Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
File: rFxTEhWE19himH8m_3vtWuE4FqE.mft (raw, json)
Hash identifier: FsO81y4CV2neHoTAg9haCmql6RTBikKidrbvF2GhETc=
Subject key identifier: DB:2F:A9:59:7E:93:59:CF:9C:62:20:9C:F2:4E:66:5B:CE:84:F6:43
Authority key identifier: AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
Certificate issuer: /CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Certificate serial: 019EA7F700382E5AE6F46E31C8E574001FD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
Manifest number: 0313
Signing time: Mon 08 Jun 2026 16:00:42 +0000
Manifest this update: Mon 08 Jun 2026 16:00:42 +0000
Manifest next update: Tue 09 Jun 2026 16:00:42 +0000
Files and hashes: 1: Ln3OJ6zDWx7Blw5HCll4po4CH-M.roa (hash: BZd7Kwg87H/bospWBtm/c29GcUHDV3xSrqHEL2bm8Hg=)
2: rFxTEhWE19himH8m_3vtWuE4FqE.crl (hash: gCx9CP/MFZdsgFIW8l0n39y3qrXJlewUCCER53WMmtg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Jun 2026 16:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a7:f7:00:38:2e:5a:e6:f4:6e:31:c8:e5:74:00:1f:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Validity
Not Before: Jun 8 16:00:42 2026 GMT
Not After : Jun 9 16:00:42 2026 GMT
Subject: CN=db2fa9597e9359cf9c62209cf24e665bce84f643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c1:b3:3c:90:0a:65:e2:c5:13:81:23:51:74:
81:60:41:02:d6:f2:c0:9d:40:9b:38:6a:cd:5c:ad:
00:5e:25:b8:df:f7:54:08:2a:70:c5:22:65:a2:de:
c3:cf:06:4b:53:78:1f:8c:4d:d2:e3:60:d3:3c:ee:
bf:a4:1c:b1:c7:f3:73:0d:49:18:bd:55:88:c1:1b:
6d:0d:3c:a7:b5:9b:40:e3:52:59:44:3e:a2:e7:04:
c6:b3:e1:b0:77:f2:9c:9a:de:ca:75:63:2f:c1:34:
29:67:e4:39:78:cc:ba:c6:28:7a:eb:56:4d:c8:0f:
e6:6b:f8:cc:2e:64:d2:5d:84:40:db:ac:6c:65:4d:
7d:f9:d2:5c:9f:de:f5:54:52:1d:bd:c9:e4:54:ad:
61:ec:36:b8:18:7e:1b:37:9c:1f:19:cc:6f:f5:db:
47:64:ef:35:6b:94:77:81:02:bb:71:a4:eb:e0:5b:
01:73:d6:83:a2:0c:e2:90:37:c2:0f:7c:d3:ce:38:
3c:02:94:33:ee:51:cd:a4:b3:97:d7:6b:51:07:ed:
72:06:ac:dc:30:ae:df:fd:4d:33:4b:71:3c:4a:d8:
ce:07:eb:62:03:2f:b6:9c:e8:29:13:ec:ab:26:f2:
2a:92:eb:11:7c:b5:80:1c:28:4a:f0:29:49:dd:fe:
db:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:2F:A9:59:7E:93:59:CF:9C:62:20:9C:F2:4E:66:5B:CE:84:F6:43
X509v3 Authority Key Identifier:
keyid:AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:cb:84:a7:39:9b:aa:37:28:02:28:56:fd:4a:73:97:e8:27:
8e:39:d2:d9:c5:9e:ef:58:f4:cf:fb:bb:27:21:c9:89:4b:39:
