Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
File: 9OcXTG90-poisK3uJRqNZDEjE_I.mft (raw, json)
Hash identifier: 7igHLdm9jUPoZ6hL8tRV3mBFKWpB8udmFghUX6X/qiw=
Subject key identifier: 31:AF:21:71:B7:8D:3C:5B:03:AB:34:FD:F6:C4:9E:F9:31:7C:C0:22
Authority key identifier: F4:E7:17:4C:6F:74:FA:9A:22:B0:AD:EE:25:1A:8D:64:31:23:13:F2
Certificate issuer: /CN=f4e7174c6f74fa9a22b0adee251a8d64312313f2
Certificate serial: 019EC1B6854D5F6F60B38FA1842EC2573775
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
Manifest number: 18EC
Signing time: Sat 13 Jun 2026 16:00:24 +0000
Manifest this update: Sat 13 Jun 2026 16:00:24 +0000
Manifest next update: Sun 14 Jun 2026 16:00:24 +0000
Files and hashes: 1: 9OcXTG90-poisK3uJRqNZDEjE_I.crl (hash: 8v8eHu9BWZeys9UGsFoqo5TfSrOkLOPQfjD+FlcQr78=)
2: n5-SbGgTWlbW_C1J7zQnQwhdk_I.roa (hash: 20MmpTiNHIRI615LwLOcDmRN7JohlEVDp5KlQ4ApT5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 16:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b6:85:4d:5f:6f:60:b3:8f:a1:84:2e:c2:57:37:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e7174c6f74fa9a22b0adee251a8d64312313f2
Validity
Not Before: Jun 13 16:00:24 2026 GMT
Not After : Jun 14 16:00:24 2026 GMT
Subject: CN=31af2171b78d3c5b03ab34fdf6c49ef9317cc022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:fd:d6:e9:ea:d4:15:ea:9e:58:f1:dc:25:1c:
33:a6:74:c5:d8:b1:75:48:6e:1d:25:bb:38:0a:c2:
00:34:e0:1b:d0:c8:d1:58:3c:39:bd:13:3d:e7:3d:
a5:56:b8:79:16:ea:9f:a9:ca:99:88:a5:13:c8:cc:
0d:9a:f9:d5:45:b0:98:63:e5:01:ce:9d:2a:c7:6f:
08:c0:58:03:f3:47:c2:d3:89:dd:bc:b4:3f:04:c4:
f1:bb:26:39:2f:41:d7:7d:8b:48:f0:f1:89:42:13:
a7:98:6c:cd:4f:a0:17:85:a0:9f:34:17:ba:f0:2d:
3c:85:a9:24:e7:18:81:0a:b6:80:96:bc:7e:2f:bb:
b1:0c:10:e1:c1:aa:f8:ff:71:34:bd:df:01:2a:d1:
36:ee:84:c1:23:52:bc:36:32:34:95:cc:63:b6:60:
c5:40:24:92:40:f6:6c:75:2b:63:45:9f:ff:a0:21:
e1:dd:7c:96:1d:a5:07:d3:86:14:df:be:92:b7:42:
58:23:f9:a8:c8:20:bc:38:e8:1e:6b:25:91:c5:04:
0a:68:2a:e8:c0:fd:3e:19:32:87:07:aa:a6:0c:79:
7d:f9:e1:f3:7d:07:09:f7:12:ab:0e:55:2b:c8:a3:
e4:68:dd:a1:61:ae:90:fd:0f:19:49:97:1d:ef:d7:
85:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:AF:21:71:B7:8D:3C:5B:03:AB:34:FD:F6:C4:9E:F9:31:7C:C0:22
X509v3 Authority Key Identifier:
keyid:F4:E7:17:4C:6F:74:FA:9A:22:B0:AD:EE:25:1A:8D:64:31:23:13:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:ee:86:d6:e8:5c:72:c6:be:78:b3:95:ef:dd:eb:cb:2c:53:
9f:71:30:f0:3f:5e:c5:ce:fb:20:6a:3f:47:68:e8:72:09:0c:
4c:69:03:5a:c0:d1:16:93:64:43:07:24:cb:24:1d:d8:36:f0:
df:bb:45:70:6f:60:d8:72:e4:f9:05:41:72:ff:26:68:14:8d:
09:07:5f:6a:28:fa:b1:7c:35:df:8b:bd:5e:58:29:26:02:a4:
55:b3:78:6e:81:8b:31:69:b1:17:e9:87:0d:da:e5:95:91:dd:
92:1f:fc:37:14:bf:31:6c:65:f1:6c:b8:50:41:6c:0b:bf:cd:
aa:eb:36:51:b5:44:e8:d8:25:9c:1c:79:a6:6f:9d:63:fe:18:
3c:68:cf:65:23:f2:9b:e5:63:c7:10:24:72:f9:59:bd:1f:74:
42:97:9e:88:ae:85:71:d8:dc:14:4e:c2:0c:47:88:77:18:6f:
c0:a9:a4:4d:93:d2:e3:4f:4b:91:da:a5:be:da:fa:43:b6:07:
fb:c1:c0:6b:03:13:2c:74:0a:3d:36:1b:34:da:f8:0e:f5:44:
fb:d9:ad:45:67:41:e5:24:45:a7:0a:53:1d:63:e5:50:2d:85:
69:b9:27:34:61:4f:fb:f6:7b:07:06:4e:ce:6d:e7:15:79:c0:
c2:42:c8:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:43:24 2026 by rpki-client