Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
File: 9j_pwTQEHOvaVoufkI4q7zirf3U.mft (raw, json)
Hash identifier: LCobU5LIM5liysexCuXA+m1OCds2TYN6uzQwrNZApsM=
Subject key identifier: FF:B5:96:C6:AC:E2:4B:8F:7C:C6:CA:2C:CA:DF:A7:57:6D:56:07:85
Authority key identifier: F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
Certificate issuer: /CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Certificate serial: 019EC111CFC9FA8ABF53795D2A8C9F25DF71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
Manifest number: 0FB1
Signing time: Sat 13 Jun 2026 13:00:30 +0000
Manifest this update: Sat 13 Jun 2026 13:00:30 +0000
Manifest next update: Sun 14 Jun 2026 13:00:30 +0000
Files and hashes: 1: 9j_pwTQEHOvaVoufkI4q7zirf3U.crl (hash: U0VynYx4U0RxZqlhFANWVHYGtSVOnHEN32sI56KBUjA=)
2: ol_JEp9GJvGNVjYx1Pw8RWe4xLQ.roa (hash: tRtrIVFRMFtnff6mODXc8+s312Nmn2BxI0riNWUQx48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:11:cf:c9:fa:8a:bf:53:79:5d:2a:8c:9f:25:df:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Validity
Not Before: Jun 13 13:00:30 2026 GMT
Not After : Jun 14 13:00:30 2026 GMT
Subject: CN=ffb596c6ace24b8f7cc6ca2ccadfa7576d560785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ff:7b:9c:5f:f8:e0:9b:ab:0a:ee:fa:c9:84:
d2:d3:81:e0:f0:30:61:03:17:47:b9:77:7d:9d:1c:
67:28:6c:d7:a6:f9:ef:5f:23:5b:90:31:a0:f0:fe:
ae:72:a3:3c:68:65:be:50:c1:57:81:f3:7b:c2:21:
6e:aa:3e:bb:b2:ce:d8:e5:65:9f:35:0a:d4:fe:f3:
bf:dc:fe:97:34:37:42:6d:96:aa:ae:79:da:9e:8f:
41:81:b4:d2:6e:4b:6c:19:cb:20:12:42:40:c6:44:
32:31:6a:59:11:a3:16:9d:c1:5d:46:ec:e3:1c:41:
e1:48:e6:64:70:08:4b:96:0a:d6:aa:f4:a9:7e:65:
4e:cb:33:56:a5:7e:09:18:91:9a:c6:57:6f:17:7f:
d9:1f:1e:8f:91:91:74:3c:72:25:b6:e8:c5:e2:2d:
57:3f:32:1e:d9:6e:3b:f2:17:92:f5:1e:c1:b1:f2:
9a:55:02:c6:6e:ed:98:dc:2e:32:a4:98:d2:cc:f5:
43:bd:69:47:af:df:cb:2c:c7:bf:b4:12:7e:36:f9:
f5:87:6c:94:66:96:34:67:3e:dd:91:84:9e:34:96:
cc:cd:a1:1c:cb:a4:a3:93:b7:4f:88:59:00:53:67:
72:c9:93:a4:22:ef:48:21:ec:df:e9:5e:e5:ba:63:
bb:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:B5:96:C6:AC:E2:4B:8F:7C:C6:CA:2C:CA:DF:A7:57:6D:56:07:85
X509v3 Authority Key Identifier:
keyid:F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:f3:7e:59:19:a2:69:89:bd:46:9d:5f:e7:6a:4d:b9:d2:cd:
9f:96:e9:4b:b4:14:5f:7d:89:bd:5b:18:32:f0:5a:da:5c:fd:
17:fe:2a:14:bd:33:cc:a8:1e:fd:a8:c1:61:2b:88:66:a4:73:
df:4b:72:02:47:e6:6b:f7:5b:ef:93:f9:99:41:73:db:14:bb:
a7:62:0e:5a:0e:a4:33:76:63:d9:56:2c:4b:81:28:56:ef:88:
22:e8:5b:e0:96:89:5f:53:21:c8:ba:fb:f2:b0:60:d3:c9:63:
5b:2d:63:96:39:31:c0:03:e8:76:26:c3:9d:d1:80:29:83:41:
31:52:17:56:ab:d6:5e:f7:b8:d3:b9:06:19:9f:39:3b:db:70:
3e:12:9a:dc:f0:ee:ab:0e:b9:8d:e0:20:9c:f6:72:5c:9e:20:
14:28:71:ab:72:e6:91:6b:db:cc:a0:ed:a3:68:e8:08:53:4e:
6d:02:99:47:d1:eb:b5:c9:2b:63:12:ea:d7:40:c1:73:51:6f:
be:2b:fe:7a:68:d9:b1:0a:f2:61:d0:e9:29:1e:28:c1:06:22:
a8:df:55:e5:8f:40:f0:53:6a:31:6e:7c:28:15:07:55:c6:b9:
6f:2d:c2:8f:6d:5a:06:16:b5:a2:bb:c0:18:fa:b4:4c:80:d5:
78:83:6c:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:01:20 2026 by rpki-client