Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
File: rFxTEhWE19himH8m_3vtWuE4FqE.mft (raw, json)
Hash identifier: lDPvLCpycnQPRRNn81X3Z0RXy4xfzZEykfvL92nA0lo=
Subject key identifier: AC:E2:A5:BC:54:20:3D:BD:89:CB:49:E5:6D:72:F7:41:4B:F9:0A:55
Authority key identifier: AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
Certificate issuer: /CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Certificate serial: 019EA9E576E71DA18A6C4DC55DE9774F8512
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
Manifest number: 0314
Signing time: Tue 09 Jun 2026 01:00:48 +0000
Manifest this update: Tue 09 Jun 2026 01:00:48 +0000
Manifest next update: Wed 10 Jun 2026 01:00:48 +0000
Files and hashes: 1: Ln3OJ6zDWx7Blw5HCll4po4CH-M.roa (hash: BZd7Kwg87H/bospWBtm/c29GcUHDV3xSrqHEL2bm8Hg=)
2: rFxTEhWE19himH8m_3vtWuE4FqE.crl (hash: DA2NZ4EU8/EjZJ0otWMapPRAemGVolIAUBisY7S/Fyo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Jun 2026 19:19:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a9:e5:76:e7:1d:a1:8a:6c:4d:c5:5d:e9:77:4f:85:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Validity
Not Before: Jun 9 01:00:48 2026 GMT
Not After : Jun 10 01:00:48 2026 GMT
Subject: CN=ace2a5bc54203dbd89cb49e56d72f7414bf90a55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:87:de:23:33:54:59:c0:a4:4d:fb:58:11:a0:
5a:bf:99:4a:0f:e7:0b:6d:aa:0e:78:a1:8f:af:1d:
45:d6:28:d8:09:d8:af:c5:46:b3:27:80:31:15:2d:
9a:93:33:90:a8:28:03:02:62:72:03:54:d4:55:09:
57:f5:ba:b0:07:10:ce:3b:fb:1d:63:88:11:5a:d9:
c7:59:92:e8:9b:b3:5e:b6:78:5a:65:9a:81:e2:97:
ba:db:b4:39:22:9e:2d:68:73:f5:25:a0:b9:ee:5c:
66:d4:0b:59:45:6a:09:48:d8:64:28:d2:c9:4f:df:
86:6b:79:a5:ef:52:80:fc:04:b0:1f:b3:7b:08:08:
a8:59:85:ad:2a:a9:00:63:f7:86:92:c9:5f:fa:4e:
fe:65:3b:b6:76:29:da:57:32:59:38:03:07:c3:a9:
7a:d8:04:ff:84:39:5e:d4:00:25:36:17:d9:14:f5:
fa:7f:09:f4:c0:a9:30:b9:a1:96:fd:3d:a8:41:90:
b8:59:8e:2c:28:4e:d0:f6:3d:5c:5f:78:58:4b:42:
38:a5:f3:1e:fe:e8:42:8a:d3:b5:81:0a:2c:f3:3a:
32:d0:bb:eb:7f:dc:01:a4:81:c9:38:e3:2e:23:a9:
0a:1f:af:69:c1:38:2a:a0:48:5c:9c:ac:91:10:2c:
a5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:E2:A5:BC:54:20:3D:BD:89:CB:49:E5:6D:72:F7:41:4B:F9:0A:55
X509v3 Authority Key Identifier:
keyid:AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:40:8b:8f:7d:3d:7f:d7:11:a8:d9:9b:49:90:82:f0:21:a0:
e0:b1:bf:5c:9e:a2:46:9c:6a:7e:69:c1:b9:0b:25:ae:5c:1b:
80:1f:0e:63:58:a8:71:95:46:3a:3c:0b:77:19:19:3d:8d:cb:
32:10:bf:6c:5e:8c:a7:2d:46:d1:02:23:f3:4d:2f:4a:b5:61:
c5:29:7e:2c:cc:ee:a4:e0:ae:28:d6:14:c2:f3:f7:01:bd:f9:
58:c3:9f:29:27:6c:dc:79:56:ef:2b:e2:3a:ae:86:d5:2d:97:
e5:c4:58:ed:d8:ae:1a:a1:7d:e5:b2:d1:1c:78:e6:ff:35:cf:
63:b7:29:63:99:2c:58:a1:24:0e:2d:fc:f9:5f:62:6e:8c:cf:
ac:c4:10:ef:b0:d3:27:d9:e1:4e:2e:53:0f:c8:83:d4:be:80:
65:97:44:fc:85:12:80:eb:ed:23:1c:42:eb:47:d3:43:0f:24:
84:3f:84:53:ba:dc:3b:d1:ea:d0:b8:9b:f3:51:ce:9a:96:3e:
47:80:e9:6c:9f:26:37:0d:44:3e:3f:0c:af:15:d3:e2:58:c9:
f4:be:b8:7b:08:74:64:de:b8:3e:9d:61:a6:fe:af:0a:a4:8b:
96:d3:9f:c4:99:b1:88:e9:8b:49:94:50:2f:1d:76:67:d3:38:
85:57:4c:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 9 02:44:45 2026 by rpki-client