Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
File: un1KwTROw43OmXaNeKEU6_fxfYU.mft (raw, json)
Hash identifier: JE8AzZTi+TC+KUiyk4a9XsQy9X71lQ22pA9KnI+pCYo=
Subject key identifier: 30:0F:48:FD:8E:4C:4A:7D:E3:08:8A:58:28:1C:2C:F8:CA:BF:B6:C1
Authority key identifier: BA:7D:4A:C1:34:4E:C3:8D:CE:99:76:8D:78:A1:14:EB:F7:F1:7D:85
Certificate issuer: /CN=ba7d4ac1344ec38dce99768d78a114ebf7f17d85
Certificate serial: 019EC1B70A34AD70FB34D9FD428117A35C68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
Manifest number: 1014
Signing time: Sat 13 Jun 2026 16:00:58 +0000
Manifest this update: Sat 13 Jun 2026 16:00:58 +0000
Manifest next update: Sun 14 Jun 2026 16:00:58 +0000
Files and hashes: 1: o1To2AOAuoLP-nWNuTs68gOKGAE.roa (hash: IQkZrzowlCF0UtrbBWeIReby2n7O6GCUFgToo++Y5B0=)
2: un1KwTROw43OmXaNeKEU6_fxfYU.crl (hash: tKzGUZp3ZCXgvGETSuPFtGw2K8T9w5Xv/eLOqH1yMJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 16:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b7:0a:34:ad:70:fb:34:d9:fd:42:81:17:a3:5c:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba7d4ac1344ec38dce99768d78a114ebf7f17d85
Validity
Not Before: Jun 13 16:00:58 2026 GMT
Not After : Jun 14 16:00:58 2026 GMT
Subject: CN=300f48fd8e4c4a7de3088a58281c2cf8cabfb6c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c1:1a:ce:76:6d:85:2d:1e:db:bf:a3:59:b9:
d5:f9:f4:c9:de:e1:96:52:4a:0d:a2:ac:50:a6:96:
c2:e2:9c:8c:1d:77:95:c8:b8:7f:51:be:77:f9:28:
81:4c:e4:3a:c4:5f:ba:1d:cd:d0:9b:51:b4:dd:5a:
69:60:18:6a:8f:f8:72:76:7c:3a:ae:31:ba:1c:02:
e9:7b:12:76:43:38:7f:f4:44:88:48:48:03:4f:7c:
04:11:9f:7e:6b:81:d8:3c:c1:5d:44:b8:f2:70:f8:
f8:83:87:de:96:a7:18:fd:cb:e0:34:33:43:16:ba:
d4:8a:ce:19:cc:eb:a5:37:bd:77:8e:09:4c:1b:80:
ad:91:7f:6b:75:a8:33:bf:6e:77:06:d9:44:8f:30:
cd:d6:0a:79:6f:aa:99:13:02:05:4e:0b:e7:14:dd:
3c:30:5e:f6:38:56:01:64:d3:e8:c9:3a:c3:48:34:
01:13:02:84:35:e8:ee:a6:ce:8d:1c:9f:d9:9a:bb:
2e:f8:84:ae:e8:ec:47:76:01:54:89:9a:5b:5f:50:
8c:f6:ff:6e:04:9e:12:61:f9:2b:2f:ec:6e:f2:b3:
3e:3d:7c:e1:19:58:66:56:b7:d3:18:a7:92:c5:ba:
cc:d1:92:d9:66:91:b8:5d:5c:37:41:c6:14:a9:4f:
3b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:0F:48:FD:8E:4C:4A:7D:E3:08:8A:58:28:1C:2C:F8:CA:BF:B6:C1
X509v3 Authority Key Identifier:
keyid:BA:7D:4A:C1:34:4E:C3:8D:CE:99:76:8D:78:A1:14:EB:F7:F1:7D:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:5f:c6:dc:04:43:ec:2b:b1:fc:85:f6:77:d6:78:a4:64:5e:
34:3d:e5:1c:4e:9f:d9:ff:a0:92:0e:88:30:65:86:55:54:7e:
da:cc:68:6b:e5:cd:62:99:50:c8:84:f7:03:4a:50:d7:58:07:
c3:b8:b0:c5:f3:f5:95:ab:dd:23:3f:4e:a9:c8:ac:1d:32:5f:
5e:ce:43:9b:38:25:3f:41:00:ca:2e:31:a7:b4:94:36:71:a3:
98:99:c4:27:c3:3e:76:63:31:2d:ae:a2:f7:2e:01:d2:b1:1b:
4a:57:0f:d9:29:52:a1:fe:27:26:c6:9c:fa:86:43:42:db:71:
c2:90:bc:8d:39:19:f8:99:0e:91:e9:52:34:ca:37:4e:ce:2a:
22:bc:f3:f8:20:37:6d:ec:f1:22:27:91:ac:b8:24:19:dc:6a:
57:2a:8c:3e:ba:1e:e0:c9:ef:98:e6:bd:1a:82:32:cb:88:a5:
cf:65:f4:96:31:f8:31:02:ef:a5:96:58:b8:8e:36:bb:1e:5c:
ce:69:1e:e9:f2:80:87:85:4d:4a:14:23:ce:5c:e1:52:95:44:
7f:83:a0:7c:a8:d3:ce:5b:52:67:92:2b:08:e1:9d:63:c8:59:
b9:50:8f:76:45:88:07:e3:13:9e:ff:c3:b3:bf:00:d3:8b:4d:
e8:64:02:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:39:33 2026 by rpki-client