Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
File: a0P3ovQ2ixel4DXOS9km-KFC1os.mft (raw, json)
Hash identifier: Zc+jlcF91i3LiSJ0lJrK/2gkffBASe4mNlfsvtfYKrw=
Subject key identifier: 4D:E0:74:DD:9D:08:AA:C3:C0:48:E9:7B:7B:79:45:C9:07:0A:D7:E2
Authority key identifier: 6B:43:F7:A2:F4:36:8B:17:A5:E0:35:CE:4B:D9:26:F8:A1:42:D6:8B
Certificate issuer: /CN=6b43f7a2f4368b17a5e035ce4bd926f8a142d68b
Certificate serial: 019EC0363A32F869A59F38C041D5E8BF6A43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
Manifest number: 1959
Signing time: Sat 13 Jun 2026 09:00:39 +0000
Manifest this update: Sat 13 Jun 2026 09:00:39 +0000
Manifest next update: Sun 14 Jun 2026 09:00:39 +0000
Files and hashes: 1: MuWBM4y_8sU7g6FEyEJdZpch7MA.roa (hash: polciHBhuEIudcpVsohkilsNPMnWK3IMSBDrJXYyToE=)
2: a0P3ovQ2ixel4DXOS9km-KFC1os.crl (hash: ExkH8FNcWX2zR3c5kErbcdFpYD6zJoi7QBk8k3Pzi7A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:36:3a:32:f8:69:a5:9f:38:c0:41:d5:e8:bf:6a:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b43f7a2f4368b17a5e035ce4bd926f8a142d68b
Validity
Not Before: Jun 13 09:00:39 2026 GMT
Not After : Jun 14 09:00:39 2026 GMT
Subject: CN=4de074dd9d08aac3c048e97b7b7945c9070ad7e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f3:4a:2c:00:f1:9e:7e:ef:71:61:90:df:ac:
5e:87:12:16:b3:a7:34:18:de:ef:cb:3f:57:79:61:
67:dd:88:a5:83:f8:50:4b:08:b1:a5:0e:34:7e:b5:
e2:74:6a:53:8a:a5:96:60:bc:d9:96:af:a9:d2:5f:
3f:89:b2:9b:d1:af:6e:21:e2:9e:96:63:de:db:91:
75:9d:13:5f:1b:41:04:c3:0c:7b:96:48:e6:59:2b:
d5:6e:41:40:f9:9b:0a:71:6b:47:55:37:d4:53:03:
f8:53:54:69:2c:7c:37:5c:0e:84:b9:2c:7d:a0:3f:
d1:4d:a7:54:e2:1c:06:9d:0f:6b:d6:8a:c5:d9:8e:
cf:b2:cf:21:53:1e:63:af:6e:98:49:f8:ed:91:98:
1d:0d:2d:8e:50:fc:9e:01:63:e4:2b:3a:1c:ad:c7:
eb:09:9d:23:6b:be:31:d7:51:50:cb:98:c9:76:1e:
9f:d8:1f:c4:9e:9b:7f:54:d3:a2:1b:3a:0c:81:d9:
bd:fb:ae:66:d3:42:1e:f6:90:2f:24:c7:aa:3f:3f:
19:b2:6a:77:25:a3:f1:53:3f:42:db:6a:00:37:e5:
be:b6:e1:30:7f:6c:f9:b3:a6:bd:21:31:99:a9:bf:
b0:ab:bf:20:31:67:15:0f:74:56:b0:5e:f9:8b:a6:
85:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:E0:74:DD:9D:08:AA:C3:C0:48:E9:7B:7B:79:45:C9:07:0A:D7:E2
X509v3 Authority Key Identifier:
keyid:6B:43:F7:A2:F4:36:8B:17:A5:E0:35:CE:4B:D9:26:F8:A1:42:D6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:c5:5a:ea:de:34:e2:f8:c6:ef:55:72:d3:04:a9:b1:dc:18:
8d:4f:c3:24:78:20:4e:07:d7:21:d6:e7:78:ab:db:bb:6a:29:
e8:9f:0f:89:0e:05:1d:48:6d:08:16:57:b4:c6:e6:e1:a4:c9:
9d:b4:7d:f9:41:79:91:a5:4f:05:13:09:6e:a2:9a:9c:53:3a:
4c:48:7c:ff:1b:9e:53:dc:f4:8e:f5:cc:96:74:ae:2c:e1:b7:
b9:b1:bd:cf:90:59:61:d8:da:98:5c:2b:28:7e:02:d3:ee:05:
c0:ec:38:aa:10:11:ee:07:ac:8f:3f:37:50:48:0f:ba:72:d1:
4e:aa:5d:a7:ab:f1:47:64:bc:86:80:d8:e9:c5:1c:40:73:43:
68:73:3b:7c:14:d4:14:e7:0b:fc:7e:21:f5:4c:88:af:5a:a4:
8c:76:2d:93:15:f3:a5:a2:cd:d6:e4:2a:c5:7b:6b:85:d5:c0:
ed:b4:b3:1b:7a:52:fc:1f:3c:37:c1:c1:3f:f0:75:f3:5e:2d:
4b:5c:ff:77:80:82:4e:71:a8:61:5e:8c:6e:3a:76:c3:46:63:
61:00:3b:63:7c:27:67:55:a3:e9:cc:5b:df:0c:b9:07:8c:17:
de:2a:7c:9f:d3:b7:1a:f3:4b:2c:b7:af:a8:aa:4d:a5:1c:e3:
0b:59:87:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 14:20:35 2026 by rpki-client