Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
File: UsSOG7ZyzaaEZADov41taWg1178.mft (raw, json)
Hash identifier: G3q4vZ1hfxTlJVZysJWZd9/e23kKh9BflcrcewOMKB0=
Subject key identifier: B6:79:B6:BC:1E:C5:F4:0C:4F:32:D2:DC:42:76:A5:47:88:13:1E:D2
Authority key identifier: 52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
Certificate issuer: /CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Certificate serial: 019EB7A197401C36910E58FD5A0BA9630DDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
Manifest number: 0B8D
Signing time: Thu 11 Jun 2026 17:01:20 +0000
Manifest this update: Thu 11 Jun 2026 17:01:20 +0000
Manifest next update: Fri 12 Jun 2026 17:01:20 +0000
Files and hashes: 1: Pxtr7Gbm8FoWkqDWUIVtrs362Ec.roa (hash: Hjsu0JAwI6gJ3DPtZLzsxv8mvLUzo+rKbsqMaxC3bYY=)
2: UsSOG7ZyzaaEZADov41taWg1178.crl (hash: beLeRFq63leWxJuKLBopk8cRRP7u39hxSZyokQ9tAZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:a1:97:40:1c:36:91:0e:58:fd:5a:0b:a9:63:0d:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Validity
Not Before: Jun 11 17:01:20 2026 GMT
Not After : Jun 12 17:01:20 2026 GMT
Subject: CN=b679b6bc1ec5f40c4f32d2dc4276a54788131ed2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e1:37:ff:3e:89:61:23:b1:b4:68:3e:cc:c3:
d8:60:73:8d:d8:75:f1:3b:c3:20:3c:6a:44:54:c2:
30:07:c7:ad:10:d7:aa:83:6c:70:b8:42:ae:60:a0:
98:e3:21:61:91:27:12:a9:32:95:de:2e:5f:0a:e6:
6e:fd:d3:97:1c:f2:09:d9:20:26:0b:3b:a7:45:7c:
d9:62:44:49:bf:f8:eb:e2:73:4e:61:8d:c2:e2:19:
b1:84:f5:90:ec:36:60:7b:e7:d7:95:05:79:02:60:
4a:4a:f4:48:76:b5:2a:c4:ca:61:a9:f0:9f:35:31:
72:a8:4e:a6:6a:0e:d1:7a:e9:40:12:05:dc:ab:6a:
fe:dc:4f:6f:12:1e:33:b5:e2:78:59:34:56:de:80:
76:67:f2:43:00:70:9c:57:4e:94:6b:53:fe:95:d1:
95:82:52:72:16:2e:30:fe:b6:c5:d3:96:2b:2c:59:
fd:2b:35:29:7e:88:1e:d7:94:f2:b7:c0:49:50:1b:
28:19:77:ab:7e:a0:15:a5:3f:1f:9f:28:a0:80:6f:
7e:c6:93:14:00:fa:c3:67:db:eb:99:f0:7a:66:c8:
7e:83:9c:3a:79:00:ba:c1:49:da:c9:db:57:19:30:
75:2d:38:5a:96:27:d3:6d:11:99:6a:43:dc:45:4b:
34:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:79:B6:BC:1E:C5:F4:0C:4F:32:D2:DC:42:76:A5:47:88:13:1E:D2
X509v3 Authority Key Identifier:
keyid:52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:46:9e:d3:21:8b:bd:94:ed:f3:b6:55:8e:90:0b:e0:96:e5:
f0:5e:29:44:ee:60:4f:53:2b:c7:88:05:cb:e8:cd:13:ca:f0:
6f:8c:1a:24:ef:91:f9:11:ff:cb:e3:10:21:f6:07:36:cf:0e:
ef:75:9f:47:7b:e5:61:e9:44:f6:ed:56:28:ba:1c:d5:4f:95:
2a:6d:3f:4f:0b:a0:ef:69:3b:a2:18:c2:da:b4:6d:8d:b3:ec:
86:0e:44:53:5d:6c:f4:1e:c4:fe:b5:ab:24:9d:0a:a6:bd:0d:
e4:ff:52:55:f9:9d:cb:8e:b9:3a:ae:35:f1:b6:21:c6:ec:a0:
ef:aa:59:12:a8:ca:4d:b4:78:66:43:77:ea:95:df:e4:0f:32:
53:e2:bd:72:96:83:f9:f0:67:3e:cb:46:9c:ed:d5:8a:eb:55:
64:c2:c5:ac:78:e8:5d:f7:c0:54:8a:66:19:81:c0:aa:f4:e5:
6e:c4:c3:40:a1:9c:71:a2:c2:07:6c:93:76:0d:2e:c3:a4:c1:
a7:74:84:89:fc:0b:98:29:aa:f1:d6:94:bf:0f:a7:18:48:c5:
9d:75:b3:f6:11:98:a2:10:20:ac:2f:44:36:e2:90:9d:50:aa:
3e:3f:2b:18:0f:39:f4:ca:51:25:3b:fa:de:29:79:22:d8:a0:
dd:d1:c2:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 22:42:25 2026 by rpki-client