Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
File: syu38vqMQUxnGIvau_t2IVaTuoc.mft (raw, json)
Hash identifier: NHxQPg2KOCFAzeP1IULY9kZOSTydAbmg1ODWsIGd3EM=
Subject key identifier: DC:1C:04:BF:5F:E4:C9:B1:9A:2C:B7:0F:09:B9:38:75:50:93:91:3B
Authority key identifier: B3:2B:B7:F2:FA:8C:41:4C:67:18:8B:DA:BB:FB:76:21:56:93:BA:87
Certificate issuer: /CN=b32bb7f2fa8c414c67188bdabbfb76215693ba87
Certificate serial: 019D37F726876131B74B9A54C21A630A7855
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syu38vqMQUxnGIvau_t2IVaTuoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
Manifest number: 068B
Signing time: Sun 29 Mar 2026 05:00:37 +0000
Manifest this update: Sun 29 Mar 2026 05:00:37 +0000
Manifest next update: Mon 30 Mar 2026 05:00:37 +0000
Files and hashes: 1: syu38vqMQUxnGIvau_t2IVaTuoc.crl (hash: z5DjIVd4MEAbBslrowgitKgAKilkZ2RLcSB6dBNUpuA=)
2: wJwV6ipRPUdCTP4fq4B5e44G-Bk.roa (hash: OuGJ2COZawhtaPzVWGfAkluTCMVpexyVap4Pk8L9hUM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
rsync://rpki.ripe.net/repository/DEFAULT/syu38vqMQUxnGIvau_t2IVaTuoc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:26:87:61:31:b7:4b:9a:54:c2:1a:63:0a:78:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b32bb7f2fa8c414c67188bdabbfb76215693ba87
Validity
Not Before: Mar 29 05:00:37 2026 GMT
Not After : Mar 30 05:00:37 2026 GMT
Subject: CN=dc1c04bf5fe4c9b19a2cb70f09b938755093913b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:10:e0:ca:43:fa:55:d2:f8:aa:75:87:a1:fb:
31:6c:4e:9e:12:9e:39:3e:ac:5c:bd:79:a9:80:23:
27:d9:4a:59:e1:3a:3f:d1:c6:69:fd:eb:d3:fb:97:
4d:c5:23:e2:41:d9:94:13:68:03:bc:79:53:1d:52:
03:4a:1f:d9:63:bd:dc:f9:96:2f:74:be:6e:1d:fe:
0c:74:6f:0b:94:48:eb:bd:d1:96:b1:8f:04:83:b7:
2f:0a:a2:4a:5d:09:64:c0:3c:74:94:64:e3:b4:cd:
93:2e:90:dc:1b:d8:01:e5:c9:f3:81:61:a3:f2:69:
95:b3:ef:38:03:53:35:4c:1d:27:7c:fe:d9:e6:2e:
51:56:55:01:2f:6f:38:2b:52:f2:98:1b:b9:8f:34:
00:c0:43:13:3f:7c:c7:f8:8d:aa:94:69:11:f7:a6:
76:9b:c0:bb:f0:52:50:fe:4d:b9:20:76:25:f5:bd:
94:37:a9:5b:05:2e:de:22:56:10:44:3c:d6:80:2d:
4e:8f:a4:00:ac:00:50:cd:56:08:4f:e8:49:1c:31:
e4:fc:a6:da:30:6d:69:99:df:90:6b:1f:c5:1b:35:
39:20:0b:03:db:9d:4c:f5:16:7f:43:2d:4d:d5:e7:
26:f1:0a:9c:74:c5:1f:ee:c7:f2:52:af:d5:cb:a1:
1c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:1C:04:BF:5F:E4:C9:B1:9A:2C:B7:0F:09:B9:38:75:50:93:91:3B
X509v3 Authority Key Identifier:
keyid:B3:2B:B7:F2:FA:8C:41:4C:67:18:8B:DA:BB:FB:76:21:56:93:BA:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syu38vqMQUxnGIvau_t2IVaTuoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:b9:a9:f0:1e:98:94:a2:3c:b7:4f:1d:05:dd:6c:1b:c4:d2:
9a:4a:ac:e0:59:aa:3c:85:b1:8a:7e:a8:6a:d8:7f:63:44:2b:
c7:e2:06:0c:9d:a1:b9:91:cf:b9:c9:0a:65:6d:3c:41:d2:22:
fb:a5:7b:00:bd:02:89:fc:d4:bf:55:21:87:f0:77:77:80:84:
04:dd:72:81:c3:9b:5f:d2:6d:d5:6b:e7:df:f2:35:18:d1:f9:
1d:c5:7a:99:9e:53:c3:3d:aa:3a:8d:d5:01:a8:dc:61:9c:a4:
c8:72:e2:c4:1d:52:0a:85:63:e0:d9:ca:bd:9f:ba:de:f3:55:
c8:8b:c6:b9:1b:2b:91:a7:64:ef:b8:7b:63:7b:35:da:cd:29:
9e:ce:61:ac:40:e5:5c:c8:04:d2:4c:20:16:00:8e:43:f0:83:
1f:67:bd:35:db:3a:bf:1d:d3:d6:71:ef:16:fc:66:5d:25:9f:
54:ea:2d:e2:e2:01:83:3e:ca:6d:9c:cd:6e:14:9f:d3:00:2d:
be:6f:8c:63:10:80:b2:62:c0:19:2a:c6:bd:b5:2d:8a:64:c4:
33:00:6b:36:03:ba:9d:9a:a4:d3:dc:e5:c2:68:be:75:17:3f:
11:6f:a5:26:fd:43:0e:2a:02:b5:f5:34:6e:f3:2f:29:ae:3f:
56:25:c8:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:56:56 2026 by rpki-client