Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
File: hst0KgO8nIVQcheiUgTf_4L8zfk.mft (raw, json)
Hash identifier: //0Q+GikKddSn5hZ7wBxAYbDuggF/faaD/iFk1AS20g=
Subject key identifier: D8:2B:88:87:72:91:19:A2:B1:90:B8:49:E2:09:A0:29:0B:CC:A5:13
Authority key identifier: 86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9
Certificate issuer: /CN=86cb742a03bc9c85507217a25204dfff82fccdf9
Certificate serial: 019EC0DB3CEA1022704FEB92606FC6BCEC7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
Manifest number: 1267
Signing time: Sat 13 Jun 2026 12:00:53 +0000
Manifest this update: Sat 13 Jun 2026 12:00:53 +0000
Manifest next update: Sun 14 Jun 2026 12:00:53 +0000
Files and hashes: 1: FsEYUQUVL6IgAyC_3hTmIC05sYA.roa (hash: erfQp237zxf8AD8EH/ivbDYnw0vQY88Vf8ov2LTkk+Q=)
2: KhePy2KSChqSTO56xjFNB88Adhw.roa (hash: jSbx1Mp1yMnht16w7llcf9K2ZLPdIRkxkGJ6/eCHfII=)
3: Z-DKyWN4NlE9Oe6WxuczFCionOA.roa (hash: DCMKgnjrJbcUZjEDqwNnXXjpRG/93HbByWia9wwVNVM=)
4: hst0KgO8nIVQcheiUgTf_4L8zfk.crl (hash: L9K1d4mByxGJeTCmBIii/B1/T9ucygQzfp/QQk5DzIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:db:3c:ea:10:22:70:4f:eb:92:60:6f:c6:bc:ec:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cb742a03bc9c85507217a25204dfff82fccdf9
Validity
Not Before: Jun 13 12:00:53 2026 GMT
Not After : Jun 14 12:00:53 2026 GMT
Subject: CN=d82b8887729119a2b190b849e209a0290bcca513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:63:11:d1:76:de:2a:df:7c:45:7a:9b:fb:e1:
6b:25:fe:56:73:c2:aa:3a:31:13:29:9a:9f:71:37:
44:0d:8e:54:42:87:de:6a:48:32:a6:cb:b5:55:11:
be:71:ca:24:0c:4e:72:a8:7f:26:e8:54:96:ca:33:
f2:46:7a:5f:91:91:95:ea:d3:bf:07:ce:3f:d2:69:
36:c3:0e:b0:5b:a4:4f:5a:13:21:a8:5f:c4:6b:4e:
a7:95:79:90:b9:20:58:81:b6:a6:1e:18:cf:a1:55:
59:c1:37:25:e3:ce:6a:e9:e4:3a:28:7b:88:2d:d0:
80:a0:76:a1:0b:15:78:15:20:03:31:b5:b9:61:f3:
a5:cc:54:6b:41:90:c7:54:ca:07:de:b0:61:25:1d:
30:ea:99:72:24:63:07:b7:d4:13:41:d4:81:69:8c:
46:67:f3:52:fa:fd:91:1a:c7:b5:38:f1:8f:c0:29:
b1:c3:76:e1:28:d8:7d:38:e3:cc:7b:5a:53:cd:6a:
36:4a:c7:e5:43:76:0b:ac:ea:b4:e9:f1:b9:be:9b:
3f:6d:44:6a:0b:ce:c0:8e:ca:57:b1:c7:e2:dd:28:
86:70:26:79:11:8d:cb:c8:28:14:0c:43:c4:d9:b7:
06:e2:9e:ca:0a:6a:6d:2b:99:06:c1:8b:39:e6:dc:
20:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:2B:88:87:72:91:19:A2:B1:90:B8:49:E2:09:A0:29:0B:CC:A5:13
X509v3 Authority Key Identifier:
keyid:86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:33:9f:0b:fb:0d:28:39:a7:4d:e3:06:aa:c7:62:fb:fa:08:
98:99:ed:b8:5d:4a:68:e9:dc:99:49:98:54:b4:3b:f7:a7:6f:
b3:77:ec:9a:47:1c:c2:9a:66:ee:0e:5b:f7:2d:26:f5:e6:d3:
55:04:a4:3a:e8:a8:b4:9c:06:f7:b9:91:62:c6:1c:b2:8d:65:
d9:df:ed:83:b0:e0:8f:16:ab:eb:44:a7:ee:32:bf:28:b6:f0:
ef:8b:f5:a3:2b:57:d6:16:db:33:a0:a9:d8:1f:2b:ea:03:6d:
1e:84:2f:93:48:4a:ec:71:72:93:9b:63:89:ec:b8:62:96:1c:
36:0f:38:b1:9d:80:f5:48:27:03:92:15:a3:26:30:15:e1:c2:
c8:f5:c8:d8:61:8c:73:3a:67:c7:35:10:38:7a:47:51:e3:2d:
d5:a8:c4:a5:cf:6d:3d:bc:42:fb:fe:d8:2e:d4:6f:08:da:64:
ae:9e:e3:6a:c0:d6:d7:00:47:bf:3e:9c:d8:c0:52:8f:1d:52:
f6:29:4f:19:47:ee:9b:f1:11:91:5e:54:09:cc:7f:7c:5b:51:
d6:11:a7:ef:90:49:2f:0c:1b:54:75:fd:65:44:a9:ee:bd:e9:
bc:5c:7a:b9:15:51:f0:da:00:9a:5e:5c:bc:b0:ff:02:86:40:
be:39:14:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 16:54:19 2026 by rpki-client