Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
File: 70AaUuP95plIbplnjb9Ih1Mpwz0.mft (raw, json)
Hash identifier: 2g5LVbO9A9nGLECsh7XepKv+Jgr+RLQZpV+yUFRv8aw=
Subject key identifier: 90:D0:C2:2A:90:BA:4A:CD:D0:BC:87:3A:26:D7:50:62:EE:10:B6:A4
Authority key identifier: EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D
Certificate issuer: /CN=ef401a52e3fde699486e99678dbf48875329c33d
Certificate serial: 019F17C3029232EF1092792316199AE36CC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
Manifest number: 10F3
Signing time: Tue 30 Jun 2026 09:01:23 +0000
Manifest this update: Tue 30 Jun 2026 09:01:23 +0000
Manifest next update: Wed 01 Jul 2026 09:01:23 +0000
Files and hashes: 1: 1-SL9hlivQGt-mLTuChMVipJ552A.roa (hash: M4LxMEo5XBi46ojcg/gR85XlQ9Z1KIxYuUCF1vDeIuI=)
2: 70AaUuP95plIbplnjb9Ih1Mpwz0.crl (hash: VOiccCesHCBDYfJwOBrNPtFCbUJo3TTq9hOHn5Wfigs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 09:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:c3:02:92:32:ef:10:92:79:23:16:19:9a:e3:6c:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef401a52e3fde699486e99678dbf48875329c33d
Validity
Not Before: Jun 30 09:01:23 2026 GMT
Not After : Jul 1 09:01:23 2026 GMT
Subject: CN=90d0c22a90ba4acdd0bc873a26d75062ee10b6a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:72:77:51:ac:67:aa:49:c4:9a:67:d4:87:ff:
d4:cb:75:e9:e2:1a:5b:4b:ed:47:b4:ba:08:16:7d:
56:b5:0d:58:ef:35:a8:f2:eb:44:33:07:36:b8:13:
13:06:df:9d:11:7f:80:ee:0f:7a:e4:c0:07:4b:0c:
a5:00:3c:1e:8d:b5:31:98:10:00:72:3b:57:4c:7d:
48:0d:0e:ab:a0:9a:0a:ad:c7:73:74:e6:53:ef:8b:
4d:5f:bf:b3:64:07:3c:6e:b7:e1:1c:8d:9e:ae:10:
cd:dd:43:ce:0b:aa:20:e8:2e:5f:51:30:10:41:c9:
0c:79:9b:9d:5e:17:a7:a4:e2:91:a4:db:2a:ae:3f:
fa:6c:a6:9e:4b:17:5f:58:8c:a3:de:4a:f1:02:9c:
6b:62:ed:58:3f:c4:a1:5c:b4:7a:a7:1f:e7:9c:18:
6d:f1:6d:7d:14:93:eb:61:4b:c1:7c:15:21:c9:6a:
27:74:11:53:3b:9f:fc:9a:41:cd:d8:33:01:f6:8c:
29:c0:68:68:8e:ce:4f:4e:93:19:c0:ee:db:0e:40:
6b:26:d2:84:55:76:df:70:e4:63:37:76:07:24:41:
b4:bc:95:07:53:76:2d:73:18:b5:71:a3:ec:8c:6d:
18:bc:6e:d6:63:96:fe:ee:dd:92:76:31:5d:aa:ac:
4c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:D0:C2:2A:90:BA:4A:CD:D0:BC:87:3A:26:D7:50:62:EE:10:B6:A4
X509v3 Authority Key Identifier:
keyid:EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:69:6b:3b:8b:9b:b8:e8:11:0c:60:d4:46:f8:2a:00:5b:87:
e2:42:ad:01:15:5a:bf:d5:ca:20:ce:c0:26:9b:26:ce:7a:b9:
fe:74:be:89:7c:27:00:fd:a0:9b:e5:ca:3e:9e:e6:1c:4b:35:
fc:52:55:5b:7b:bf:91:9c:6e:13:6c:b6:30:ef:1c:d0:c6:a1:
a8:bc:9e:8a:80:74:b4:36:60:f3:ff:f6:c5:fd:30:bb:7b:25:
e3:68:63:2c:d1:e3:3f:11:bb:d7:03:fb:b1:1a:dd:f2:07:a7:
be:ab:14:d5:da:dc:26:61:d4:2d:db:e2:74:77:d2:fd:67:40:
29:5b:3a:88:46:72:5e:29:d7:3f:19:d1:67:62:ea:22:0f:b9:
cf:5a:5c:85:ff:80:0a:95:bf:49:1c:5d:b5:8c:4f:98:78:a4:
63:83:39:30:f6:1c:26:b8:a8:7f:0f:2c:26:7b:74:43:d2:81:
7f:d1:ee:71:46:75:86:24:de:82:04:e5:7b:ee:ed:e0:aa:03:
1a:82:75:e6:41:4c:c5:2d:4a:f1:35:e6:9f:69:0b:94:1b:05:
f3:62:f5:da:76:6c:f1:95:e8:76:55:c8:22:27:cc:a1:3f:be:
be:cc:8e:89:6b:bb:b6:7a:22:1b:f1:79:49:da:b9:3d:8e:a0:
e3:ce:8c:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:27:18 2026 by rpki-client