Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
File: TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft (raw, json)
Hash identifier: ofXcqcNg5e5We8TJ7daAkr+HDlDksVxR+lBIZL9OBAs=
Subject key identifier: 9C:29:B6:51:B9:20:39:9A:9D:60:65:BC:97:DD:32:C1:5C:D0:27:69
Authority key identifier: 4D:15:27:D1:83:9B:F8:30:36:0D:71:59:01:34:35:4E:6D:90:46:97
Certificate issuer: /CN=4d1527d1839bf830360d71590134354e6d904697
Certificate serial: 019EC25C2608E3C30BC31C7FFD9CA3BDF731
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
Manifest number: 195D
Signing time: Sat 13 Jun 2026 19:01:19 +0000
Manifest this update: Sat 13 Jun 2026 19:01:19 +0000
Manifest next update: Sun 14 Jun 2026 19:01:19 +0000
Files and hashes: 1: 5IRwRfh8Fym_BtVi99L5BSoQylk.roa (hash: zVO1DYlBvdQtHAVcl2WpceQxT4SVa8kf2zP0TMDOH1A=)
2: TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl (hash: 9w+gxnc8PbseHHYnDz9wzvPsosr1TwFIuCQrrwRW1Hg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:5c:26:08:e3:c3:0b:c3:1c:7f:fd:9c:a3:bd:f7:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d1527d1839bf830360d71590134354e6d904697
Validity
Not Before: Jun 13 19:01:19 2026 GMT
Not After : Jun 14 19:01:19 2026 GMT
Subject: CN=9c29b651b920399a9d6065bc97dd32c15cd02769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:44:87:ac:a5:68:85:af:00:10:a8:b4:1e:f8:
07:76:27:9b:71:00:1c:b1:b4:e3:8b:9e:43:c4:02:
a2:d1:b8:50:ea:87:d3:75:fe:5e:78:35:1b:63:d0:
74:89:7b:62:4f:38:08:68:bf:c3:3c:88:33:03:5f:
c4:02:b8:3f:38:da:0d:11:6b:2c:db:94:d9:7a:34:
33:f5:be:10:04:76:84:7c:53:a5:11:ba:9f:7c:85:
28:4b:76:5a:b4:d2:d2:6e:9a:66:6b:0d:1e:1f:3a:
2f:e7:a2:78:99:b8:cb:04:39:ad:a8:3a:ad:de:92:
4c:d6:c6:3b:03:d6:51:5e:e9:60:9e:35:76:15:cd:
c7:ed:3b:79:b6:14:18:b3:f7:c5:53:16:79:b9:c1:
39:3d:5b:66:87:a8:f0:d0:90:60:06:b3:42:9e:6b:
bc:3f:d6:66:2f:c8:70:a5:e1:d1:24:32:5c:49:58:
c5:49:f7:86:3a:c0:ae:2f:ff:d3:d3:f4:a4:ae:5a:
e8:8c:54:73:95:0e:56:a5:77:b1:a6:2e:dd:04:38:
8c:d3:36:34:54:4c:90:95:c5:20:c4:a7:4e:73:85:
c5:b0:f8:d5:2d:dc:a7:b4:60:45:c6:07:80:03:56:
45:c6:20:24:11:5f:bb:bc:39:36:7d:da:7c:6a:7b:
f7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:29:B6:51:B9:20:39:9A:9D:60:65:BC:97:DD:32:C1:5C:D0:27:69
X509v3 Authority Key Identifier:
keyid:4D:15:27:D1:83:9B:F8:30:36:0D:71:59:01:34:35:4E:6D:90:46:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:29:49:75:fe:7c:70:c1:47:7f:fa:28:0d:83:96:97:d0:6e:
45:70:0a:e3:e7:df:de:42:07:97:46:6d:80:f6:36:b9:6f:d8:
5c:1b:7e:c8:46:de:ec:d0:9e:1c:45:aa:ff:dd:f3:0c:6b:3c:
61:a0:a1:1c:66:6d:fe:99:ba:20:d9:0a:b4:70:31:de:0a:c3:
1d:8a:b0:61:9b:cd:7a:8d:44:ba:48:89:c9:fd:92:75:82:97:
2f:4f:83:3c:71:0a:0c:63:e9:00:ef:12:c8:d5:57:f7:36:04:
68:ad:ed:c1:4e:2f:1c:33:69:5c:38:34:83:28:f0:da:51:d1:
b7:5d:5d:2d:e1:d5:6a:af:75:0a:3f:99:96:59:56:1d:2d:64:
7b:76:00:39:f5:2b:dc:31:00:c4:90:63:c4:7d:f0:70:b8:48:
65:30:d9:f4:38:d6:f4:5a:f3:3a:cd:cc:8c:8f:1a:2e:c4:2d:
83:a0:82:f6:4b:8d:c9:17:a6:98:bc:17:f6:bf:79:6d:88:bd:
73:c7:cf:40:ab:a0:85:7c:67:68:ec:91:bc:81:ad:bb:5a:2f:
dc:4b:ca:97:44:bb:0d:c6:cf:cd:1e:da:bf:c2:d6:cb:97:9a:
c4:78:02:c5:dc:d2:c9:13:2a:a3:df:3b:1a:c7:40:03:68:8e:
c5:6b:b7:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 04:15:23 2026 by rpki-client