Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
File: raXVKzyodFRXW2W3IO74GiYqXzo.mft (raw, json)
Hash identifier: Cu947u7fWXpBccnIszcmRFcMqYEbNdr64VvftLEczQQ=
Subject key identifier: 85:5A:7C:51:3F:E2:D2:38:2E:70:86:67:B8:8E:FD:EC:FE:AF:C1:AB
Authority key identifier: AD:A5:D5:2B:3C:A8:74:54:57:5B:65:B7:20:EE:F8:1A:26:2A:5F:3A
Certificate issuer: /CN=ada5d52b3ca87454575b65b720eef81a262a5f3a
Certificate serial: 019E9BBB785F036382B100B331FD54D45751
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
Manifest number: 1286
Signing time: Sat 06 Jun 2026 07:00:14 +0000
Manifest this update: Sat 06 Jun 2026 07:00:14 +0000
Manifest next update: Sun 07 Jun 2026 07:00:14 +0000
Files and hashes: 1: rFQ04GqSU9DTULqn8_NPkqKbWSc.roa (hash: 8XgwklO153GBrJc2s4PKkyGugWT/fq0MyA5r4Aq8lKY=)
2: raXVKzyodFRXW2W3IO74GiYqXzo.crl (hash: /B2+tlaKlToCgQlISpUwLiwR1qMuxRnYDaGjVFSfNyE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 07:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9b:bb:78:5f:03:63:82:b1:00:b3:31:fd:54:d4:57:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada5d52b3ca87454575b65b720eef81a262a5f3a
Validity
Not Before: Jun 6 07:00:14 2026 GMT
Not After : Jun 7 07:00:14 2026 GMT
Subject: CN=855a7c513fe2d2382e708667b88efdecfeafc1ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:72:4c:11:90:c6:c3:1f:c8:0a:cc:f4:c0:72:
b7:a4:89:21:af:1a:6d:eb:a8:ea:67:38:c1:90:4d:
d1:8a:7c:2b:b2:b2:87:25:24:b3:1e:c9:a7:98:f6:
e8:84:e5:05:0a:d8:3b:a7:c6:ed:47:83:43:7c:3f:
6a:20:d0:6a:eb:2c:56:95:36:0e:b5:4e:c7:05:de:
c9:fd:59:67:ba:63:7c:2a:7d:85:e1:7b:93:5c:9a:
dd:92:0f:1a:3d:f1:fd:90:4a:8a:e1:f7:8f:dc:06:
52:97:26:f2:61:ca:33:0c:2d:d2:ad:0f:4f:51:b5:
b3:0b:94:75:47:a1:65:c8:f0:f9:a3:54:29:36:b5:
0f:8c:95:f4:1d:2c:d8:19:e3:be:d9:eb:86:37:78:
05:0d:54:29:b6:32:a5:6a:e1:f1:6f:b3:4f:bc:d0:
9e:0e:25:56:f0:36:17:57:8f:29:13:0e:d9:e6:3c:
d6:83:f0:1e:2b:ac:c2:46:48:52:b1:bf:86:c8:b6:
b1:76:ac:bf:27:ad:7c:70:85:6a:20:99:50:d3:c6:
a7:d6:ce:ee:cc:4e:f3:5a:28:ad:1c:e7:ca:54:e8:
66:fb:1d:dd:04:03:77:3c:f9:0f:bb:bf:87:e2:26:
94:83:f1:10:a6:23:5d:8f:24:14:59:7a:3f:1c:cc:
56:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:5A:7C:51:3F:E2:D2:38:2E:70:86:67:B8:8E:FD:EC:FE:AF:C1:AB
X509v3 Authority Key Identifier:
keyid:AD:A5:D5:2B:3C:A8:74:54:57:5B:65:B7:20:EE:F8:1A:26:2A:5F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:16:e5:cb:ef:b6:51:8b:6c:f1:39:be:6e:8b:97:38:d7:c4:
c3:b8:8a:96:6a:20:2e:31:7a:0c:fd:3d:f4:a0:10:73:81:48:
a6:c2:8a:cb:46:7d:08:d9:c4:bc:6a:cf:4f:6e:ee:15:1e:e3:
21:34:15:fe:ab:2d:03:7e:06:3b:f2:9f:4e:2e:2c:fa:30:b1:
27:b3:a5:fd:60:63:ea:c8:b4:39:c7:58:ed:d8:ef:fb:f3:28:
1a:98:c0:7f:12:b8:da:3a:30:bf:f6:9a:3d:b5:88:1c:81:ce:
7e:3e:9a:02:2a:40:20:f3:7f:d2:31:d0:02:3d:bf:d4:53:d8:
ef:6d:89:e0:58:a2:98:ca:7e:89:c1:44:1c:d0:e5:c4:64:a5:
16:a3:37:47:7d:63:b2:a9:06:37:1c:b8:80:07:f4:be:e9:a4:
9c:94:1c:a3:d4:17:70:85:2a:f0:49:9e:68:e4:2d:99:bd:b3:
f5:91:9f:2f:d3:21:9a:b0:86:0d:ef:91:f9:3c:1f:a9:5a:90:
83:45:69:ba:7b:b4:c4:e7:7e:75:3f:7f:55:43:eb:82:bd:03:
05:85:9f:f2:ad:05:5f:a5:44:9b:95:e9:aa:9c:88:33:5c:03:
d2:06:01:b4:cd:31:12:a6:87:da:96:62:b0:0e:57:0b:dc:cb:
e8:48:e5:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 17:01:45 2026 by rpki-client