Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
File: kTOA6LhQRU2zgd3euawsyKL2JTE.mft (raw, json)
Hash identifier: 2/lyqbp6jZnUSnnfQ4P3QasDI2GyWA7vGyXaQqtat50=
Subject key identifier: 68:D6:31:FF:DB:90:43:24:D9:7D:28:0C:EC:24:60:98:16:FC:DB:B5
Authority key identifier: 91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
Certificate issuer: /CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Certificate serial: 019EBFC8CE19BD6EC50DFE6612C0673810A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
Manifest number: 0855
Signing time: Sat 13 Jun 2026 07:01:08 +0000
Manifest this update: Sat 13 Jun 2026 07:01:08 +0000
Manifest next update: Sun 14 Jun 2026 07:01:08 +0000
Files and hashes: 1: kTOA6LhQRU2zgd3euawsyKL2JTE.crl (hash: /2W/xLug6OBMrP9NCFSLzl36F+127xgr0BbVgsCa7LU=)
2: oWAA3712bfUBzXFDQ4qEFnRk4-8.roa (hash: IL/tQvQ5PPq+dUr5LLZdpWR+gfGz/0GU5klPWCUecLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 07:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c8:ce:19:bd:6e:c5:0d:fe:66:12:c0:67:38:10:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Validity
Not Before: Jun 13 07:01:08 2026 GMT
Not After : Jun 14 07:01:08 2026 GMT
Subject: CN=68d631ffdb904324d97d280cec24609816fcdbb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:89:c4:14:f4:ed:94:e9:aa:4b:3f:56:e0:36:
23:90:75:a6:ce:46:b8:55:df:ef:d1:b7:d3:42:31:
4a:90:43:22:db:48:e0:dd:fd:96:7b:50:90:ff:de:
7f:f4:06:44:98:53:c3:e9:76:a7:1b:be:00:f9:14:
db:a6:e4:38:37:52:22:6d:87:bf:a6:53:23:c2:de:
ba:d5:84:a2:ee:ad:5b:c3:ae:c4:90:c6:25:d0:df:
42:75:74:e1:07:50:ca:0c:23:6d:57:ff:5b:b7:b7:
a8:5a:ef:40:2f:be:cb:c3:2c:46:83:4d:60:73:3d:
9e:94:43:45:cf:72:38:b6:7b:98:be:4a:97:d0:dc:
a2:c5:29:15:c1:12:8c:1d:9b:c2:ba:c8:31:da:15:
94:38:c9:fc:b8:00:c1:53:6f:42:08:17:c1:2d:b4:
b9:9d:25:2f:cd:aa:bc:c7:e8:9b:87:c6:ec:dd:c1:
28:63:a8:19:30:c7:27:4f:f1:6e:1a:ab:32:6c:a6:
f1:81:31:5f:ef:e4:06:83:e7:21:7c:82:f4:52:ec:
77:32:43:c9:fd:b8:6e:32:16:ae:27:c7:09:eb:06:
a0:c6:6c:05:72:05:c0:47:c3:e4:77:9a:da:84:4d:
b7:cc:41:82:1b:d4:1a:65:fd:8c:b1:ff:20:d2:c5:
2c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D6:31:FF:DB:90:43:24:D9:7D:28:0C:EC:24:60:98:16:FC:DB:B5
X509v3 Authority Key Identifier:
keyid:91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:c4:80:32:e8:29:ab:cd:e6:86:b3:af:c0:18:1f:48:29:eb:
11:e5:f3:d1:e1:e7:7f:30:54:32:ba:52:f9:c5:bd:a9:da:14:
66:cd:f7:22:53:9a:3c:3d:0c:2c:1b:e3:9f:33:04:7c:b4:7c:
69:c7:46:9b:c5:99:75:67:89:81:89:a9:2c:19:37:3e:c0:21:
04:9d:f3:14:92:2d:ca:32:18:6b:42:78:0a:e1:4b:11:23:d9:
c3:34:be:40:7a:69:ba:04:ac:34:ae:3c:d9:20:d5:50:ed:47:
90:09:d3:bd:63:22:ab:75:0b:40:0c:8e:75:d8:5a:b4:45:00:
8c:20:2e:94:c3:19:dc:8d:79:d0:5f:46:02:75:28:c6:11:5f:
50:74:37:ae:e9:9d:df:13:3e:60:52:13:c2:66:ef:73:2d:58:
80:76:db:03:69:c3:a2:68:87:ab:4b:e7:76:5e:b6:ab:28:25:
43:d6:0a:91:da:7c:fb:de:01:07:33:8d:75:5c:79:62:1c:80:
66:25:7b:5f:24:7f:03:c1:b9:f7:52:3f:61:9e:b4:76:bc:ab:
81:38:dc:1b:3f:d4:36:65:76:60:bb:4b:83:ee:e7:2d:a9:26:
c6:9e:a2:58:81:71:d4:9c:bb:2a:9d:97:90:9a:4e:7f:90:61:
28:41:8e:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 17:36:41 2026 by rpki-client