
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft
File: X32laK0Ce54knBPiI9MidpiBop8.mft (raw, json)
Hash identifier: iD3lI0SZnIkIMNhoiMUEsAfwaHLzNJjrBFuanWbRwow=
Subject key identifier: D5:8F:AC:10:A1:A4:8D:14:0A:15:26:DD:26:18:01:8A:56:94:C8:60
Authority key identifier: 5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
Certificate issuer: /CN=5f7da568ad027b9e249c13e223d322769881a29f
Certificate serial: 019F65A6DDC29D428C53D00EDFC37AE5F3E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft
Manifest number: 0F36
Signing time: Wed 15 Jul 2026 12:01:02 +0000
Manifest this update: Wed 15 Jul 2026 12:01:02 +0000
Manifest next update: Thu 16 Jul 2026 12:01:02 +0000
Files and hashes: 1: 1-5Pgda6HIJ1A50ORC-s21IuXoKI.roa (hash: G3EoBYlK+6iAK1+dHCsC16Icl5M1ev7HNUR0XeGO+Q0=)
2: 3D1cLIqJM9j2TiDk4FKtoH3bACY.roa (hash: 9wyJBuDfbj2/qxzFzPQPUFVR/sga3QbA+VZr0ZYglIg=)
3: DVjlzf9-odFEmzfa3WbgW4SKOHc.roa (hash: G99ptyhMQXh4T7sxQFOQiD1Ft8xrRXqhmTKs+Lr/jf8=)
4: MR48vFydmr0SsuxdgWTO19IRiHw.roa (hash: mUaEgZFfj65CrRRMW4qrWw5/5psCJW35a20y1tpoOkI=)
5: OOjjbiEjw5WVY_zDG3MNRgHawWc.roa (hash: 6hSHQjeZPUQqSFTuBckD24PIf8hoBIsHEYoWzKPaWp4=)
6: Uv7GAQ_UlMBXFGvxutIi16HxUTg.roa (hash: CsEeDd1h6WkVmrp/M5Z/7OMRR7HqcBmhfSum5Jl9L2E=)
7: X32laK0Ce54knBPiI9MidpiBop8.crl (hash: Okyl1PgF6YXpm39OZs9QUr6q8gEVmlwHgruq1Bp9Jow=)
8: _GfFqUw5mWGbjc_mCBWnNfju97k.roa (hash: 2siq+SOSG2tsLvn2PAlvw4ivV0pVSjLxvVW1AegSSYg=)
9: wYvIMqVJD5kGsVB7Odk1zqw9PLE.roa (hash: lv2FW5IzYlo7gJNIKly5LsLWJkSxo+G8ybKR+UJH+Vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft
rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 16 Jul 2026 12:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:65:a6:dd:c2:9d:42:8c:53:d0:0e:df:c3:7a:e5:f3:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f7da568ad027b9e249c13e223d322769881a29f
Validity
Not Before: Jul 15 12:01:02 2026 GMT
Not After : Jul 16 12:01:02 2026 GMT
Subject: CN=d58fac10a1a48d140a1526dd2618018a5694c860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7f:0a:94:7f:d9:50:62:09:a3:6e:c6:b7:89:
08:af:a9:69:12:8f:0d:7e:71:61:e3:04:7c:cc:1c:
2e:c2:fe:50:7b:19:f9:5e:5c:e3:48:62:f8:c8:1c:
b9:98:66:9e:f1:fb:dc:17:3b:d4:7b:d2:9c:b4:c2:
7e:65:ae:ad:fb:5e:78:bd:2c:da:c1:35:de:5a:62:
9f:87:eb:3a:0b:fe:a1:da:ee:4a:c4:c8:25:92:75:
9e:4e:d2:c5:87:56:90:5c:bc:88:61:e3:e4:71:17:
9a:4b:13:5c:2d:b1:92:97:b9:a7:c7:51:a8:f7:33:
21:23:ea:10:52:e4:47:0a:d3:0f:09:b3:6a:ed:73:
51:cf:34:09:da:1d:dc:ca:65:e3:e3:10:7a:e2:73:
de:f2:4d:ef:08:3d:91:4d:6b:11:4d:c5:85:24:39:
d4:c2:bf:22:9e:81:09:45:d5:8f:7d:13:cc:cb:5f:
d7:de:56:99:fe:36:b6:22:31:3a:33:24:bb:8f:4d:
f3:09:28:d3:4c:6b:77:8d:9e:b0:66:21:62:2b:8a:
d3:31:2f:5c:29:6b:61:e2:e0:e7:d9:03:1f:a2:ae:
b1:6c:c5:2d:cd:ba:7f:5f:f4:b0:27:f1:40:bb:51:
d1:75:42:e6:ac:47:5c:1e:a7:28:47:34:e4:31:fd:
ff:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:8F:AC:10:A1:A4:8D:14:0A:15:26:DD:26:18:01:8A:56:94:C8:60
X509v3 Authority Key Identifier:
keyid:5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:83:a6:36:cd:77:f9:47:a0:56:73:71:ca:3b:46:56:b0:f7:
09:69:f3:b6:5e:53:0d:d8:04:a3:21:44:e3:44:6a:f9:6f:b5:
65:ba:71:66:15:54:22:fb:d1:04:63:6f:f1:d5:41:46:18:bd:
1e:45:d9:2b:50:24:72:d0:75:0b:d3:20:d1:53:dc:c9:e2:61:
7d:d0:07:95:09:a6:be:41:34:ed:c2:6a:3c:b8:44:8d:69:89:
95:d8:4c:7c:9a:c3:64:bf:ed:20:86:01:87:79:88:a9:d3:c3:
61:a0:32:7a:c2:80:60:3c:d5:d1:58:60:51:68:82:fd:cd:b2:
49:b6:e0:5d:ca:87:d8:96:65:d7:a7:85:9b:24:18:66:7f:1e:
0c:a2:1a:bd:f5:3f:19:56:ca:33:ca:f7:56:b3:0f:6a:d1:cc:
de:2e:57:bc:c2:e4:64:64:7f:09:ee:d3:70:85:90:fe:c4:b8:
35:e5:c5:46:1e:32:e8:87:c4:f7:df:d6:13:c1:b8:2a:bf:5f:
73:43:7a:99:48:4a:b5:fc:83:ac:79:60:cb:03:05:1d:37:66:
52:93:31:da:c3:4c:ef:13:d9:cc:d3:76:ac:59:92:9b:e1:70:
70:e1:c3:9a:50:43:38:54:c1:e8:4c:5d:04:67:08:5a:e1:91:
74:38:fe:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 18:39:11 2026 by rpki-client