Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.mft
File: 582m42RtyToNLUKV0esJR2xmvKY.mft (raw, json)
Hash identifier: IWQdf4Aa/NVq+Xtvr9Tav4W5Ggw2K+hjizPdCRlPyH0=
Subject key identifier: 13:11:8B:83:84:11:D5:50:2A:59:91:B1:F8:81:93:7B:11:4A:B1:4E
Authority key identifier: E7:CD:A6:E3:64:6D:C9:3A:0D:2D:42:95:D1:EB:09:47:6C:66:BC:A6
Certificate issuer: /CN=e7cda6e3646dc93a0d2d4295d1eb09476c66bca6
Certificate serial: 019E295E222A428F2B6589CF2D1B3F74E37E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/582m42RtyToNLUKV0esJR2xmvKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.mft
Manifest number: 0633
Signing time: Fri 15 May 2026 02:01:35 +0000
Manifest this update: Fri 15 May 2026 02:01:35 +0000
Manifest next update: Sat 16 May 2026 02:01:35 +0000
Files and hashes: 1: 582m42RtyToNLUKV0esJR2xmvKY.crl (hash: 3G7PGgrsmhyANAcd3czGdSx2Z1Tq0FUhvAy8zcV6BUo=)
2: zM4gg4epclePPLRTJtVaIJWeepc.asa (hash: MRTLDlocXHNiWSSlm+nZxDJcnI87lYWJ5A0tSmJ5h6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/582m42RtyToNLUKV0esJR2xmvKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:29:5e:22:2a:42:8f:2b:65:89:cf:2d:1b:3f:74:e3:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cda6e3646dc93a0d2d4295d1eb09476c66bca6
Validity
Not Before: May 15 02:01:35 2026 GMT
Not After : May 16 02:01:35 2026 GMT
Subject: CN=13118b838411d5502a5991b1f881937b114ab14e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fe:62:36:0f:c5:15:1f:44:57:7e:57:0d:e3:
9f:2c:ce:5a:8c:cf:d8:0f:e6:8b:d4:ff:0a:c1:66:
de:54:b2:1c:54:a6:b7:8f:51:aa:7c:a7:1a:ea:df:
5b:61:76:4d:81:85:33:cf:4b:c5:e5:00:cd:25:8a:
18:d0:ff:a5:53:a9:66:09:64:52:ab:47:83:0a:80:
97:84:f5:87:2b:a9:ee:8b:7d:80:85:30:21:7d:ca:
82:d1:8c:22:62:4b:64:32:34:a0:09:66:9e:e1:66:
cc:c2:56:8d:9e:a8:f8:12:78:e7:da:b6:27:43:e6:
10:92:08:ca:79:71:9d:3d:cd:4e:a3:7d:50:24:b7:
9a:89:85:d7:ad:92:64:34:b9:f1:4d:1e:a1:25:c5:
ba:66:31:17:46:d8:e9:80:96:49:46:80:67:97:53:
06:c7:76:39:b8:58:f6:52:49:4f:1c:b9:68:8b:cc:
0b:6b:b2:8d:e3:fc:e6:49:29:d7:5b:b5:6e:76:ff:
21:33:ce:22:14:f0:ae:cb:95:29:78:d1:a1:04:e6:
3e:fa:b8:78:3b:fa:10:60:f4:02:a7:b9:39:30:f0:
a3:1d:03:26:bf:c5:4f:11:6e:e4:ec:f3:15:44:14:
7e:02:80:84:95:73:c5:68:a4:53:04:99:57:96:60:
44:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:11:8B:83:84:11:D5:50:2A:59:91:B1:F8:81:93:7B:11:4A:B1:4E
X509v3 Authority Key Identifier:
keyid:E7:CD:A6:E3:64:6D:C9:3A:0D:2D:42:95:D1:EB:09:47:6C:66:BC:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/582m42RtyToNLUKV0esJR2xmvKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:14:d7:e8:eb:af:67:a9:47:97:ec:1d:6e:ee:0d:19:7f:3a:
99:e3:46:fb:56:f8:b4:81:ac:cb:2d:71:5c:f8:7d:6f:9f:c1:
e2:98:c5:28:3d:d0:d4:7e:4c:d5:da:c0:3e:d1:b0:56:3e:42:
5b:4d:98:40:cb:d2:01:6a:a0:ab:36:52:26:13:aa:e4:6c:3b:
46:8e:3d:ee:96:0b:19:8f:d6:ae:53:1f:41:3a:ee:72:74:2a:
15:ad:f1:fc:74:51:eb:af:2b:31:38:60:51:07:79:38:7f:ac:
10:2e:4b:24:71:04:33:ee:b4:94:aa:1a:a4:fe:c1:43:90:6a:
7b:83:cd:eb:75:5c:3e:09:34:07:6d:22:c0:bd:39:e5:fc:4c:
5b:7f:eb:65:f2:20:3c:a8:a5:e0:af:26:10:2f:75:28:81:2e:
79:18:18:79:76:52:37:cf:c0:fb:e1:c4:58:ff:97:bc:78:fa:
e0:1d:10:0a:13:a9:ea:83:49:01:84:7f:11:8b:d3:9e:2a:a8:
42:fd:07:12:7f:c5:33:51:df:8b:3d:9e:79:19:84:8b:56:a3:
ef:24:8f:a4:fe:ea:1d:6b:f3:4a:6a:c9:1b:a4:76:77:09:d2:
e9:00:66:f8:fc:70:9b:39:08:2f:1d:38:5a:8e:27:70:c4:69:
86:1b:64:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:16:32 2026 by rpki-client