Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
File: 1gTknpKDBavLjzLe8_78A-u83kQ.mft (raw, json)
Hash identifier: Op8XNWqVri5DFfNBsHazV24n+mplfThIdY8ydy3W4CU=
Subject key identifier: 1F:63:38:FF:6D:12:F7:CB:0E:2B:36:CC:04:11:4C:74:4C:90:A2:5E
Authority key identifier: D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
Certificate issuer: /CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Certificate serial: 019E1FED0D8920BDEFD80F9A0B7EB0EC72C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
Manifest number: 189A
Signing time: Wed 13 May 2026 06:01:29 +0000
Manifest this update: Wed 13 May 2026 06:01:29 +0000
Manifest next update: Thu 14 May 2026 06:01:29 +0000
Files and hashes: 1: 1gTknpKDBavLjzLe8_78A-u83kQ.crl (hash: aey6YjNfRb0CMr6msISHNbKPjHOG8ppArl4l8EVu2Yo=)
2: O3NHX1xusGOC_jwAncPD2CBztNE.roa (hash: tIvb5cVDrsiT8uq8kfesqrbk5rRYub73yqvQwpeTOXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ed:0d:89:20:bd:ef:d8:0f:9a:0b:7e:b0:ec:72:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Validity
Not Before: May 13 06:01:29 2026 GMT
Not After : May 14 06:01:29 2026 GMT
Subject: CN=1f6338ff6d12f7cb0e2b36cc04114c744c90a25e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:80:3c:7c:82:e7:db:b4:20:17:95:a8:a5:d5:
0e:4b:c1:8d:9b:cd:dd:63:00:fe:be:b5:7b:14:38:
31:a9:fc:79:2b:95:35:8c:b2:1b:10:97:cd:8d:a8:
80:b8:5d:cf:5c:db:4a:25:19:b6:54:5e:9a:6b:a9:
f7:dd:89:67:fb:a4:d4:0d:d8:f6:b0:63:98:6a:13:
3e:a6:a0:7d:5b:06:d3:7b:97:98:b9:3b:24:1b:19:
fc:d0:6c:fb:e1:48:ad:a0:33:f6:a2:dd:08:1f:fb:
9d:ad:54:aa:7f:11:a1:eb:6b:cf:58:ab:5f:82:98:
89:88:cd:d3:63:92:10:f3:15:16:69:ce:d8:5e:c9:
8d:79:ed:46:81:bc:05:62:95:7a:7b:b7:db:25:6f:
81:2a:4a:70:21:2b:28:9b:f9:dc:27:6c:70:0d:9a:
a4:69:77:76:c8:55:20:95:5e:f3:91:27:07:3d:4b:
e8:1a:9b:c5:c1:df:50:58:94:c6:ca:34:4a:dd:bc:
2f:bd:cb:f7:ae:12:66:f2:76:7c:a2:4b:28:6a:9f:
be:29:1a:59:08:7f:58:95:95:4e:6f:58:87:d0:b1:
72:3f:e1:61:d7:d0:f1:48:7e:ee:ad:0c:e0:38:b7:
b4:42:3f:d4:2f:56:e8:5b:9d:53:25:f1:1a:5f:77:
e1:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:63:38:FF:6D:12:F7:CB:0E:2B:36:CC:04:11:4C:74:4C:90:A2:5E
X509v3 Authority Key Identifier:
keyid:D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:a0:48:15:43:bc:ee:a5:e2:d8:ae:a6:27:21:b9:b5:25:d5:
23:df:df:da:f0:7b:d5:28:55:10:8d:99:36:66:9a:4b:1f:d9:
c1:ee:0d:b6:fb:93:86:bc:c9:c9:45:12:43:53:04:f6:92:92:
9a:c1:d7:f2:ed:c5:0c:0b:66:4c:5a:81:f7:ac:0f:1c:d5:dd:
32:fd:0b:d3:0a:dc:64:8e:86:1e:52:fe:ac:36:97:11:cd:c4:
73:4b:40:e1:14:47:32:05:77:ca:c5:a6:29:c4:37:9a:52:9c:
0d:4b:b3:45:3e:d5:26:65:dc:ef:c3:64:8f:45:50:ed:38:eb:
af:16:44:1e:c5:00:64:14:e9:99:85:1b:e9:06:44:94:f9:fe:
f0:d6:45:32:5c:64:35:8a:9c:ed:7f:9d:0c:d5:71:eb:48:67:
e2:d8:9b:9e:04:bf:e1:5c:32:61:e9:a5:35:b9:ae:0a:a4:99:
cb:f8:02:5f:11:90:c6:89:37:fe:d8:d9:d5:d5:33:2a:d8:29:
5b:16:5d:0b:c5:c8:32:93:a5:a5:d2:04:90:f3:c1:3e:ba:ac:
36:bb:38:20:9d:ce:b4:9f:13:6b:10:df:43:fe:6b:a4:f6:e0:
3c:39:d7:c9:dc:d8:b9:7b:9e:36:f6:99:e7:48:ba:e8:25:d4:
bd:18:b9:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:14:03 2026 by rpki-client