Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
File: v99XKOyr1W70Y3NWlVhmylRoaRo.mft (raw, json)
Hash identifier: r07iiJ/QzNUWJK7JI1WqiWseXpUEUxuAYDkxPrgjGU8=
Subject key identifier: 51:5B:0B:AC:47:A4:46:00:56:6B:08:5B:F0:3D:E9:A1:9A:02:4E:CE
Authority key identifier: BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
Certificate issuer: /CN=bfdf5728ecabd56ef4637356955866ca5468691a
Certificate serial: 019EB8B4A1197E1039DD2DB936F2716DC7DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
Manifest number: 0579
Signing time: Thu 11 Jun 2026 22:01:45 +0000
Manifest this update: Thu 11 Jun 2026 22:01:45 +0000
Manifest next update: Fri 12 Jun 2026 22:01:45 +0000
Files and hashes: 1: 3BcGBZCHDgJs9gSoEvIJqO6Wdng.roa (hash: QqrBTNsjue3924ijEFZUnNRSzA8ZRhSOavKbIrZOqys=)
2: v99XKOyr1W70Y3NWlVhmylRoaRo.crl (hash: Y87kI6/rgYuik4MJ57ZD/1NKKTsVDYfAbXU/yM1JqVU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:b4:a1:19:7e:10:39:dd:2d:b9:36:f2:71:6d:c7:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfdf5728ecabd56ef4637356955866ca5468691a
Validity
Not Before: Jun 11 22:01:45 2026 GMT
Not After : Jun 12 22:01:45 2026 GMT
Subject: CN=515b0bac47a44600566b085bf03de9a19a024ece
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:0f:48:01:bc:3e:df:98:ea:6e:67:98:da:5b:
8f:09:a0:be:9c:53:24:a6:53:00:fc:28:57:a9:6a:
ab:e3:01:6f:0d:e3:20:03:cb:b8:fa:ac:d6:25:81:
94:6c:71:88:0c:ed:de:fa:c1:88:31:31:52:47:51:
81:d2:13:a6:07:22:b6:c4:14:73:09:46:4e:39:4c:
3a:fd:a3:c8:0e:b8:86:83:a4:28:f3:20:d6:aa:ac:
c5:02:76:0f:2b:df:83:2e:78:c9:12:10:6c:eb:d8:
bf:35:0b:fa:1c:0b:62:44:2c:6d:85:f9:ee:89:3d:
48:c3:bd:b2:a9:b0:80:c0:74:a2:be:cd:91:07:dd:
e2:3d:db:ab:54:60:fa:17:41:70:c9:b3:36:fb:8a:
f2:be:c5:fa:8e:18:2f:a6:50:50:20:6b:46:80:cc:
2f:96:ab:a7:61:45:e8:76:98:27:68:36:24:7d:c4:
35:ad:b7:46:96:e0:ba:1b:95:89:6f:5c:ca:2d:64:
f1:d6:0d:85:f3:bd:f2:c7:a9:ce:eb:6b:4f:cb:8f:
71:9d:03:8d:6a:01:8b:d5:12:d0:1e:8a:71:2c:07:
3f:0a:3e:fb:b5:0e:39:0a:6d:90:d8:a1:92:8b:01:
f1:f7:27:98:95:1a:89:10:5f:56:a7:64:10:94:08:
f6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:5B:0B:AC:47:A4:46:00:56:6B:08:5B:F0:3D:E9:A1:9A:02:4E:CE
X509v3 Authority Key Identifier:
keyid:BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:e3:ae:cc:2d:56:e0:00:e9:4a:1c:44:48:2a:92:fa:0d:3c:
02:55:5e:12:e1:68:86:29:19:1d:07:04:36:fe:84:09:f4:49:
c4:0a:9c:b0:59:7d:4a:20:cc:f2:0b:3c:1c:87:56:98:45:36:
58:f9:62:3b:b1:0c:a0:52:80:49:42:28:61:6a:82:21:2d:40:
e9:da:4a:5c:53:0c:ea:de:5d:8c:54:38:e7:f9:15:c7:2f:17:
71:7f:64:f3:49:6b:34:cd:e3:3b:e3:14:ed:3b:79:53:bf:1e:
bd:f6:ff:77:bd:ae:d7:56:b0:76:d3:77:70:2b:98:43:0f:e1:
02:7f:eb:9b:f8:06:c3:b5:47:e7:79:f8:70:17:35:0a:c8:11:
93:b6:b4:ce:10:81:76:55:17:51:4d:8c:c8:3f:b1:70:06:bc:
49:e4:02:3b:af:b9:55:23:12:d5:52:7f:72:62:cc:2f:36:71:
6d:db:c7:65:0e:98:98:ac:65:e2:78:91:96:20:b3:99:97:5a:
f7:db:32:80:66:7f:c7:bb:15:8b:71:09:e0:38:63:8b:be:24:
44:33:f3:d3:2d:a6:6b:ec:6d:fa:ee:29:0b:ac:7e:ef:ae:43:
b1:38:3a:0f:13:7c:ec:c6:34:e8:28:ca:3f:50:5b:25:c3:7e:
75:65:76:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 01:35:04 2026 by rpki-client