Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
File: to-PMlFKGD6Xejx982Rz1WJgxKQ.mft (raw, json)
Hash identifier: t7GF9j/zCP83CiizAiUVXzSRwobB6dtHeQXR+KAwtg0=
Subject key identifier: 75:D6:FD:0A:FB:9C:75:93:C2:86:E7:EB:6B:D3:ED:1B:B4:E5:2D:6B
Authority key identifier: B6:8F:8F:32:51:4A:18:3E:97:7A:3C:7D:F3:64:73:D5:62:60:C4:A4
Certificate issuer: /CN=b68f8f32514a183e977a3c7df36473d56260c4a4
Certificate serial: 019EC1490731F58038C593E80A71C26ED450
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/to-PMlFKGD6Xejx982Rz1WJgxKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
Manifest number: 0DBC
Signing time: Sat 13 Jun 2026 14:00:49 +0000
Manifest this update: Sat 13 Jun 2026 14:00:49 +0000
Manifest next update: Sun 14 Jun 2026 14:00:49 +0000
Files and hashes: 1: UycNDBh6XIKJ82eOMM9nsWm3RUU.roa (hash: j5CuV0Ecvfd3t9K7/xrfKK4OIBdyHHKPYNpzUJ5l9jc=)
2: to-PMlFKGD6Xejx982Rz1WJgxKQ.crl (hash: M+8SJVLMbTwrNIJ6NDNYoG7cu0yg0IHhxIXC1d9GP70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/to-PMlFKGD6Xejx982Rz1WJgxKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 14:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:49:07:31:f5:80:38:c5:93:e8:0a:71:c2:6e:d4:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b68f8f32514a183e977a3c7df36473d56260c4a4
Validity
Not Before: Jun 13 14:00:49 2026 GMT
Not After : Jun 14 14:00:49 2026 GMT
Subject: CN=75d6fd0afb9c7593c286e7eb6bd3ed1bb4e52d6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:49:85:33:88:5f:0d:63:4f:f8:9c:2e:4c:4a:
e7:41:4a:b3:35:4b:5e:6f:9d:43:05:c7:c7:6d:d2:
77:23:e1:70:6f:dc:eb:32:9c:e2:9b:61:de:8a:f0:
48:d9:70:9c:08:0b:b8:79:fd:b6:c7:b0:77:c7:c4:
94:73:06:5d:e9:b7:2e:4d:a9:ec:7f:bf:4b:19:46:
97:11:e3:47:ae:a7:7c:ff:a2:79:d5:9e:f1:5c:f4:
47:65:28:45:7b:5b:c5:90:36:4f:74:70:5e:fd:ff:
d6:7a:2c:c8:8d:08:74:d5:43:9d:9d:83:f8:92:a1:
02:9f:40:7a:1d:07:b0:dd:84:49:4d:b0:5e:64:da:
40:c8:10:d8:5c:80:c5:24:28:a5:3f:d2:82:4f:8a:
52:b5:15:ce:00:8a:b9:6b:99:b4:af:8d:9c:5a:e7:
b1:78:20:1c:b1:58:73:cd:1f:d4:7a:30:8c:79:d9:
5d:8e:97:67:a1:d1:4c:56:74:aa:49:e7:5d:1e:48:
e7:73:c3:ce:81:db:34:7f:99:07:5b:5e:5a:25:25:
82:c9:df:bf:9e:95:c4:76:f1:5a:09:98:68:e8:46:
4d:8e:d9:37:ee:30:fd:83:34:0f:57:0e:b1:eb:b9:
df:89:b3:5e:f4:fa:e4:c1:02:19:3b:7e:2c:7b:3c:
e1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:D6:FD:0A:FB:9C:75:93:C2:86:E7:EB:6B:D3:ED:1B:B4:E5:2D:6B
X509v3 Authority Key Identifier:
keyid:B6:8F:8F:32:51:4A:18:3E:97:7A:3C:7D:F3:64:73:D5:62:60:C4:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/to-PMlFKGD6Xejx982Rz1WJgxKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:a2:94:28:65:9f:21:47:49:be:82:df:a0:01:a9:ad:cc:79:
8a:02:d0:a7:ac:74:36:4d:bb:34:53:4f:df:c0:22:3d:7c:e4:
8d:b1:12:da:76:e0:f2:2f:d3:7d:6e:bd:26:8c:02:1e:da:ef:
d8:a0:65:52:45:33:fd:63:9d:df:18:aa:a8:16:2a:cf:86:64:
67:bf:d5:35:cf:e8:bb:13:d2:0f:23:26:7b:03:8b:a0:40:87:
42:01:6a:43:2b:1a:7a:70:21:ac:fb:31:e1:b8:fc:da:47:48:
0d:d1:33:5f:83:c4:cf:fc:fe:65:b4:4b:a3:1f:ce:bb:49:14:
47:a5:cd:3c:e4:4b:bf:84:13:7e:6a:2d:33:7b:9c:d6:b8:fd:
c1:f0:10:ee:29:06:13:0e:e1:6f:b8:e1:00:8c:23:a4:e0:40:
51:05:54:91:ec:75:4e:9d:16:51:b3:b1:e6:e8:3d:17:e9:3a:
af:c0:ea:d2:0c:6d:be:94:3e:0d:c8:ff:af:0b:a8:5d:7f:88:
ac:82:87:10:bd:17:dd:44:73:43:6e:63:f9:31:ad:3a:1f:8e:
67:20:0e:dd:cc:d2:50:a6:a7:85:17:09:a2:2b:97:08:ee:66:
77:9b:77:30:68:32:53:57:b9:1f:9d:0a:98:58:d8:43:3a:ed:
92:87:1b:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:17:59 2026 by rpki-client