Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft
File: pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft (raw, json)
Hash identifier: vyIKhx2q1RAA+bVBQy13sw/7Pilwpnf7ZrLJXU6dGeY=
Subject key identifier: D8:9B:61:ED:CD:09:4C:C0:1F:1B:38:77:AF:AB:14:8B:8D:98:DB:1F
Authority key identifier: A5:2F:65:24:08:5F:A1:0E:8C:09:8A:C2:B5:82:8A:1F:88:C6:91:3C
Certificate issuer: /CN=a52f6524085fa10e8c098ac2b5828a1f88c6913c
Certificate serial: 019EC36E3C572CE81277CFA346BB4E50A420
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft
Manifest number: 195D
Signing time: Sun 14 Jun 2026 00:00:41 +0000
Manifest this update: Sun 14 Jun 2026 00:00:41 +0000
Manifest next update: Mon 15 Jun 2026 00:00:41 +0000
Files and hashes: 1: 5Gr2q7ZQUry_6juJo6TbPmIZ_GI.roa (hash: CLid1uYJD/tWmQGqtEiBJvjm9/bPdenK+e3VYv871Vk=)
2: pS9lJAhfoQ6MCYrCtYKKH4jGkTw.crl (hash: 4h0DENrLs/JL3hBNQWJ8ni6mSe6FbG0It7otZ+g/z+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 00:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:6e:3c:57:2c:e8:12:77:cf:a3:46:bb:4e:50:a4:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a52f6524085fa10e8c098ac2b5828a1f88c6913c
Validity
Not Before: Jun 14 00:00:41 2026 GMT
Not After : Jun 15 00:00:41 2026 GMT
Subject: CN=d89b61edcd094cc01f1b3877afab148b8d98db1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:58:a1:e0:0f:91:a6:4c:4e:14:19:30:cf:e7:
bf:eb:19:a4:80:bb:af:ba:3d:e4:2a:bb:7c:90:60:
12:e5:76:3a:d2:c4:f6:1e:4e:c2:ce:ba:94:25:83:
fb:e5:0e:f5:2b:02:b4:ca:57:0b:c5:2e:84:0b:1e:
e8:72:10:ea:37:68:a0:65:f2:e9:2b:e0:60:df:cd:
da:dc:8f:a6:b3:c2:bd:f4:4c:8c:83:8b:9f:c5:75:
68:8b:31:57:55:19:24:95:52:ee:98:92:66:1d:66:
91:e3:5a:34:14:02:9d:c1:bf:9f:78:13:74:06:e7:
dc:97:14:4a:8f:7b:96:8e:60:4e:68:de:4e:75:1c:
d0:e3:2a:c7:95:25:72:b7:1b:08:d3:34:45:df:6e:
e4:31:af:13:f4:d8:62:84:a8:bc:d7:61:72:74:ec:
db:ad:df:45:41:2a:ed:01:19:ef:89:bb:55:55:a3:
64:fd:49:01:ac:1a:17:4d:f7:7d:4a:3c:42:a0:29:
cb:92:cd:df:37:4d:97:5f:3b:60:ae:19:12:c0:f6:
da:17:bd:e2:e6:dd:f7:ed:ff:16:45:a6:a9:a0:51:
2f:a6:72:87:2d:be:d6:aa:e2:7f:97:7a:11:4c:e9:
e2:be:96:93:88:ed:18:ac:06:02:1d:57:0c:c3:e7:
ad:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:9B:61:ED:CD:09:4C:C0:1F:1B:38:77:AF:AB:14:8B:8D:98:DB:1F
X509v3 Authority Key Identifier:
keyid:A5:2F:65:24:08:5F:A1:0E:8C:09:8A:C2:B5:82:8A:1F:88:C6:91:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:42:f4:eb:21:df:d5:d7:71:18:b8:61:ee:86:40:c5:c8:d2:
49:0f:38:4a:ec:fa:7c:2a:cc:33:cc:c5:fb:0a:75:42:4e:45:
fd:94:5c:66:0a:d9:9b:46:d3:18:8f:65:79:01:5b:8b:91:11:
6f:e2:96:56:52:de:64:05:bf:30:8b:23:98:e7:ae:46:ee:60:
04:a0:5a:69:52:8e:8e:32:57:7b:f0:a2:6e:91:5b:d3:ca:4a:
03:1b:d4:94:62:60:81:59:45:bb:a4:6f:af:b1:f4:e8:70:f1:
20:a5:0c:cd:96:6e:46:fe:bc:3b:83:9d:91:97:8d:78:73:fd:
c3:ce:ad:fc:38:02:1f:40:2f:9d:0a:c4:4d:11:65:47:82:43:
22:9d:0b:0f:12:32:ee:9a:a0:f4:bc:d6:95:d3:da:b1:fe:fc:
61:57:ab:21:e4:66:e6:e6:99:01:a8:fe:98:9b:55:f3:f8:24:
23:b6:10:01:fe:64:8a:14:da:24:a5:70:24:8d:b6:5b:95:56:
d9:63:ac:bd:30:05:38:27:c3:0e:b4:86:61:14:97:a1:a4:92:
e2:70:ad:49:4b:dc:2d:56:4b:e4:d0:13:cb:47:24:8a:58:c0:
bd:4c:70:c6:d7:5f:b4:d7:34:07:76:58:7b:0e:b6:ed:f4:d8:
4e:f0:e9:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 08:23:59 2026 by rpki-client