Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft
File: USd7w4wS4ELt31bX519QVjxL0ic.mft (raw, json)
Hash identifier: ANQM4azQIhEmii2sCfiUlTAt6CK/Q9+CZQSJIu5Vp5o=
Subject key identifier: 1B:BE:1E:58:B0:4D:97:CB:B7:39:4D:16:0B:32:B5:79:9D:90:B3:CB
Authority key identifier: 51:27:7B:C3:8C:12:E0:42:ED:DF:56:D7:E7:5F:50:56:3C:4B:D2:27
Certificate issuer: /CN=51277bc38c12e042eddf56d7e75f50563c4bd227
Certificate serial: 019EFD279C9D4FF951BB18E833862B95F368
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft
Manifest number: 1977
Signing time: Thu 25 Jun 2026 05:01:31 +0000
Manifest this update: Thu 25 Jun 2026 05:01:31 +0000
Manifest next update: Fri 26 Jun 2026 05:01:31 +0000
Files and hashes: 1: D4QRrUObCGq3FWyTZQYsdDxIC-Y.asa (hash: f66FrX9VHylFdBsRAbYxdFz6/ASysid9BFIKkasqYLk=)
2: HVAKOChJvzlPOcqJ_ehcMgXUK9o.roa (hash: 2mWGKvxbtg/GycElX7B4p0Awmc5Qwctw5xexjAFCbUI=)
3: USd7w4wS4ELt31bX519QVjxL0ic.crl (hash: 4IxsxkmD+yU76LiI1Rkkk3Vh14ka8j3EM8s5XFOe55w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft
rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fd:27:9c:9d:4f:f9:51:bb:18:e8:33:86:2b:95:f3:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51277bc38c12e042eddf56d7e75f50563c4bd227
Validity
Not Before: Jun 25 05:01:31 2026 GMT
Not After : Jun 26 05:01:31 2026 GMT
Subject: CN=1bbe1e58b04d97cbb7394d160b32b5799d90b3cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7d:d1:58:68:e9:3b:c5:0a:f2:46:60:ba:cf:
04:50:67:92:1d:f6:4e:e8:2c:a8:33:7e:19:06:b3:
74:ad:99:f9:49:5c:d8:86:b0:d7:5b:c7:99:eb:3d:
43:ad:d8:2f:8d:a7:35:51:90:95:e4:fa:2e:e2:90:
47:dd:41:64:b5:4e:c4:96:03:34:15:a6:b7:53:8c:
c5:7d:d2:17:c3:f8:5f:e0:f8:fc:78:5c:23:d8:40:
4d:46:61:f5:f0:af:7a:0a:77:59:5b:bc:48:60:17:
b3:1c:1f:5e:fa:e2:80:a4:90:8b:42:fd:52:2e:45:
9d:b2:bb:5c:8c:40:83:73:e7:46:93:a6:43:45:3a:
e4:61:7c:4d:38:aa:0e:5a:09:c0:54:cc:1e:64:84:
6f:21:39:bf:f5:af:d4:4b:f3:fb:1c:6e:be:fd:23:
ba:38:f4:a5:a6:55:57:f2:2b:49:91:56:36:98:d6:
fa:ce:2b:18:f9:82:f3:75:e0:e8:a1:f6:5d:83:45:
af:61:59:24:64:84:fa:db:df:3b:32:39:b2:6c:92:
2a:17:31:41:47:1a:11:da:75:d0:a6:58:fc:91:f2:
2b:0b:80:f5:65:2f:e0:a9:25:a4:7d:d4:9f:60:58:
63:60:24:37:5d:c0:e8:a4:89:e4:74:3e:5d:76:88:
13:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:BE:1E:58:B0:4D:97:CB:B7:39:4D:16:0B:32:B5:79:9D:90:B3:CB
X509v3 Authority Key Identifier:
keyid:51:27:7B:C3:8C:12:E0:42:ED:DF:56:D7:E7:5F:50:56:3C:4B:D2:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:d7:87:7e:07:ff:4a:e1:e3:40:26:a0:fa:ce:9d:a4:a1:0a:
00:6b:39:07:19:50:f5:8e:1f:6c:bd:8e:0e:f4:fe:b2:1f:24:
ca:70:5a:f9:f5:81:0a:f3:43:c6:4d:c6:38:16:9c:ac:90:6d:
48:dd:ec:1a:9d:37:ce:56:8a:e2:f0:c3:51:83:ec:19:e1:e1:
64:95:86:8c:47:07:07:c8:8d:5e:22:15:1b:0c:d7:72:5e:07:
9b:94:bf:bc:dd:47:03:a8:5f:9f:d5:2b:d6:f8:8a:10:ca:10:
1f:a8:62:3e:ff:3b:41:5f:ca:2c:da:de:4f:8c:23:eb:76:0c:
f5:c0:0f:af:b0:bc:25:f3:04:d8:3e:ee:8f:49:67:3c:db:f5:
4f:3c:9e:f8:95:bb:e7:21:9e:45:c0:0d:22:fa:c0:54:f9:7d:
5d:d3:01:54:92:ff:c1:23:6d:a9:d7:a2:22:3b:67:00:e7:20:
78:b8:e1:23:8d:ea:a1:bd:dc:a3:00:6f:f0:36:4f:32:78:d6:
da:37:40:a8:9e:2b:c7:95:05:c7:5a:32:65:a9:ba:f5:cf:6a:
22:44:9a:41:80:7e:4d:83:28:2e:b2:28:8e:1b:aa:fe:09:dd:
37:bd:86:70:92:00:0b:91:ed:32:9e:90:b2:36:5a:c2:08:eb:
52:05:1a:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 08:30:02 2026 by rpki-client