d9:72:ec:9e:f2:6c:d6:01:0d:1a:ea:7c:be:7f:63:69:c1:70:
5f:09:0c:ed:6b:eb:60:aa:64:1b:b0:75:d7:cc:2b:65:80:9c:
85:08:e5:73:24:e8:4b:9e:1f:c6:9b:5b:6c:bd:02:ca:42:10:
fa:d2:a1:3a:8c:9e:a2:5a:81:56:8a:85:38:02:fb:09:ea:73:
8c:3c:54:76:40:a9:65:56:bf:8e:45:f2:a1:dc:47:4e:39:2b:
39:75:27:d9:09:2c:7b:22:72:76:84:5b:c1:29:67:76:93:d4:
14:cd:71:7a:54:b4:1e:39:b3:c1:71:5e:d9:58:e9:0c:f5:1b:
06:46:b0:63:ef:ac:80:8e:ce:b5:47:66:66:38:08:bc:f8:29:
a2:5d:b6:0c:cc:3f:18:ce:a7:df:37:df:ff:31:91:bb:79:5b:
77:6d:8f:e3:0a:16:c0:a4:3c:9e:64:3b:87:28:8c:17:56:9f:
34:f5:25:73:47:1e:b0:57:96:68:bc:0c:de:36:60:e6:ba:cb:
b4:c3:c7:28:25:d3:35:2e:7f:7a:34:aa:1f:89:13:7d:bc:df:
d1:f7:aa:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6n9wA4Llrm9G4xyOV0AB/SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjNWM1MzEyMTU4NGQ3ZDg2Mjk4N2YyNmZmN2JlZDVhZTEz
ODE2YTEwHhcNMjYwNjA4MTYwMDQyWhcNMjYwNjA5MTYwMDQyWjAzMTEwLwYDVQQD
EyhkYjJmYTk1OTdlOTM1OWNmOWM2MjIwOWNmMjRlNjY1YmNlODRmNjQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA18GzPJAKZeLFE4EjUXSBYEEC1vLA
nUCbOGrNXK0AXiW43/dUCCpwxSJlot7DzwZLU3gfjE3S42DTPO6/pByxx/NzDUkY
vVWIwRttDTyntZtA41JZRD6i5wTGs+Gwd/Kcmt7KdWMvwTQpZ+Q5eMy6xih661ZN
yA/ma/jMLmTSXYRA26xsZU19+dJcn971VFIdvcnkVK1h7Da4GH4bN5wfGcxv9dtH
ZO81a5R3gQK7caTr4FsBc9aDogzikDfCD3zTzjg8ApQz7lHNpLOX12tRB+1yBqzc
MK7f/U0zS3E8StjOB+tiAy+2nOgpE+yrJvIqkusRfLWAHChK8ClJ3f7bDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNsvqVl+k1nPnGIgnPJOZlvOhPZDMB8GA1UdIwQY
MBaAFKxcUxIVhNfYYph/Jv977VrhOBahMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvckZ4VEVoV0UxOWhpbUg4bV8zdnRXdUU0RnFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8xMDdmZGQtZDJhNS00NTBjLWIwMzEt
MjViZjI1MDE4NDg5LzEvckZ4VEVoV0UxOWhpbUg4bV8zdnRXdUU0RnFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC8xMDdmZGQtZDJhNS00NTBjLWIwMzEtMjViZjI1MDE4NDg5
LzEvckZ4VEVoV0UxOWhpbUg4bV8zdnRXdUU0RnFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOcuEpzmb
qjcoAihW/Upzl+gnjjnS2cWe71j0z/u7JyHJiUs52XLsnvJs1gENGup8vn9jacFw
XwkM7WvrYKpkG7B118wrZYCchQjlcyToS54fxptbbL0CykIQ+tKhOoyeolqBVoqF
OAL7CepzjDxUdkCpZVa/jkXyodxHTjkrOXUn2QkseyJydoRbwSlndpPUFM1xelS0
HjmzwXFe2VjpDPUbBkawY++sgI7OtUdmZjgIvPgpol22DMw/GM6n3zff/zGRu3lb
d22P4woWwKQ8nmQ7hyiMF1afNPUlc0cesFeWaLwM3jZg5rrLtMPHKCXTNS5/ejSq
H4kTfbzf0feqcA==
-----END CERTIFICATE-----
Generated at Tue Jun 9 01:28:23 2026 by rpki-client