Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
File: 70Ku0OkbI9DNy_skrIObDb5qoEs.mft (raw, json)
Hash identifier: b/XA+ld++pBMFqj0Uz3XaFWKcWMxWawHpEvTNBa5Iwg=
Subject key identifier: 77:D5:EF:32:26:CA:BD:87:0C:8D:1A:F3:B7:97:F0:D5:FD:D3:17:F2
Authority key identifier: EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
Certificate issuer: /CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Certificate serial: 019E31171E37F045023E7603674B8638E3F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
Manifest number: 0E86
Signing time: Sat 16 May 2026 14:00:59 +0000
Manifest this update: Sat 16 May 2026 14:00:59 +0000
Manifest next update: Sun 17 May 2026 14:00:59 +0000
Files and hashes: 1: 70Ku0OkbI9DNy_skrIObDb5qoEs.crl (hash: BzPBzykZVhE/oLNccFB9FBrY0XZ6UTvqfYi4kbG7jnE=)
2: WKalSGnevGohhpgm-gEVPpoJ6r8.roa (hash: RtBxGLGQ1rKUm3Dw/j2SrY9FsdpNgrlCWPACnmZSvFU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:1e:37:f0:45:02:3e:76:03:67:4b:86:38:e3:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Validity
Not Before: May 16 14:00:59 2026 GMT
Not After : May 17 14:00:59 2026 GMT
Subject: CN=77d5ef3226cabd870c8d1af3b797f0d5fdd317f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:3d:91:15:13:36:e6:3a:34:2c:77:65:f4:6f:
4f:b8:f7:99:aa:98:ac:d0:6f:6c:26:06:43:bf:99:
79:03:f4:d4:94:1b:cc:56:c6:e1:27:b9:62:42:46:
8c:63:1e:f8:21:92:44:56:d9:16:eb:0e:95:c2:73:
a5:70:98:1c:1a:44:f3:fb:ed:a7:69:e5:9b:78:70:
05:fd:c4:62:52:90:33:b4:f0:ea:db:82:8e:40:44:
dd:ec:8a:27:a7:71:81:28:51:4a:87:f1:58:ad:00:
2c:9d:7c:3f:5a:69:77:b5:6a:7c:c7:20:f1:64:7e:
74:f7:4c:4e:14:34:4e:be:0b:1f:ea:30:f2:cf:8f:
67:62:9a:d8:f0:ca:5f:c8:fd:2c:ee:5d:c1:15:cb:
7a:5f:f7:7b:e6:cf:0f:6b:c2:ae:53:c7:c5:3c:b2:
11:7d:92:3f:19:89:ef:2f:3f:37:f1:3d:89:9b:37:
5c:bd:da:be:57:dd:3f:33:86:da:ab:c7:14:74:b6:
9b:c6:f8:e5:c1:fe:d7:65:29:4e:5f:b4:8d:9f:7f:
46:84:7a:c0:85:fe:cc:4f:ad:44:b2:63:21:e8:43:
ce:88:17:6d:26:2d:f6:67:9e:1f:98:31:ad:3d:0c:
4b:ee:0c:3f:ef:20:3d:af:a3:86:cb:e3:a0:4d:b2:
93:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:D5:EF:32:26:CA:BD:87:0C:8D:1A:F3:B7:97:F0:D5:FD:D3:17:F2
X509v3 Authority Key Identifier:
keyid:EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:5b:0b:35:6f:15:78:e8:49:3c:fb:52:c4:05:e5:33:12:03:
52:35:d6:ab:ae:fa:c3:b7:03:8e:4f:76:2d:f2:b0:c1:b4:b7:
96:95:fb:29:53:ef:99:7b:2e:f8:84:13:b7:5f:77:b0:2d:6a:
01:16:46:57:3f:d9:6a:1c:85:46:05:ec:44:5a:bf:5e:69:27:
b4:a8:79:24:04:75:8b:4d:0d:29:5c:77:06:ea:07:77:ac:79:
07:44:15:29:17:c2:d3:4d:4b:d5:72:aa:3f:fc:d3:3c:a9:d7:
ef:38:9e:c7:c9:ad:ea:81:64:f5:e6:81:e8:4b:18:f7:aa:75:
0a:48:af:dc:22:99:a7:8d:a4:12:f5:24:53:4a:e2:b3:7d:07:
24:9b:e1:05:3c:ed:8f:9d:e1:3f:10:97:fe:fc:c9:99:30:e7:
1b:af:86:31:70:a8:5b:53:4d:90:b9:4a:d3:ea:1b:23:b3:c9:
b6:a4:50:db:3c:e3:25:df:dd:6e:bd:10:4e:66:57:a8:7b:4e:
e3:b1:14:2b:bc:62:09:93:3d:55:08:60:97:ba:6c:d5:68:26:
ec:a6:08:e3:ce:47:f3:92:aa:42:e8:42:f6:59:67:d1:de:bb:
44:23:5f:3d:1b:7d:d3:52:7f:b4:75:5d:6e:db:a4:8f:ce:ab:
0e:a1:cb:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:14:03 2026 by rpki-client