Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
File: 0krezYS7F0i9NbmezqRncuAeyTU.mft (raw, json)
Hash identifier: UMN/UVLOcVMHvNtWPh7gzaT3Op1ZdEc5L44c9yXKL4U=
Subject key identifier: 12:A1:7C:36:32:DF:3F:C4:F1:92:20:B9:C7:A8:8B:0D:BC:A0:AF:34
Authority key identifier: D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35
Certificate issuer: /CN=d24adecd84bb1748bd35b99ecea46772e01ec935
Certificate serial: 019EBFC8DE74B20E6847E59F372CA1031A52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
Manifest number: 195D
Signing time: Sat 13 Jun 2026 07:01:12 +0000
Manifest this update: Sat 13 Jun 2026 07:01:12 +0000
Manifest next update: Sun 14 Jun 2026 07:01:12 +0000
Files and hashes: 1: 0krezYS7F0i9NbmezqRncuAeyTU.crl (hash: 2bzr49ZUuvq2efL/WfhXrwh+IZUx9DDPUC2xGDJ+tvY=)
2: THoFRGj7we5B4orPSAEMrZc2v9I.roa (hash: nx8ZhN2tRi/Vu5vUK7/jsnnIAjWNN0LM5ZVA5cvmy60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c8:de:74:b2:0e:68:47:e5:9f:37:2c:a1:03:1a:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24adecd84bb1748bd35b99ecea46772e01ec935
Validity
Not Before: Jun 13 07:01:12 2026 GMT
Not After : Jun 14 07:01:12 2026 GMT
Subject: CN=12a17c3632df3fc4f19220b9c7a88b0dbca0af34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:fb:0e:65:f3:5c:b3:e7:38:4a:bf:64:07:78:
cc:fb:52:34:5c:92:a7:e1:e4:c5:81:83:cb:3d:9d:
99:1e:52:b9:50:18:c6:37:e7:88:78:08:ab:ad:90:
d6:3d:6d:3a:8f:d3:7e:0e:1d:36:08:79:52:ee:78:
15:a1:d3:ee:95:ad:f3:e5:83:de:71:48:40:8a:27:
77:e9:24:2f:17:a8:93:77:95:39:cb:ac:a0:13:e3:
83:1b:21:50:f5:9e:32:2c:b5:a3:ea:8f:dc:8e:6e:
03:b7:2f:68:b0:52:f1:56:10:34:2b:70:5b:ee:9e:
1d:a1:7c:81:ce:0b:f2:5f:a8:b5:42:51:e1:7f:55:
3a:87:5d:4a:0b:10:f9:af:f2:b5:15:a9:9d:83:91:
99:9b:be:03:08:2e:34:1c:5e:d8:a5:af:18:11:a5:
fe:37:54:89:26:10:55:59:6a:56:ad:25:5d:8c:94:
4f:49:f7:7f:4a:07:57:e8:95:6a:b3:5b:de:6d:72:
48:c7:a6:1f:8b:68:c4:7b:eb:26:01:f6:b9:b7:0c:
3f:4b:8a:0a:4a:42:a7:79:cc:44:10:b9:41:39:2c:
a9:e7:61:b1:b6:f1:7d:30:0f:45:e2:93:92:36:8f:
4d:4f:c4:5d:31:51:0f:af:3f:f0:42:8d:fa:bd:31:
d9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A1:7C:36:32:DF:3F:C4:F1:92:20:B9:C7:A8:8B:0D:BC:A0:AF:34
X509v3 Authority Key Identifier:
keyid:D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:1f:8f:89:c2:4b:ee:fe:cd:52:7a:0f:cb:0a:54:c3:d0:98:
8f:dd:19:11:41:22:8a:e2:ee:90:8f:43:c2:37:a8:1f:01:e2:
ca:97:e7:e3:c7:b2:39:b7:c0:28:09:74:14:88:e1:cf:6d:85:
2d:25:4a:9d:09:83:8d:ff:ef:93:3d:ea:6a:40:a3:58:3d:a9:
c8:75:38:e0:6c:f1:8f:99:d3:b3:b4:41:ed:a1:c7:58:0d:fd:
bf:50:50:ec:fc:91:68:b1:43:eb:d5:c7:f3:63:27:b8:8f:65:
21:91:bf:18:4e:72:c8:97:b7:f6:ac:c6:ba:99:1d:c1:6f:df:
87:39:5e:0c:32:8f:a3:bd:35:b1:e3:52:a6:a4:99:09:c9:92:
73:7a:7a:6b:c2:6f:7e:20:35:3d:97:8d:05:28:03:c3:13:d7:
96:7b:07:70:13:9e:9f:c4:bb:74:3e:2d:6a:e3:4a:b5:5a:5d:
ea:5c:85:29:c7:18:15:0a:b1:b1:14:d1:27:81:8e:7d:a6:26:
73:4a:92:6d:5e:ab:11:cf:27:1a:0d:38:c2:19:23:14:ce:63:
a5:4b:31:14:14:77:1f:b4:ce:1f:04:9f:93:92:ca:5c:b5:35:
ab:ee:b8:a3:c5:74:b4:91:3c:05:22:16:59:15:2e:b8:51:08:
1b:0c:5b:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 11:20:43 2026 by rpki-client