Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.mft
File: T8muTFD6CwOCrdpfPH30GPeSWGQ.mft (raw, json)
Hash identifier: aqdqeIv4GM1WgFfrLYNpTgduaS/weOVjkmPreRlpyik=
Subject key identifier: 42:B2:64:38:FE:77:FF:D9:C9:AB:AC:FA:3E:50:C7:E3:4A:0B:62:A6
Authority key identifier: 4F:C9:AE:4C:50:FA:0B:03:82:AD:DA:5F:3C:7D:F4:18:F7:92:58:64
Certificate issuer: /CN=4fc9ae4c50fa0b0382adda5f3c7df418f7925864
Certificate serial: 019ED2AAFCEAAEFD709743BE34751BBE8B1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8muTFD6CwOCrdpfPH30GPeSWGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.mft
Manifest number: 02F0
Signing time: Tue 16 Jun 2026 23:01:21 +0000
Manifest this update: Tue 16 Jun 2026 23:01:21 +0000
Manifest next update: Wed 17 Jun 2026 23:01:21 +0000
Files and hashes: 1: KQelvFl-0S2BnhTjmwfeewzy0K0.roa (hash: eHfnP6Dgwq60SUqBjtwY/17CbS0N6nRtKkrY1JJPGsI=)
2: T8muTFD6CwOCrdpfPH30GPeSWGQ.crl (hash: sQFsrXpISsnTqau+134cxH9mRciimNwnptTmeixYEWU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8muTFD6CwOCrdpfPH30GPeSWGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d2:aa:fc:ea:ae:fd:70:97:43:be:34:75:1b:be:8b:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc9ae4c50fa0b0382adda5f3c7df418f7925864
Validity
Not Before: Jun 16 23:01:21 2026 GMT
Not After : Jun 17 23:01:21 2026 GMT
Subject: CN=42b26438fe77ffd9c9abacfa3e50c7e34a0b62a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6a:8a:12:62:2d:4f:bd:9e:71:82:d6:e6:f9:
9b:ea:39:84:71:4b:7c:a1:73:a2:f9:21:49:09:3f:
9b:7f:ba:53:83:70:00:f2:96:5c:61:d6:95:a8:7b:
20:59:2a:34:63:c0:72:10:cd:4e:27:72:60:c0:3e:
f0:6f:e3:9b:c6:0a:db:90:dd:8a:29:49:e7:bc:6d:
dd:d8:63:b6:be:05:5a:d8:c3:86:b3:4a:06:05:21:
62:b0:cf:12:47:91:9c:23:d7:12:a8:fa:4f:58:9a:
80:a6:36:b4:5f:d8:32:67:0d:be:04:4e:cb:2b:3b:
fd:8e:4f:db:62:2a:c7:be:ad:55:98:7f:0d:ac:98:
bb:1d:b2:83:57:91:03:d0:1f:d9:cf:f8:ff:d7:fd:
5f:bb:20:ad:26:21:2f:da:13:82:c4:2f:a8:c3:9c:
d9:3b:6e:c1:dd:61:39:96:7a:5b:00:b6:1c:c9:12:
8f:88:8b:a1:04:1e:33:50:bc:f8:06:e3:f8:a4:5b:
21:0e:a4:b8:c4:2e:1b:43:e5:60:cb:c1:7d:f4:b5:
2f:45:29:96:23:ba:da:b0:11:9e:19:ad:76:61:e3:
11:5e:69:18:7c:90:f5:7c:13:5b:1b:25:79:42:1d:
29:ba:41:e7:43:f9:4f:9e:89:d2:e2:3f:90:4b:09:
41:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:B2:64:38:FE:77:FF:D9:C9:AB:AC:FA:3E:50:C7:E3:4A:0B:62:A6
X509v3 Authority Key Identifier:
keyid:4F:C9:AE:4C:50:FA:0B:03:82:AD:DA:5F:3C:7D:F4:18:F7:92:58:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8muTFD6CwOCrdpfPH30GPeSWGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:f2:cd:ea:fd:d5:37:3d:23:4e:47:eb:be:cd:fb:a4:d2:0c:
6a:42:5e:e8:5a:86:0f:ce:82:70:46:26:47:87:0a:02:2b:39:
17:b9:f5:44:04:ef:90:7c:b7:49:c6:4a:06:d2:13:e3:02:fb:
c0:c5:9b:ff:5b:29:d0:bb:89:6b:7a:51:b6:73:b5:34:94:c6:
a4:c0:07:54:ed:52:cd:a2:6d:0f:46:f0:18:f5:3b:b0:15:c9:
b6:07:07:bd:26:43:53:47:27:65:52:57:4a:e4:d5:cb:8c:e3:
fc:4c:7b:7e:c3:13:19:b4:51:01:c2:d8:a8:c2:3e:35:c6:c2:
b0:39:16:b7:78:4e:e2:ec:e4:b5:b2:64:d5:04:2d:9e:42:aa:
25:a8:aa:95:a3:21:dc:3d:3b:92:cf:29:92:33:8d:7e:06:74:
03:9d:72:d6:2d:f2:f4:f2:5e:33:1e:73:aa:86:25:55:e2:70:
b3:81:d2:94:e3:76:28:a1:73:b2:30:bf:96:0b:1e:d7:b4:ec:
e4:21:43:42:79:dd:8d:6b:85:b6:6c:9d:a5:e8:0a:b8:dd:38:
de:c4:a0:ef:60:1c:10:8a:2d:94:53:43:89:ab:40:b2:96:a8:
0c:d3:77:9a:41:19:56:48:bb:30:6e:17:d6:39:20:28:66:d7:
e0:f1:b1:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 09:46:49 2026 by rpki-client