Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft
File: X32laK0Ce54knBPiI9MidpiBop8.mft (raw, json)
Hash identifier: f5YAAOL4DKKFSBo1cFjQRnjmYyux+cGMXDgB4Svlzuk=
Subject key identifier: 1D:A1:80:D6:04:29:86:22:59:49:9D:0F:E7:4B:B7:7F:F7:16:32:72
Authority key identifier: 5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
Certificate issuer: /CN=5f7da568ad027b9e249c13e223d322769881a29f
Certificate serial: 019E7BF9D69F144B24F521B7D6D965533B42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft
Manifest number: 0EBD
Signing time: Sun 31 May 2026 03:00:31 +0000
Manifest this update: Sun 31 May 2026 03:00:31 +0000
Manifest next update: Mon 01 Jun 2026 03:00:31 +0000
Files and hashes: 1: 1-5Pgda6HIJ1A50ORC-s21IuXoKI.roa (hash: G3EoBYlK+6iAK1+dHCsC16Icl5M1ev7HNUR0XeGO+Q0=)
2: 3D1cLIqJM9j2TiDk4FKtoH3bACY.roa (hash: 9wyJBuDfbj2/qxzFzPQPUFVR/sga3QbA+VZr0ZYglIg=)
3: DVjlzf9-odFEmzfa3WbgW4SKOHc.roa (hash: G99ptyhMQXh4T7sxQFOQiD1Ft8xrRXqhmTKs+Lr/jf8=)
4: MR48vFydmr0SsuxdgWTO19IRiHw.roa (hash: mUaEgZFfj65CrRRMW4qrWw5/5psCJW35a20y1tpoOkI=)
5: OOjjbiEjw5WVY_zDG3MNRgHawWc.roa (hash: 6hSHQjeZPUQqSFTuBckD24PIf8hoBIsHEYoWzKPaWp4=)
6: Uv7GAQ_UlMBXFGvxutIi16HxUTg.roa (hash: CsEeDd1h6WkVmrp/M5Z/7OMRR7HqcBmhfSum5Jl9L2E=)
7: X32laK0Ce54knBPiI9MidpiBop8.crl (hash: NvDjInMDDxy51OxBysD6arBe0QXLCApMf3qH3d94kws=)
8: _GfFqUw5mWGbjc_mCBWnNfju97k.roa (hash: 2siq+SOSG2tsLvn2PAlvw4ivV0pVSjLxvVW1AegSSYg=)
9: wYvIMqVJD5kGsVB7Odk1zqw9PLE.roa (hash: lv2FW5IzYlo7gJNIKly5LsLWJkSxo+G8ybKR+UJH+Vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft
rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jun 2026 03:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:7b:f9:d6:9f:14:4b:24:f5:21:b7:d6:d9:65:53:3b:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f7da568ad027b9e249c13e223d322769881a29f
Validity
Not Before: May 31 03:00:31 2026 GMT
Not After : Jun 1 03:00:31 2026 GMT
Subject: CN=1da180d60429862259499d0fe74bb77ff7163272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9a:25:78:52:70:f4:12:38:62:dd:db:13:a5:
0b:f8:2c:94:d8:f1:33:37:af:56:81:62:77:a6:49:
c9:3e:28:79:28:6d:59:32:5c:5d:52:68:f2:76:0f:
47:02:72:7a:dd:1c:1e:9d:fe:3d:2b:58:f1:29:1c:
72:9c:46:d9:dc:1a:78:de:78:6b:c2:5e:f5:22:33:
25:de:66:32:ca:8e:fe:eb:2a:c5:1f:8c:13:53:69:
c3:d6:63:60:89:c6:f6:60:2f:5a:77:7a:ad:03:86:
37:5d:c6:04:ec:4f:be:85:c1:cb:10:14:c8:22:cc:
d5:28:1a:37:8d:97:5c:9e:b9:1d:17:6d:73:a9:f2:
91:67:33:b4:59:95:3f:a6:7e:0a:8e:a1:84:c4:d5:
a8:17:49:d1:64:b7:54:f5:d6:29:18:32:d1:da:2d:
5e:32:46:d1:82:eb:52:1a:af:6c:32:c3:0d:63:62:
c6:54:89:cd:37:d6:b4:4b:e2:5c:04:c9:63:18:de:
c5:f3:f2:60:af:f2:b3:5d:ab:51:be:18:63:4f:d0:
b9:3d:5d:cf:1f:b6:c8:e8:a7:f7:d5:f8:b0:b3:9d:
07:72:e5:15:07:df:d9:05:9a:e6:54:cb:b5:6d:3b:
9f:a1:94:ee:c0:ba:03:ee:6e:f3:ea:5a:84:1f:66:
ff:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A1:80:D6:04:29:86:22:59:49:9D:0F:E7:4B:B7:7F:F7:16:32:72
X509v3 Authority Key Identifier:
keyid:5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:28:e5:38:c7:69:76:45:f2:72:4c:69:87:f1:7a:c4:4d:70:
66:76:30:82:00:7c:df:a2:a0:a0:7f:98:02:f2:16:de:6d:dc:
e5:9c:1d:b1:e9:ba:8d:2d:7f:ea:01:de:a3:88:02:db:d7:d1:
90:dc:6d:7a:d3:fa:15:cc:d2:f2:f0:38:9f:b4:3d:1d:d6:b5:
4c:1a:73:cf:fb:a6:3e:83:5f:0d:f4:fa:c3:9a:37:b1:cd:55:
87:19:c7:c6:21:24:bb:15:37:62:d9:b3:2e:2d:ae:ca:c7:30:
51:a2:33:83:0f:cf:30:0a:0e:a5:65:ba:29:43:74:8d:9c:23:
01:39:2f:1e:d4:fe:e7:af:2a:2a:82:2d:da:1c:92:19:4d:80:
e1:a7:b8:e7:41:45:79:3c:01:70:f1:a5:e1:a4:1e:50:70:b4:
bf:aa:51:46:39:b7:90:de:3b:85:6a:74:89:e4:46:59:ec:bb:
32:dd:98:dc:5a:a6:06:33:93:43:9f:b8:18:32:dc:f9:df:68:
46:8b:85:5c:79:7c:65:28:2a:2f:12:a9:dd:2f:19:de:44:fe:
30:8e:c7:f0:e1:64:0a:75:62:75:bc:d3:a9:7d:8c:65:4c:b1:
a4:5e:8b:f0:bb:cc:aa:14:e6:c3:42:03:06:cb:9e:85:49:3d:
a3:3f:81:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 31 12:51:16 2026 by rpki-client