Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft
File: _32KebrU-YPQxJiVr1DqigPrxw0.mft (raw, json)
Hash identifier: NLaObgk8QvfqBAxlCwfllQSJwbn6wOB8+038FMFmpQo=
Subject key identifier: 5C:AC:E1:A4:94:AF:6B:30:1B:A9:BA:63:9B:2C:B5:0E:3E:DF:35:16
Authority key identifier: FF:7D:8A:79:BA:D4:F9:83:D0:C4:98:95:AF:50:EA:8A:03:EB:C7:0D
Certificate issuer: /CN=ff7d8a79bad4f983d0c49895af50ea8a03ebc70d
Certificate serial: 019EB6210A5FED4C01D4C8D45F4289598659
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft
Manifest number: 1005
Signing time: Thu 11 Jun 2026 10:01:18 +0000
Manifest this update: Thu 11 Jun 2026 10:01:18 +0000
Manifest next update: Fri 12 Jun 2026 10:01:18 +0000
Files and hashes: 1: OMZJTfEMX_P-o40x7sNRJUiIL4c.roa (hash: +/OiISUXHSKCG7hFmdUA41onjdMcxoyC7Y6Vt6TTSZY=)
2: TcH4GIuktxSUfHtquYZnE0nBhtE.roa (hash: rpQl9MUfMf8qQcoJFxTK9nJpUXGjE7ncDisSQXNZN4E=)
3: _32KebrU-YPQxJiVr1DqigPrxw0.crl (hash: IUX//sckzj2JrFri3NPQEEMcv+1c4TdcbRY2npAVhBk=)
4: f-YXM7BH83V0kvUXvW2GIs5BDg0.roa (hash: AsELevMPRLK8TdZ3qZnEEYe0IBvxlKOGzstiZBn5CSk=)
5: nkfXYoc4Mcgj_WnSgw1MfRAkUv8.roa (hash: uTw63Gl3rRgs6l5JsMFtSBnpBCOYFjYiM97n8RknJaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 08:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:21:0a:5f:ed:4c:01:d4:c8:d4:5f:42:89:59:86:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff7d8a79bad4f983d0c49895af50ea8a03ebc70d
Validity
Not Before: Jun 11 10:01:18 2026 GMT
Not After : Jun 12 10:01:18 2026 GMT
Subject: CN=5cace1a494af6b301ba9ba639b2cb50e3edf3516
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ca:cd:be:68:48:9a:f2:29:67:e8:ba:af:71:
1a:32:64:0e:71:8b:ad:53:bc:f9:1f:16:ee:61:f4:
4b:ff:b0:dc:c8:5c:3a:6a:2e:bf:04:b1:b4:31:15:
07:05:61:84:e3:c9:58:f0:60:9c:6f:af:bc:52:f7:
f6:d7:f6:c7:34:ac:29:4f:f0:b8:9d:2d:e4:45:a3:
8c:0c:79:69:24:7a:ba:f6:07:63:01:8c:95:82:87:
9d:16:fc:c5:f6:ff:9b:f6:2b:c8:bb:98:ae:b7:ec:
41:01:35:60:8d:86:8c:67:07:39:b0:ba:86:ec:2e:
04:48:83:66:a9:9e:78:29:4f:3a:0b:d3:08:07:69:
52:3a:24:ba:67:2e:a1:70:20:bb:60:16:28:11:47:
5d:fa:8a:16:d2:24:d6:0a:f8:d4:8b:2f:55:7e:f8:
5d:3e:2c:4b:1b:8c:86:9c:8c:78:cd:9e:7b:62:e2:
19:a3:ba:e9:08:91:b1:32:4b:b9:4c:ae:91:a0:76:
7c:22:89:9b:2b:f4:b7:21:b1:71:2b:28:a0:d3:98:
78:56:ef:4f:ed:02:3e:09:ae:b0:8d:4f:1f:68:50:
87:0f:10:dc:7d:ed:7e:60:d1:50:18:b4:d6:4e:1d:
e4:c3:6e:61:60:a4:2e:9e:1f:87:a1:25:e2:ad:4c:
e7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:AC:E1:A4:94:AF:6B:30:1B:A9:BA:63:9B:2C:B5:0E:3E:DF:35:16
X509v3 Authority Key Identifier:
keyid:FF:7D:8A:79:BA:D4:F9:83:D0:C4:98:95:AF:50:EA:8A:03:EB:C7:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:72:67:72:9a:e1:b1:c9:64:12:9e:b2:1c:14:ce:8d:9a:4b:
10:c4:84:1a:5d:c0:c1:cb:3c:45:c4:38:26:3f:aa:ca:99:64:
cd:c7:61:c6:11:ae:f2:71:b5:a0:22:9f:4e:5d:eb:c3:73:4e:
e5:65:d2:53:60:ef:1a:c8:e1:40:70:7a:3b:40:d8:91:a2:31:
e7:18:6d:f7:2b:b0:a6:e9:12:ab:fd:06:c2:d7:1d:85:0c:39:
93:8e:7a:80:d6:68:94:44:53:50:be:d6:df:9f:ae:95:79:15:
27:f0:7c:c7:49:18:39:ff:88:8a:46:e1:59:73:c0:f8:53:35:
b9:ce:2f:a9:59:ca:f0:77:c0:8c:5b:10:c5:61:6a:9d:f6:7c:
58:1c:4f:e5:3d:22:63:4b:27:30:89:af:90:e7:8d:1a:5e:17:
17:ae:bb:85:6f:f2:11:41:51:c4:e3:2f:d8:0d:47:d2:60:19:
e9:d0:c5:07:af:0b:52:1e:f9:cc:32:47:a2:40:57:50:f2:c1:
52:9b:76:0a:5c:64:41:c6:45:05:6e:59:ad:50:c9:4d:ef:9c:
2a:ac:bc:e6:11:a1:e2:94:15:05:b4:cf:3f:6d:22:9c:51:13:
30:6b:e7:0e:ed:7b:8d:7e:d9:74:df:40:fb:e4:f6:d6:84:b3:
3a:bb:6c:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 13:08:14 2026 by rpki-client