Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/f8e599-b57a-44a2-9c35-9ee53442c3e9/1/CKi4_gyIWkXySFUjNC6bqNyJ5o8.mft
File: CKi4_gyIWkXySFUjNC6bqNyJ5o8.mft (raw, json)
Hash identifier: 9lAkHPg8eLTeTPtQqjnMVDVIPYKzsMMTThmyQgT1eV8=
Subject key identifier: E6:0C:56:28:AE:DB:0B:36:6E:6D:FC:FC:ED:3C:A1:DE:0B:08:86:A7
Authority key identifier: 08:A8:B8:FE:0C:88:5A:45:F2:48:55:23:34:2E:9B:A8:DC:89:E6:8F
Certificate issuer: /CN=08a8b8fe0c885a45f2485523342e9ba8dc89e68f
Certificate serial: 019EC25BA673093B24FE711E5FEF0522BDD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKi4_gyIWkXySFUjNC6bqNyJ5o8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/f8e599-b57a-44a2-9c35-9ee53442c3e9/1/CKi4_gyIWkXySFUjNC6bqNyJ5o8.mft
Manifest number: 076A
Signing time: Sat 13 Jun 2026 19:00:46 +0000
Manifest this update: Sat 13 Jun 2026 19:00:46 +0000
Manifest next update: Sun 14 Jun 2026 19:00:46 +0000
Files and hashes: 1: CKi4_gyIWkXySFUjNC6bqNyJ5o8.crl (hash: Xqi/mst504TlVjs+9+IfzwpcIRQIsMTfRhKrODlighQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/f8e599-b57a-44a2-9c35-9ee53442c3e9/1/CKi4_gyIWkXySFUjNC6bqNyJ5o8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/f8e599-b57a-44a2-9c35-9ee53442c3e9/1/CKi4_gyIWkXySFUjNC6bqNyJ5o8.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKi4_gyIWkXySFUjNC6bqNyJ5o8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:5b:a6:73:09:3b:24:fe:71:1e:5f:ef:05:22:bd:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a8b8fe0c885a45f2485523342e9ba8dc89e68f
Validity
Not Before: Jun 13 19:00:46 2026 GMT
Not After : Jun 14 19:00:46 2026 GMT
Subject: CN=e60c5628aedb0b366e6dfcfced3ca1de0b0886a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0a:a0:13:d8:19:37:1e:b3:7f:c0:2c:32:8b:
a0:f3:c0:6f:b4:6c:fe:e7:7f:c3:d1:00:77:3c:40:
fc:a2:71:44:0a:60:6c:2e:3c:81:32:63:c0:93:13:
15:1b:03:03:54:8a:4b:d2:0b:79:6e:80:3c:0f:1e:
4a:ab:70:a7:54:f0:87:01:3d:0c:b6:50:5c:24:5f:
a7:58:a8:d0:5b:a1:ce:f7:6a:4a:48:95:a7:c7:10:
e6:40:df:6a:45:0c:f4:0e:6a:97:ee:e3:37:56:c9:
95:f7:1d:11:aa:f6:46:79:05:15:8d:bf:32:e7:74:
4e:d3:88:22:4c:f9:89:10:7a:0f:15:3b:2f:e8:ac:
45:22:39:30:0b:52:ad:c0:22:e0:43:f7:02:c0:81:
04:fc:ba:e0:42:fa:d5:8f:52:4c:33:a2:35:ae:31:
e8:d8:bd:64:09:7c:04:25:69:d9:68:92:f2:83:7c:
38:b0:cf:0a:df:f5:ed:71:47:4e:9f:7a:80:6f:04:
78:ab:d9:99:41:40:b4:d7:cb:35:42:8c:a2:20:ab:
76:e2:f3:92:d6:3a:bb:d9:65:85:5d:5e:cc:82:73:
51:46:f4:c5:59:7e:ef:5a:45:d5:f2:00:e9:17:1b:
21:f4:e7:ab:6c:ac:ba:d1:75:55:2a:cc:dd:52:4b:
0f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:0C:56:28:AE:DB:0B:36:6E:6D:FC:FC:ED:3C:A1:DE:0B:08:86:A7
X509v3 Authority Key Identifier:
keyid:08:A8:B8:FE:0C:88:5A:45:F2:48:55:23:34:2E:9B:A8:DC:89:E6:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKi4_gyIWkXySFUjNC6bqNyJ5o8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/f8e599-b57a-44a2-9c35-9ee53442c3e9/1/CKi4_gyIWkXySFUjNC6bqNyJ5o8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/f8e599-b57a-44a2-9c35-9ee53442c3e9/1/CKi4_gyIWkXySFUjNC6bqNyJ5o8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:c8:eb:d9:a2:44:ba:cd:90:a9:6a:76:1a:a2:7b:cd:0d:0b:
6f:c6:e8:fe:e0:d5:a4:c3:ad:c7:3a:6a:f2:24:a0:38:d0:9b:
f2:cd:c3:1d:46:d2:6c:76:a1:47:6d:44:d0:12:3a:10:98:57:
39:82:2f:de:75:02:a7:b6:be:7b:d0:df:4a:f7:3a:5a:52:5d:
92:53:8c:f6:90:56:3b:45:f1:07:b4:25:5a:de:bd:28:af:38:
75:2f:49:30:c2:f6:12:e5:c2:37:ad:20:c9:cd:5f:f2:4b:6c:
bf:ff:c8:de:a7:e5:cb:3a:81:af:82:df:52:fd:82:e9:e1:05:
ad:88:20:c8:7e:61:6e:43:33:fc:b3:90:eb:8d:e4:bf:02:46:
51:79:36:c6:b4:78:4e:cc:9b:53:02:a6:6f:d3:d4:9d:ea:8b:
5d:9d:a5:69:91:80:dd:72:95:16:8a:49:aa:23:c6:08:81:ec:
20:c6:d1:be:0e:f3:f6:3f:8d:f0:e6:d0:df:2c:16:4f:f5:96:
37:5b:47:06:30:5c:43:2b:c1:02:56:85:d7:ca:f9:22:51:bf:
b6:74:b1:b4:0d:dd:9d:40:ad:27:ec:aa:53:18:38:5e:32:4b:
63:88:dd:fe:b0:b4:14:97:16:9f:2a:dc:92:cb:cb:46:0d:54:
0b:ef:b4:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:09:15 2026 by rpki-client