Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
File: MtOVxX39MMDNLDD0IziuTBSnUKE.mft (raw, json)
Hash identifier: QF9JkoEMAIe85do1Fh7kVwiIcpIlDSGX4kJfWR9BgLs=
Subject key identifier: E5:04:14:18:43:24:B8:D1:4D:06:0C:59:71:63:07:A2:80:78:56:15
Authority key identifier: 32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
Certificate issuer: /CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Certificate serial: 019E1FEC7D10817C2793F1274B3C27A3DA66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
Manifest number: 0DF0
Signing time: Wed 13 May 2026 06:00:52 +0000
Manifest this update: Wed 13 May 2026 06:00:52 +0000
Manifest next update: Thu 14 May 2026 06:00:52 +0000
Files and hashes: 1: 44IrAvvEKSWJ98iqKpkSKb-6qZQ.roa (hash: U4fdOWuwUY9/P9u0/ZElUYWz4NntxpKIR4cfbGlP9vk=)
2: MtOVxX39MMDNLDD0IziuTBSnUKE.crl (hash: sKbbQ17udeFw49W/akjxECjW21fDgS3w6Jm1MVH8kvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ec:7d:10:81:7c:27:93:f1:27:4b:3c:27:a3:da:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Validity
Not Before: May 13 06:00:52 2026 GMT
Not After : May 14 06:00:52 2026 GMT
Subject: CN=e50414184324b8d14d060c59716307a280785615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:18:5c:64:de:20:7f:13:b9:5f:23:60:e4:f1:
c5:65:93:e1:32:28:2f:16:e0:f3:f4:f6:7a:7f:78:
c7:be:b6:cc:70:f9:7b:2f:e6:42:98:6a:21:ff:e3:
e2:aa:d6:5f:51:90:72:cc:75:ee:0a:d0:76:6a:6c:
6e:ab:1d:38:05:19:33:25:21:50:52:f0:17:42:04:
b6:09:8d:8c:60:95:15:d1:33:07:80:bf:cc:15:cc:
ad:b0:4d:d3:e9:df:f7:07:12:06:77:7f:c4:47:35:
c0:d4:9a:e6:1d:7c:79:e7:51:dd:4a:91:0b:90:aa:
14:db:51:c9:17:91:87:fa:b3:f2:21:fa:3b:44:a2:
7a:bc:15:21:bf:84:d5:e8:69:5b:85:7b:3f:95:f4:
8e:2c:a2:24:29:71:5b:a5:a6:74:e1:06:e4:19:97:
76:63:3b:15:aa:9b:55:da:d5:24:22:5d:52:21:69:
3d:00:3d:ea:1d:93:2c:fb:2f:cc:7c:95:03:75:f6:
6b:a2:a2:4d:a2:c6:64:2e:25:21:c3:d1:e6:24:e8:
9d:90:7d:52:06:a8:0a:81:14:a7:9c:d3:7f:65:5c:
39:2b:48:08:14:57:43:88:9f:84:21:d5:b5:32:2b:
fb:6e:09:fc:68:19:a9:ee:10:8d:c5:61:62:2f:e7:
ab:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:04:14:18:43:24:B8:D1:4D:06:0C:59:71:63:07:A2:80:78:56:15
X509v3 Authority Key Identifier:
keyid:32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:c0:f0:a7:45:06:8e:ed:2a:2b:14:41:64:8f:3c:b0:95:4f:
00:de:f6:03:e4:d2:ee:e2:ef:d1:cf:24:51:37:65:3f:a6:f5:
b2:75:d3:64:35:06:38:ed:69:d1:aa:53:7a:f2:6f:07:24:02:
cc:45:8a:73:15:0b:67:3b:0d:08:b4:c0:bf:b9:41:72:8f:1f:
e1:76:59:e9:03:79:67:6d:0c:6b:fc:cb:98:d6:1b:cf:f1:d7:
56:a1:a1:89:b3:46:c3:78:e3:43:87:42:6b:bb:23:8b:e7:d2:
18:5d:e9:3f:d4:70:a6:23:d7:76:c8:2b:0e:d8:5f:4f:ca:54:
13:83:3a:72:b0:ea:08:9a:4c:dd:dd:bc:6c:b2:5a:e7:a8:47:
cb:5c:90:f0:54:5f:d4:f3:f0:27:64:b0:96:4f:44:56:f1:37:
c4:89:9a:a0:eb:55:33:f4:2d:1f:46:53:14:71:4b:0b:18:3f:
03:50:79:db:8f:50:03:57:c6:7a:d5:c8:48:a7:00:f0:bf:14:
cf:f1:b3:7e:17:28:5a:33:01:79:02:5d:df:98:99:a9:94:9d:
c8:d3:61:d7:b2:95:c9:ed:03:c7:1a:b5:8d:52:9f:9d:1b:7c:
82:f9:01:10:a9:aa:de:be:37:74:65:86:00:16:44:02:d5:1c:
e6:7d:b4:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:06:44 2026 by rpki-client