Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft
File: fexyg377vE6m3dS-lDYZFrTDYto.mft (raw, json)
Hash identifier: hUQunbDQ0xLEtEmlNSRywAmii5249sYMKU9Y0NhtbUw=
Subject key identifier: 1E:8D:8A:AE:C8:81:D7:06:D0:0D:6C:39:12:FA:2E:F4:BF:4F:46:D2
Authority key identifier: 7D:EC:72:83:7E:FB:BC:4E:A6:DD:D4:BE:94:36:19:16:B4:C3:62:DA
Certificate issuer: /CN=7dec72837efbbc4ea6ddd4be94361916b4c362da
Certificate serial: 019EC1EE025A4005C117A0069DE0E758B659
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft
Manifest number: 1043
Signing time: Sat 13 Jun 2026 17:01:01 +0000
Manifest this update: Sat 13 Jun 2026 17:01:01 +0000
Manifest next update: Sun 14 Jun 2026 17:01:01 +0000
Files and hashes: 1: 3g6ILoE9ejngNxt1ax6rYM1LQ60.roa (hash: LEUisAJ5IBxkUseMOfjHAnJQfW3VdAcMs8IPdC6dNso=)
2: fexyg377vE6m3dS-lDYZFrTDYto.crl (hash: zWK0CvPIdFj9RTJADfbQVjt8BxbCfKr9aChmysGqMIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft
rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ee:02:5a:40:05:c1:17:a0:06:9d:e0:e7:58:b6:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dec72837efbbc4ea6ddd4be94361916b4c362da
Validity
Not Before: Jun 13 17:01:01 2026 GMT
Not After : Jun 14 17:01:01 2026 GMT
Subject: CN=1e8d8aaec881d706d00d6c3912fa2ef4bf4f46d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:b3:76:d6:1f:45:c9:85:38:c5:4a:cb:a2:95:
7d:7f:3e:e8:c8:05:1f:0c:29:e5:96:11:76:cf:fd:
53:d7:e7:a4:4e:3c:9f:42:1a:98:e2:86:25:2a:4e:
67:b6:73:b9:29:71:a8:3e:36:68:e3:6f:37:20:e5:
52:94:08:f0:17:98:a2:be:a3:2c:74:f3:d2:1e:3f:
e9:e0:33:bc:78:0d:b5:f0:33:e2:c0:6d:91:7a:27:
e4:56:7c:98:87:01:59:38:e1:4d:d8:a3:8e:5b:09:
d5:c1:b3:60:54:d9:5c:9d:fd:b5:0b:d8:4d:f5:f4:
2e:5e:3c:a6:4f:e2:79:e4:58:51:58:fc:d8:a7:76:
5e:71:37:08:1a:59:08:73:73:50:e8:eb:e4:16:76:
14:9e:2e:38:2d:15:b4:93:67:f4:a8:d0:ae:b1:ae:
0d:3a:65:88:f4:0b:ad:49:94:90:a8:a0:ea:91:37:
ef:9e:01:d5:a1:f9:42:4d:74:80:6d:f1:35:98:8e:
d6:3d:8d:09:81:e3:e3:52:3b:70:7b:da:25:dd:ab:
49:cc:60:54:ce:b6:68:25:a3:e2:ba:f3:41:8d:da:
eb:3c:ec:b0:4e:3b:23:ac:66:b3:91:76:11:85:16:
9e:00:2a:65:ee:70:b2:96:e5:d6:97:b0:42:bd:06:
ce:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:8D:8A:AE:C8:81:D7:06:D0:0D:6C:39:12:FA:2E:F4:BF:4F:46:D2
X509v3 Authority Key Identifier:
keyid:7D:EC:72:83:7E:FB:BC:4E:A6:DD:D4:BE:94:36:19:16:B4:C3:62:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:4d:7f:9e:2e:58:38:46:50:e0:77:bc:7b:4a:9b:66:4c:ba:
7f:b1:56:a7:9a:34:26:2e:d9:a8:c9:51:40:8e:23:a2:27:07:
34:e3:91:d3:e2:38:40:87:bc:23:91:0e:4f:a3:d2:58:38:ec:
61:cf:c2:c9:e4:9f:42:b4:23:3a:d7:14:54:ae:ea:be:e9:e6:
65:48:ef:b8:5e:18:1f:da:15:4a:b6:a5:f2:f0:fc:84:64:2e:
9f:b0:d4:bd:7b:59:5f:3f:6f:41:a5:bf:09:10:c5:ea:1b:a4:
d5:a4:1a:a1:4b:43:ae:8d:dd:5e:93:1d:6e:49:36:c5:b7:0c:
13:7e:83:f6:22:61:d7:5b:71:70:e6:c5:4d:ad:28:fa:14:74:
cd:00:88:02:28:5d:c8:be:3c:c4:60:60:ad:af:02:46:51:de:
8d:c8:d9:55:52:8f:f4:1b:1a:b4:50:27:fc:7d:58:6b:b0:e1:
ff:d9:c3:36:c9:7c:0b:a7:c0:e8:57:fa:3e:4e:09:fd:0d:91:
0a:41:5f:c9:9c:0d:a4:e3:9e:6b:9a:d5:fe:1c:6b:d8:b8:38:
99:9c:08:ad:91:1d:4b:60:cc:86:31:af:aa:c2:72:84:71:4c:
33:4c:75:8b:3b:63:e9:8c:60:47:34:7b:b3:18:f9:e0:d5:a6:
e3:74:f9:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 04:15:39 2026 by rpki-client