Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
File: S2T4wOGznYqO-OjItaD_7itTtYc.mft (raw, json)
Hash identifier: SNIn63uUH8muWBlNCcOUTUjXEDkLcsoeot/Tw5oW6t8=
Subject key identifier: CD:CF:7C:14:C5:AA:77:F1:F2:7D:2C:2F:B5:1C:34:1B:F5:F1:1A:CA
Authority key identifier: 4B:64:F8:C0:E1:B3:9D:8A:8E:F8:E8:C8:B5:A0:FF:EE:2B:53:B5:87
Certificate issuer: /CN=4b64f8c0e1b39d8a8ef8e8c8b5a0ffee2b53b587
Certificate serial: 019E1E6C7509F259CBFC0A31C76259902602
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
Manifest number: 0A32
Signing time: Tue 12 May 2026 23:01:24 +0000
Manifest this update: Tue 12 May 2026 23:01:24 +0000
Manifest next update: Wed 13 May 2026 23:01:24 +0000
Files and hashes: 1: 76Y2-HUPTiLdTCSIpYCkR2ZgGcQ.roa (hash: aIEXIJxpvH5c1txE7w8Ef9ChmAewpEGy4MTuP+uMjCA=)
2: S2T4wOGznYqO-OjItaD_7itTtYc.crl (hash: 7fddYp+2fYfUIPrE2ntiPt7jIa0A+xqoLKka07cBVkQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:75:09:f2:59:cb:fc:0a:31:c7:62:59:90:26:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b64f8c0e1b39d8a8ef8e8c8b5a0ffee2b53b587
Validity
Not Before: May 12 23:01:24 2026 GMT
Not After : May 13 23:01:24 2026 GMT
Subject: CN=cdcf7c14c5aa77f1f27d2c2fb51c341bf5f11aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:bf:1a:d6:ec:26:8e:d5:cc:1b:64:af:c6:8f:
ef:1b:4e:81:17:fe:10:ba:6f:dd:3b:ee:65:b6:a9:
5b:ed:40:9d:b9:4a:e5:ff:de:e8:48:4b:6c:3d:a3:
db:cf:9f:8e:58:67:2d:eb:45:5e:e5:64:7e:45:a9:
dc:a8:3b:f8:72:b7:59:fe:db:06:e3:c5:89:84:fa:
58:8e:9c:4d:25:94:c9:9d:29:f4:b3:61:d9:8e:e4:
01:a3:29:f2:46:89:05:6c:23:d1:cc:8c:00:ad:d3:
66:9a:2a:31:c7:85:40:16:f1:f7:66:74:7f:c8:70:
03:50:e6:ad:38:97:1a:be:fa:d9:c0:a5:3a:fb:3e:
3b:5c:02:59:59:14:0e:33:cc:58:38:c3:52:ab:9a:
58:92:79:57:5c:cc:cb:73:e7:58:2b:1e:d7:8d:d8:
c2:c6:3d:ff:94:4f:4a:fe:41:ba:4b:7b:fd:ba:3c:
a0:e9:f5:a3:bd:51:2b:d5:bb:b9:2d:7e:42:c7:53:
3a:93:18:db:54:4b:76:05:57:88:04:fc:ec:63:4c:
43:e5:09:2c:e6:82:bb:54:92:01:fc:a5:ce:c8:11:
4f:22:15:23:f2:ff:ad:a9:e2:03:51:a8:c5:4c:38:
8f:05:45:51:34:99:f6:da:59:44:d8:1d:49:ff:fe:
9f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:CF:7C:14:C5:AA:77:F1:F2:7D:2C:2F:B5:1C:34:1B:F5:F1:1A:CA
X509v3 Authority Key Identifier:
keyid:4B:64:F8:C0:E1:B3:9D:8A:8E:F8:E8:C8:B5:A0:FF:EE:2B:53:B5:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:1b:54:e6:46:20:38:e8:88:f2:f0:7e:a6:6b:bc:69:2a:de:
59:a5:df:eb:53:ff:5b:11:03:7f:ee:5a:c7:61:7e:53:66:a8:
e3:b4:16:47:ca:59:1e:3e:e2:0d:a8:62:5e:49:fb:f2:10:15:
46:8f:74:9e:a3:e7:da:c8:cf:74:52:5e:44:77:91:95:9a:98:
fa:e1:91:20:3d:db:7b:d3:c3:cf:89:38:14:d8:1e:48:ee:c9:
14:53:32:83:0f:8c:1e:05:a4:fb:ad:a8:ca:df:c3:2d:da:12:
5e:59:1a:ae:47:e4:35:53:28:07:f7:94:47:2e:b2:a6:77:ff:
f2:b1:4d:f4:37:55:77:62:73:09:1e:7b:f9:a7:41:f1:6f:5d:
25:8a:5d:3b:a2:11:f5:bb:08:96:76:f6:20:9e:59:99:b2:f2:
09:e2:97:ce:cf:17:b9:7b:ac:0f:3c:2a:23:b6:95:75:db:cd:
09:c7:16:bb:e9:4b:3d:e3:0d:0a:d6:a6:a2:a1:79:1c:8a:f1:
11:28:40:e7:cc:2e:c6:00:9b:11:4f:7d:48:48:af:e6:8a:96:
4f:d7:1b:4c:b2:d9:35:12:d6:a7:97:0d:11:64:8e:0e:94:3b:
bb:c2:1a:3f:ae:83:37:02:04:14:a6:91:c2:2c:41:b9:6e:a6:
49:38:02:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:06:49 2026 by rpki-client