Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
File: 70eAIfcqIbdxQqRNgV3envJoTLw.mft (raw, json)
Hash identifier: 8RJMCDl1VrfegfEiRS53Kf8MdwFcfwuSswDz0Y5yC80=
Subject key identifier: DC:93:BF:D5:72:9C:AB:56:B2:99:F2:2C:5E:A1:9B:41:FA:43:17:6F
Authority key identifier: EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
Certificate issuer: /CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Certificate serial: 019E1DC75D5C6426373DFA01DA42D1EEF01C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
Manifest number: 1904
Signing time: Tue 12 May 2026 20:01:05 +0000
Manifest this update: Tue 12 May 2026 20:01:05 +0000
Manifest next update: Wed 13 May 2026 20:01:05 +0000
Files and hashes: 1: 70eAIfcqIbdxQqRNgV3envJoTLw.crl (hash: HRtEv/eL/Q5phchP8qCkhXg5tIsIlglikL2MUHAWRUI=)
2: I9nUczY20Zb-qB4txSR8cQbIwOU.roa (hash: tVztN2aCOWmTRMBNdBunPfUafnJabZOVueK23yoz3NY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:5d:5c:64:26:37:3d:fa:01:da:42:d1:ee:f0:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Validity
Not Before: May 12 20:01:05 2026 GMT
Not After : May 13 20:01:05 2026 GMT
Subject: CN=dc93bfd5729cab56b299f22c5ea19b41fa43176f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e1:06:1b:aa:7e:bb:eb:ec:d2:a4:da:4e:3b:
42:d4:a8:e9:11:84:22:a1:d3:cc:fa:f2:0c:b4:4f:
7c:56:2f:47:93:83:c3:d4:40:90:76:68:42:b8:3c:
92:e1:e4:59:a5:33:04:30:01:9c:bc:22:a0:9e:9f:
2c:e2:01:9e:52:04:1f:63:38:aa:e1:a8:17:85:df:
90:23:67:73:4f:1a:99:8d:a0:11:6b:9c:4f:a0:4d:
91:d1:2e:7b:5b:a8:44:e7:6e:2a:74:1f:b7:95:2b:
57:97:8c:5c:0d:ac:90:1c:d3:bc:35:8d:70:cb:c5:
fb:10:58:3f:c8:d2:55:0f:0d:e6:45:ba:f4:0e:be:
2b:d9:ef:4f:cf:b5:f1:98:c7:61:52:c1:9c:61:a8:
57:5f:83:27:1e:49:b8:a1:1f:25:c3:23:68:c5:42:
43:07:f6:c8:3b:6d:e5:4c:6a:f5:04:00:7f:c7:29:
fd:76:c8:9e:12:bd:01:90:4c:59:ec:c4:10:6f:eb:
0a:4b:03:50:30:62:7f:c6:25:c4:d3:77:64:75:c1:
6c:d4:c0:50:e5:2c:c1:6a:39:4a:89:8c:07:aa:2a:
a4:3b:ea:9d:8c:c4:9f:4b:9b:4c:d5:21:32:7f:ef:
b1:9a:03:dd:a3:03:67:0f:0b:7e:62:b9:cc:23:b1:
61:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:93:BF:D5:72:9C:AB:56:B2:99:F2:2C:5E:A1:9B:41:FA:43:17:6F
X509v3 Authority Key Identifier:
keyid:EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:84:85:1b:56:84:19:19:b4:c8:17:a3:83:0c:f8:b1:6d:e3:
af:14:a3:46:26:f5:42:7e:25:1e:a3:58:b8:50:11:09:b4:1b:
45:25:60:89:b2:05:dd:ce:6c:ca:df:7a:eb:13:1d:c0:79:80:
27:ac:76:db:69:24:64:3b:1a:f4:b6:cc:1b:74:32:ee:54:c3:
fc:7c:cf:41:75:7c:11:4c:63:e4:d6:e4:2b:a3:d8:f4:24:9e:
30:b3:11:ea:dd:c1:c8:0a:1d:0d:5f:69:a6:e8:7e:f5:03:2e:
31:05:07:bf:f1:e2:eb:ed:91:fc:ec:05:5e:32:6f:fd:26:19:
93:d0:f0:bd:f8:14:ef:6c:d6:0e:c5:f0:c3:38:a3:b5:c0:0a:
ae:dc:46:48:2b:7f:b1:e9:52:71:d6:b5:1a:0d:81:7d:34:c0:
ce:6b:51:95:6d:46:f2:ae:9f:35:9f:f5:21:25:ef:31:3c:60:
53:be:bb:22:54:a1:1e:da:04:9c:2c:81:59:5a:24:05:8e:f3:
fa:d3:e8:c2:3d:25:0a:d2:69:40:1c:24:0c:23:3a:1a:a8:2c:
97:fd:98:02:b2:7b:90:4b:95:b4:69:36:7d:59:47:c7:42:53:
bd:ca:ca:31:bc:d7:a2:f8:0d:c7:a2:29:cf:9b:1a:7f:c0:d4:
a0:b4:43:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:45:35 2026 by rpki-client