Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
File: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft (raw, json)
Hash identifier: 7XsWmnBNgPXxY+0Mn2+aHsXOd623ihOBfFh8gYYt/kU=
Subject key identifier: FA:7A:39:BD:76:48:80:07:08:81:CD:5E:C1:05:1A:28:47:71:14:5E
Authority key identifier: B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F
Certificate issuer: /CN=b56daa6f850414a13f650df094506628a46dc12f
Certificate serial: 019EC06DDE8949038957002929715B2A6275
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
Manifest number: 145B
Signing time: Sat 13 Jun 2026 10:01:26 +0000
Manifest this update: Sat 13 Jun 2026 10:01:26 +0000
Manifest next update: Sun 14 Jun 2026 10:01:26 +0000
Files and hashes: 1: Dj17YO7HbdYhrlszRZcVGHooOSk.asa (hash: VPbBekLjuZ5VGctqJAL3rNUq/TMi3GHdtgrxOZNiX2M=)
2: mXBxUCBeYvygw5Q-UOtlDcj2bp0.asa (hash: KGJVD6V5txLQAjQLlr+mNudFF1tQTaGRrNO28803Imc=)
3: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl (hash: F/72EI7UNKFDaMxv1eB7xJ5/lM6vhTEWkNOal5Xut4U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:6d:de:89:49:03:89:57:00:29:29:71:5b:2a:62:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b56daa6f850414a13f650df094506628a46dc12f
Validity
Not Before: Jun 13 10:01:26 2026 GMT
Not After : Jun 14 10:01:26 2026 GMT
Subject: CN=fa7a39bd764880070881cd5ec1051a284771145e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:0c:35:7b:94:e9:95:cc:bd:c6:e4:4f:3d:30:
19:67:ce:0a:75:8d:73:1e:01:df:7e:a3:16:27:4c:
7c:bb:a6:2a:f1:31:37:04:fa:f4:e0:89:0b:7b:0d:
95:fa:07:29:92:25:b8:46:77:7e:f1:f3:95:54:da:
39:ff:7d:e4:76:d3:92:6a:83:3b:9d:b4:ba:4d:4b:
ee:32:dc:f5:0c:41:e7:2b:3c:d9:87:01:6a:1f:9f:
34:82:ab:79:51:52:34:43:f0:7b:93:8f:c1:18:7d:
03:f1:91:fe:28:6a:ce:39:e5:8e:be:f5:4e:61:50:
22:a2:54:be:4f:c8:a5:aa:dd:9c:0f:77:ac:85:76:
38:2c:57:4e:46:b8:77:6a:7d:b0:83:54:16:fb:ab:
8d:56:7a:57:6b:ce:d2:70:85:eb:c1:fb:47:c1:6b:
ff:20:d9:72:25:bd:60:3e:58:08:3e:af:15:73:13:
ac:c0:03:37:b0:08:a5:9b:61:a9:ea:de:e6:1f:4f:
15:53:47:1e:63:31:9b:01:00:62:79:1d:2a:e8:e7:
73:6b:63:b3:07:12:61:d9:25:dd:08:01:8d:8b:63:
56:78:91:e8:ee:10:63:42:b5:c9:c6:88:e4:dc:c8:
f6:e3:3d:a4:67:3c:fd:d2:57:a8:65:82:62:ed:83:
7d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:7A:39:BD:76:48:80:07:08:81:CD:5E:C1:05:1A:28:47:71:14:5E
X509v3 Authority Key Identifier:
keyid:B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:55:52:13:fe:61:f0:16:f3:d6:56:b1:d5:85:63:86:7b:07:
6f:77:f0:e7:c4:fa:6c:60:14:9a:ce:4d:8d:f4:4d:b3:7c:a7:
76:14:b9:3a:97:e0:43:4e:b7:b2:1a:ef:dc:77:e5:7e:00:9c:
65:1c:fb:5d:74:75:bc:5d:fc:99:89:82:e8:73:b4:e2:dc:b6:
98:33:da:ff:e7:d0:8e:0a:39:fe:10:e4:a7:b2:b9:72:1c:9b:
26:29:89:07:20:0e:87:b7:06:f5:95:aa:10:da:c2:e3:9a:ce:
62:45:4f:a0:ce:f2:ec:4b:12:a1:54:5e:fc:4c:08:06:4b:14:
56:da:68:e3:5b:ea:75:0c:11:a6:92:e9:3a:dd:50:70:7c:89:
58:86:8a:1e:25:30:a8:ca:28:b6:23:42:eb:4f:1f:04:fb:4d:
55:2a:21:9e:37:94:4f:99:a5:e7:9c:4b:59:5e:1a:c3:8d:25:
c6:84:a1:11:a1:72:4d:d6:9a:78:e8:64:be:22:8a:2a:6b:ca:
68:d1:6c:1d:ab:62:df:87:4f:00:00:9c:af:ea:eb:86:47:8a:
1d:0b:ef:0d:fe:9e:0f:09:2b:af:57:97:ed:55:f2:09:97:cb:
51:f3:2b:cf:49:b3:36:26:81:04:ef:1a:c7:01:71:a0:84:ac:
88:9b:8b:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:57:51 2026 by rpki-client