Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
File: j32Qq83eC8bwvKryHOw6TyrPrk8.mft (raw, json)
Hash identifier: DyZQSebol3luX7z30ZaNJQS2iCZfHEhJvetoy/BDhyA=
Subject key identifier: 23:3C:AE:EA:64:BD:94:E8:A0:6D:84:33:D8:2A:DF:82:73:74:AC:60
Authority key identifier: 8F:7D:90:AB:CD:DE:0B:C6:F0:BC:AA:F2:1C:EC:3A:4F:2A:CF:AE:4F
Certificate issuer: /CN=8f7d90abcdde0bc6f0bcaaf21cec3a4f2acfae4f
Certificate serial: 019EBA345D3708A68C7FA4AF1254AFFC8F2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
Manifest number: 1960
Signing time: Fri 12 Jun 2026 05:00:54 +0000
Manifest this update: Fri 12 Jun 2026 05:00:54 +0000
Manifest next update: Sat 13 Jun 2026 05:00:54 +0000
Files and hashes: 1: j32Qq83eC8bwvKryHOw6TyrPrk8.crl (hash: AoBG8Eie8PE3LwILTKbViOaFQKSJEJiEUr7pVl/Yf8M=)
2: peluW4JrzCD3jf4uXKxy_As6DB8.roa (hash: bj53NpUvQtHTcBwjTcnfuLGQSAy7sVwqOatu/bfRtXo=)
3: sPWO6H5POE9bgaqWFcwpuxPhaKc.roa (hash: 4F+JG+o6888pVYZI1VtRF37YDIGm+Y8TYcukNQ2aV1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 22:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ba:34:5d:37:08:a6:8c:7f:a4:af:12:54:af:fc:8f:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f7d90abcdde0bc6f0bcaaf21cec3a4f2acfae4f
Validity
Not Before: Jun 12 05:00:54 2026 GMT
Not After : Jun 13 05:00:54 2026 GMT
Subject: CN=233caeea64bd94e8a06d8433d82adf827374ac60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ea:40:6a:de:a6:a9:84:0f:cf:03:a2:64:dc:
d3:43:55:e4:c0:2e:f0:f3:9d:5c:32:1b:d2:ae:8f:
73:f3:aa:b1:4d:aa:ae:db:bb:72:85:63:44:b9:8e:
40:04:2f:12:f2:1a:0e:e6:cf:e8:cb:6f:b9:99:58:
56:c4:00:9e:f1:d6:05:10:ac:73:2c:00:f4:46:f4:
d2:cf:ca:6e:47:95:2c:f1:61:71:b3:cc:02:3b:62:
c8:43:90:c9:6f:8a:88:a8:09:ad:eb:52:bb:b3:4b:
4f:c0:ef:5a:0d:cd:f2:72:69:e2:9d:78:65:88:9c:
a1:36:d5:c3:cc:06:80:ce:1a:42:05:7a:0e:43:d5:
40:67:7c:df:a7:7c:bc:ab:2c:ad:30:41:91:d5:97:
9a:c6:ec:67:08:71:72:05:8c:c3:fd:78:9c:70:c7:
77:76:6a:ca:5e:25:8e:48:61:9f:23:62:4d:c7:38:
05:d1:ef:32:99:a8:ac:f3:88:78:27:f8:20:f6:3b:
14:60:01:8d:78:39:a0:fb:16:13:ef:e5:9d:05:f5:
1e:c3:6a:a5:70:4a:34:7c:e7:29:58:0c:f8:eb:bc:
ff:8f:80:b7:b3:ff:f8:5a:83:bd:88:69:27:35:f9:
80:e4:9e:3e:e0:75:7d:a2:fe:74:ea:2a:79:55:ee:
a5:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:3C:AE:EA:64:BD:94:E8:A0:6D:84:33:D8:2A:DF:82:73:74:AC:60
X509v3 Authority Key Identifier:
keyid:8F:7D:90:AB:CD:DE:0B:C6:F0:BC:AA:F2:1C:EC:3A:4F:2A:CF:AE:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:d9:e2:ba:d8:2c:63:3f:43:cb:c3:2b:f3:48:12:32:4e:19:
fe:c6:ce:fe:5c:d8:85:9c:c7:18:82:2d:bd:72:c1:98:05:86:
a5:6e:df:a0:e4:4d:e0:d9:d3:c5:70:50:82:19:c4:77:eb:f2:
90:41:fb:c1:eb:ad:e7:6b:aa:19:b7:91:84:5a:10:cc:66:d6:
e2:80:12:b7:ea:1b:b8:ff:e0:c3:3d:8c:51:1e:30:22:ec:3a:
fc:79:4d:b0:5c:e2:5a:27:d5:3d:e4:c0:da:fb:f2:1b:31:66:
55:60:4f:23:3f:e4:d4:c6:92:bb:dc:70:5e:e9:38:d6:58:f8:
71:98:11:0b:2a:d1:c6:08:33:1c:86:8c:8c:a7:34:cd:60:a2:
d4:1a:a9:02:11:e8:6f:8d:44:df:b2:51:d1:09:09:72:4d:44:
16:0b:94:9b:62:48:02:7a:f3:f6:12:ac:b4:de:ac:95:e5:79:
c2:1d:73:52:01:0f:ef:55:27:a8:02:4e:30:5f:a7:3b:b7:1f:
6a:eb:1e:6d:a7:0c:e5:2c:25:22:8d:6f:e0:69:9a:05:8c:09:
ec:2d:48:75:4e:b8:f6:0a:b7:6c:60:5f:a8:56:f3:4c:58:a5:
a5:de:2b:36:63:be:b0:d9:fe:ea:1e:82:c4:c2:e4:b7:4e:a7:
22:94:d2:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 07:07:04 2026 by rpki-client