b1:0e:c9:77:8b:77:10:a9:50:b3:d3:
1d:8a:50:61:d0:95:41:c5:aa:8e:d3:a1:2b:51:6a:
5e:50:06:7f:47:e3:b1:77:bd:4c:a8:ad:f7:c2:39:
9d:b0:6c:1e:99:a8:f8:5e:3e:29:53:42:64:35:8f:
22:c4:92:61:51:f6:ae:64:a3:74:f9:71:6f:38:57:
18:72:ed:f5:ba:cc:f9:c4:14:8e:e3:d4:4c:cf:65:
f8:89:4a:1c:86:da:05:5d:de:7f:32:37:22:dc:ec:
d8:53:74:30:11:75:1a:9d:d8:6f:b4:9e:0c:de:ce:
85:be:6a:02:9a:ec:9a:63:ac:17:10:04:d6:e1:b1:
8d:fd:4e:ed:a2:20:4f:7c:c0:fb:de:47:e5:35:8a:
9c:4b:ad:07:0c:25:34:38:90:6b:40:e3:fa:31:62:
b1:ee:75:9b:85:d3:21:e1:6c:43:4c:23:e2:fc:30:
9f:e6:16:a9:b9:a4:fd:9c:50:e2:66:d1:e6:fd:31:
6d:c4:c1:c5:9c:3f:a3:ae:c7:3e:5a:f1:22:96:11:
2c:73:59:97:5c:73:31:2b:af:49:b9:cd:b6:28:ff:
5c:6a:4f:59:bb:0b:74:85:24:12:0e:03:8b:c5:b4:
9a:93:2e:e8:13:2e:f5:72:fc:f3:32:73:28:c3:8e:
0b:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:BE:CA:C0:77:0B:DD:DC:FF:96:69:00:9D:6E:1B:FB:08:F2:CA:A4
X509v3 Authority Key Identifier:
keyid:B6:3F:14:DF:F3:54:85:A9:95:94:12:86:30:37:B8:5D:FA:9F:13:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tj8U3_NUhamVlBKGMDe4XfqfE9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:2d:3b:b0:b1:5b:17:d7:74:29:0a:cb:08:26:a3:07:fc:9a:
79:07:d5:1b:66:1f:40:df:75:20:a1:e4:33:a0:45:6b:33:2a:
27:38:c9:4c:5d:ca:fc:97:64:e6:f3:9c:9e:d5:89:30:67:bc:
34:32:b9:c3:92:73:4e:00:c4:ae:33:3b:9b:db:7b:c2:00:89:
be:69:f7:90:ba:8c:04:67:4a:9c:b2:45:9a:25:7f:a5:4d:10:
ce:2b:0e:64:e0:f5:fd:17:2f:77:cf:36:0c:f3:15:9c:b8:ea:
da:fa:2e:60:a2:5b:e3:33:5d:dc:fc:2e:18:7b:d7:43:b1:8c:
50:d2:0c:80:44:f6:27:29:38:81:aa:3f:8f:e5:7d:35:9c:ba:
d4:80:c1:14:63:a2:6c:1f:64:f2:1c:35:93:f5:6f:c3:d1:28:
df:db:5c:d6:4d:26:cf:bf:eb:c6:89:b7:02:7a:ac:17:5c:38:
7b:84:1c:28:5a:ca:4d:0c:2c:b5:4d:98:de:f5:2b:50:8e:e4:
b4:b3:c0:bf:49:76:f6:92:f4:76:9f:0a:af:f4:f7:7c:2b:da:
ca:1a:3b:bf:22:44:a3:d8:19:42:b7:4e:6f:e4:57:ce:84:72:
1f:a5:c6:04:ba:f9:ec:ef:23:ed:e9:31:ba:7b:e1:d7:f3:75:
7c:53:e0:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:50:55 2026 by rpki-client