Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
File: 32GikiI62a68itgsKlZHX72XqDQ.mft (raw, json)
Hash identifier: vGz/u8QXbv6o1TZ4IBlHFXnmMNqKD6UuYOqXLxxszDw=
Subject key identifier: EB:54:CA:73:56:8A:07:73:80:55:92:9C:2F:3E:05:00:05:2E:38:7D
Authority key identifier: DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
Certificate issuer: /CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Certificate serial: 019DD163AB49D81385CD5684B81D4857298B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
Manifest number: 0F8D
Signing time: Tue 28 Apr 2026 00:01:03 +0000
Manifest this update: Tue 28 Apr 2026 00:01:03 +0000
Manifest next update: Wed 29 Apr 2026 00:01:03 +0000
Files and hashes: 1: 32GikiI62a68itgsKlZHX72XqDQ.crl (hash: eh4EOldMBizKuRjp/7h6IKYjsBwW5WFGO1a4CZqL4ws=)
2: 3N8RjBOaHqysfsXcuS4moMiqHcA.roa (hash: iQaQoggeO3tLMHb/V/COJC4hr6BU8lu4S0DICLg++wE=)
3: QjEkoZ53NxBeCFxk_AcoQWsSsbc.roa (hash: F5UhzU9AKBT9nluGCkFBzLOXoDePYCyzrIATvKRbYOM=)
4: W_FOHMjyvQTaAri5A_zDlx2DY2k.roa (hash: njRnMCxu5gn2zsVJDrc4Nj/3Yt4VdpnpXJ0wh2X6tGk=)
5: fdth4-LheaAtkNOEJz6pHobfl_k.roa (hash: rTpg5aqyYW2RH+xhrSVpQRy6U3wJBueXqcjg7bGUFhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d1:63:ab:49:d8:13:85:cd:56:84:b8:1d:48:57:29:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Validity
Not Before: Apr 28 00:01:03 2026 GMT
Not After : Apr 29 00:01:03 2026 GMT
Subject: CN=eb54ca73568a07738055929c2f3e0500052e387d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ef:25:2b:83:bb:67:cf:7b:ee:d1:c3:22:76:
90:3f:36:17:fe:a9:fb:f1:16:f7:89:72:be:da:08:
db:3c:38:e6:75:33:3d:75:d6:26:ac:67:a3:4c:2c:
54:28:f1:96:43:8f:e3:ba:05:5c:d9:b8:a2:a5:84:
ea:50:d5:81:1b:20:1f:ab:b5:50:c9:cd:2a:0c:03:
24:14:da:41:5a:77:36:35:b4:6e:3e:21:96:8c:cd:
fe:1a:86:9e:96:2a:33:f8:a9:b1:4d:e2:19:f8:2e:
9d:20:a0:d0:8b:ed:16:dc:07:2e:61:09:80:5c:18:
04:af:d8:b7:01:58:5a:18:51:f5:50:39:6d:42:c5:
bb:b2:c9:51:ed:d4:b3:61:f7:a2:0c:e9:74:1b:6f:
d5:11:ef:84:76:62:5d:31:39:0c:d2:65:78:d0:6f:
d3:19:4c:ce:66:e8:7b:d4:c0:bf:0e:b0:01:9e:e6:
50:22:41:02:6a:21:25:4f:6b:72:d7:46:7b:e6:74:
22:53:9b:a5:7f:10:bc:d2:6a:79:bf:d2:4c:0e:0f:
e9:fc:42:70:82:48:d8:6c:ae:e4:e0:19:3a:67:1f:
3d:10:50:ee:b8:fb:cf:5a:db:2a:72:44:98:ee:89:
d9:78:49:ae:8a:d7:8b:f2:07:3e:95:56:ec:43:78:
a3:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:54:CA:73:56:8A:07:73:80:55:92:9C:2F:3E:05:00:05:2E:38:7D
X509v3 Authority Key Identifier:
