Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft
File: tUcxKN5Ul222LZvRYU53xD3uObU.mft (raw, json)
Hash identifier: Rfl1Ja9z6QlE39woGpuecUVp2tDuR5ShbqEVfXXFMNM=
Subject key identifier: 87:AE:FD:5B:8A:CB:B1:C9:08:AE:75:AC:1B:AB:12:E2:34:EC:6D:3A
Authority key identifier: B5:47:31:28:DE:54:97:6D:B6:2D:9B:D1:61:4E:77:C4:3D:EE:39:B5
Certificate issuer: /CN=b5473128de54976db62d9bd1614e77c43dee39b5
Certificate serial: 019EFD27C030657ADEEFC584E74E800E9BCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUcxKN5Ul222LZvRYU53xD3uObU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft
Manifest number: 1652
Signing time: Thu 25 Jun 2026 05:01:41 +0000
Manifest this update: Thu 25 Jun 2026 05:01:41 +0000
Manifest next update: Fri 26 Jun 2026 05:01:41 +0000
Files and hashes: 1: TmvOzGWnmK2lk0JBtr2hwCa8AyI.asa (hash: jT3uzkFsF2IKke7bmyYM9JWOSf+ukPwuY/SlyIWkCoE=)
2: ptdE_5xWn-ZmMAkY4AdscmyvcGk.roa (hash: eOGLE8Tlqokd5s+tmbzOxg0+2W1g2wypnR3SH77Owog=)
3: tUcxKN5Ul222LZvRYU53xD3uObU.crl (hash: uEiHEzsuGtt+tmkcmoHbae+ptgbvDS/1D9DztqwUEqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUcxKN5Ul222LZvRYU53xD3uObU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fd:27:c0:30:65:7a:de:ef:c5:84:e7:4e:80:0e:9b:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5473128de54976db62d9bd1614e77c43dee39b5
Validity
Not Before: Jun 25 05:01:41 2026 GMT
Not After : Jun 26 05:01:41 2026 GMT
Subject: CN=87aefd5b8acbb1c908ae75ac1bab12e234ec6d3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:31:88:b4:a1:66:66:62:e0:cb:87:dc:40:62:
7c:db:1e:a8:24:4e:7d:19:4a:53:50:08:48:6f:bc:
f4:01:2e:9b:a6:15:f2:b2:5f:bc:29:ac:11:ec:9d:
86:90:38:d9:2c:3e:fe:e4:0b:5d:3d:bb:80:47:89:
a8:e5:42:aa:df:c4:5d:be:7b:11:59:1d:14:47:26:
de:6d:0d:b2:12:05:8d:ad:9b:75:aa:ac:ac:97:97:
eb:e0:24:e7:31:b2:d5:2f:73:8b:05:9d:5b:8c:3a:
06:56:56:61:b9:89:5e:ae:68:25:78:f8:25:b8:29:
b5:86:67:c6:12:a9:a6:de:4f:48:84:c5:88:a1:bb:
83:7e:d9:9a:7c:bd:31:fc:4b:72:bf:51:e4:b3:4f:
bd:4f:ea:db:64:21:13:22:a9:83:c9:b5:92:e7:b6:
22:60:ae:9f:c8:0f:c0:fa:e9:f3:dd:52:5a:e9:24:
37:cf:d2:d6:c9:6d:73:0c:d1:fb:73:4d:8c:f2:0b:
b7:16:a3:47:0f:fe:68:e0:05:5b:ea:06:f0:f3:7c:
91:c9:db:08:9d:37:98:78:f7:b0:6a:92:01:81:9e:
f8:4f:85:cc:0e:c3:e6:2f:f9:50:9c:37:ec:5d:ad:
04:b7:a0:68:8e:35:b4:b5:e6:9a:49:ab:84:4e:4a:
ee:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:AE:FD:5B:8A:CB:B1:C9:08:AE:75:AC:1B:AB:12:E2:34:EC:6D:3A
X509v3 Authority Key Identifier:
keyid:B5:47:31:28:DE:54:97:6D:B6:2D:9B:D1:61:4E:77:C4:3D:EE:39:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUcxKN5Ul222LZvRYU53xD3uObU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:f4:82:d8:92:0d:cd:8e:55:c9:fa:c6:09:89:06:2a:3a:ed:
b7:ae:13:5d:ac:9c:01:61:91:01:9b:5d:9b:5c:6e:5e:bd:c1:
5b:e9:66:6e:88:2e:1a:5d:cd:2a:46:fa:9a:31:d0:26:1b:da:
4e:b5:27:61:9d:1e:33:b5:d7:6f:fc:1d:2a:69:a6:23:02:9f:
e5:3a:75:17:13:71:b6:d8:36:51:61:e1:53:4a:0c:e7:79:43:
c3:bd:bf:35:d1:f7:eb:4d:d8:ae:b9:a9:ff:28:0d:e9:48:8e:
b8:7c:10:01:aa:ec:93:ad:eb:5d:cb:d7:9d:24:e1:69:b6:a9:
6c:ef:c5:70:86:6c:cb:c4:23:ae:42:25:ed:26:b8:62:c7:88:
1c:a0:31:da:97:d1:7a:9e:fb:9c:35:96:26:93:e0:80:c7:82:
85:6a:44:16:20:f7:29:de:a1:55:93:47:7a:db:fc:41:1f:ba:
e1:18:8e:f5:81:ba:17:43:c9:08:9c:5f:88:82:80:bf:5f:11:
53:0f:2f:ae:cc:fc:6a:6c:dc:43:96:9d:08:2e:7a:9a:ac:4a:
f6:51:6d:0f:c8:d6:bc:8c:bb:24:85:73:37:b1:17:32:85:8c:
25:83:51:eb:be:22:55:e2:4e:9e:71:e6:ec:e8:21:8d:72:d6:
24:c6:87:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 08:29:43 2026 by rpki-client