keyid:DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:78:41:34:aa:27:14:e4:8d:60:a5:df:66:b0:d8:e2:ee:94:
9f:58:e2:df:43:c0:a0:51:29:c5:8e:ff:3c:b7:1a:3c:82:49:
df:f9:82:0f:95:ab:2a:cb:d9:70:e1:ae:ef:fa:41:48:ce:1f:
d4:18:3a:dd:58:8f:56:cc:b5:ee:91:a1:49:b6:50:d2:7b:bf:
5c:db:5b:31:fe:fc:27:cd:04:0f:98:3b:61:5a:b0:57:54:ab:
a3:95:37:84:28:9d:ab:e0:da:36:e2:e8:14:1c:95:26:1e:34:
10:18:c8:c9:6b:fc:d7:39:88:e4:d9:a9:44:1a:2c:41:cf:62:
b3:d0:1f:93:2f:85:fb:0b:ae:71:a4:da:ab:8b:89:6b:04:f3:
7d:f2:04:0a:bb:37:9f:27:87:e9:55:3b:c4:ad:b9:7e:fc:34:
72:2a:b2:1a:5a:49:6a:2d:51:53:a4:7c:c7:60:03:40:e6:2b:
b7:08:7b:77:ba:f3:06:52:cb:b2:ac:f7:ac:b1:7a:36:0b:05:
db:2b:33:d5:15:a2:df:b4:71:37:5e:de:d0:83:8e:6b:4b:e8:
ca:2d:4a:bb:ad:13:b1:b9:d8:b4:c3:eb:84:11:13:94:7c:2c:
2b:3b:9c:60:df:a7:89:31:61:19:cd:b3:f8:dc:95:4b:21:e8:
eb:26:ac:1f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3RY6tJ2BOFzVaEuB1IVymLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmNjFhMjkyMjIzYWQ5YWViYzhhZDgyYzJhNTY0NzVmYmQ5
N2E4MzQwHhcNMjYwNDI4MDAwMTAzWhcNMjYwNDI5MDAwMTAzWjAzMTEwLwYDVQQD
EyhlYjU0Y2E3MzU2OGEwNzczODA1NTkyOWMyZjNlMDUwMDA1MmUzODdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvO8lK4O7Z8977tHDInaQPzYX/qn7
8Rb3iXK+2gjbPDjmdTM9ddYmrGejTCxUKPGWQ4/jugVc2biipYTqUNWBGyAfq7VQ
yc0qDAMkFNpBWnc2NbRuPiGWjM3+Goaelioz+KmxTeIZ+C6dIKDQi+0W3AcuYQmA
XBgEr9i3AVhaGFH1UDltQsW7sslR7dSzYfeiDOl0G2/VEe+EdmJdMTkM0mV40G/T
GUzOZuh71MC/DrABnuZQIkECaiElT2ty10Z75nQiU5ulfxC80mp5v9JMDg/p/EJw
gkjYbK7k4Bk6Zx89EFDuuPvPWtsqckSY7onZeEmuiteL8gc+lVbsQ3ijWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOtUynNWigdzgFWSnC8+BQAFLjh9MB8GA1UdIwQY
MBaAFN9hopIiOtmuvIrYLCpWR1+9l6g0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMzJHaWtpSTYyYTY4aXRnc0tsWkhYNzJYcURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9iN2Q4NzUtYjEyYy00ZWQ4LWI4MGYt
NDE0ODdmNGQ0MTcxLzEvMzJHaWtpSTYyYTY4aXRnc0tsWkhYNzJYcURRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS9iN2Q4NzUtYjEyYy00ZWQ4LWI4MGYtNDE0ODdmNGQ0MTcx
LzEvMzJHaWtpSTYyYTY4aXRnc0tsWkhYNzJYcURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiHhBNKon
FOSNYKXfZrDY4u6Un1ji30PAoFEpxY7/PLcaPIJJ3/mCD5WrKsvZcOGu7/pBSM4f
1Bg63ViPVsy17pGhSbZQ0nu/XNtbMf78J80ED5g7YVqwV1Sro5U3hCidq+DaNuLo
FByVJh40EBjIyWv81zmI5NmpRBosQc9is9Afky+F+wuucaTaq4uJawTzffIECrs3
nyeH6VU7xK25fvw0ciqyGlpJai1RU6R8x2ADQOYrtwh7d7rzBlLLsqz3rLF6NgsF
2ysz1RWi37RxN17e0IOOa0voyi1Ku60TsbnYtMPrhBETlHwsKzucYN+niTFhGc2z
+NyVSyHo6yasHw==
-----END CERTIFICATE-----
Generated at Tue Apr 28 03:23:40 2026 by rpki-client