Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.mft
File: ruqgluuzdlfk060hdmQRctbiArw.mft (raw, json)
Hash identifier: EIwVNm+ZpLee2HSKtrEM2sXOSIVf7iX4GzCqjKdhHD4=
Subject key identifier: 01:B2:48:1E:6F:6C:26:28:EA:D6:2A:2F:BA:B1:24:F9:EF:F9:0D:E3
Authority key identifier: AE:EA:A0:96:EB:B3:76:57:E4:D3:AD:21:76:64:11:72:D6:E2:02:BC
Certificate issuer: /CN=aeeaa096ebb37657e4d3ad2176641172d6e202bc
Certificate serial: 019E205A76C02DCEE7CE441001D292331A82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruqgluuzdlfk060hdmQRctbiArw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.mft
Manifest number: 0DA0
Signing time: Wed 13 May 2026 08:00:59 +0000
Manifest this update: Wed 13 May 2026 08:00:59 +0000
Manifest next update: Thu 14 May 2026 08:00:59 +0000
Files and hashes: 1: akW7_4B1c1-TUlyABJDZZ5C9MTs.roa (hash: R6h75h04kvMzsvpJpfqerZYqo36Vm9P1L15UtjUMqOQ=)
2: ruqgluuzdlfk060hdmQRctbiArw.crl (hash: la708h879qSRTQi0ZKKVR92K/FRsF7AZcZk0wDucYsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ruqgluuzdlfk060hdmQRctbiArw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 08:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:5a:76:c0:2d:ce:e7:ce:44:10:01:d2:92:33:1a:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aeeaa096ebb37657e4d3ad2176641172d6e202bc
Validity
Not Before: May 13 08:00:59 2026 GMT
Not After : May 14 08:00:59 2026 GMT
Subject: CN=01b2481e6f6c2628ead62a2fbab124f9eff90de3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:13:1c:60:fd:e6:32:8f:25:10:c7:4c:97:a1:
d9:21:b7:d3:9f:bf:ae:81:9e:3b:da:a8:91:6c:42:
59:fe:58:45:b0:5c:a7:a8:92:be:d9:55:7e:b0:69:
1e:7a:5e:36:bb:fb:ee:38:9f:00:f5:c7:73:43:83:
95:c2:65:ed:cb:44:71:41:eb:db:d1:a5:b3:f3:3f:
7f:6d:12:bf:e0:36:0f:02:61:ab:f5:56:ee:12:02:
cf:46:61:c1:96:36:fc:63:ae:9a:e0:5d:00:38:3e:
01:86:46:ee:fe:e6:fb:9c:93:8a:29:13:f8:41:a5:
b9:27:b3:19:16:b8:d8:bd:15:d9:c7:69:01:58:2d:
2d:22:8c:a7:b0:8e:5a:a1:2f:88:fd:19:3b:75:16:
aa:54:12:ea:99:a6:a8:9d:db:02:8d:11:dd:47:b4:
60:82:7d:97:e3:e7:90:c5:6c:ba:f7:a6:a4:08:4e:
1f:e2:9b:0d:12:4c:9b:5c:02:b2:a5:79:cf:6a:c6:
e8:e1:a1:41:a2:5f:52:6e:23:35:26:f3:7e:b8:fb:
37:9b:15:06:c8:05:37:a3:b7:19:6c:00:94:ec:05:
25:3c:0d:91:7d:8d:8d:0a:b9:8b:a2:d0:b5:12:93:
4a:a8:ee:c6:7f:2d:94:6c:97:db:98:7a:cb:64:28:
4f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:B2:48:1E:6F:6C:26:28:EA:D6:2A:2F:BA:B1:24:F9:EF:F9:0D:E3
X509v3 Authority Key Identifier:
keyid:AE:EA:A0:96:EB:B3:76:57:E4:D3:AD:21:76:64:11:72:D6:E2:02:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruqgluuzdlfk060hdmQRctbiArw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:6a:0e:73:bb:66:5f:62:f5:6f:18:d3:06:bd:2c:df:c3:0c:
fb:ac:38:fc:86:e8:57:48:b3:f8:6c:d2:1e:8d:d3:5a:a1:84:
b0:f9:c3:7b:ee:e2:9d:9b:e8:1c:db:3c:20:8e:11:a1:ba:e1:
87:2d:df:34:2f:46:9d:aa:08:f2:18:ae:8a:7a:50:82:47:76:
cb:99:27:74:59:80:2e:44:e9:1a:46:0a:68:e1:f2:cb:82:d3:
3f:c2:2f:55:e7:06:d6:ab:d7:11:69:bf:32:64:e7:30:dd:62:
2a:77:12:51:16:5c:62:ee:4e:41:0f:3e:34:b8:8a:ed:9d:1b:
10:4e:c5:e5:aa:73:19:e5:31:a5:55:56:3e:1e:a9:31:86:cd:
c5:8f:01:f2:f5:01:b4:88:a4:d4:48:d9:1d:40:a4:e0:92:48:
49:1e:bb:31:f1:1f:b1:56:9e:1d:aa:2a:dd:90:fa:bf:1c:19:
f5:9c:9b:5f:8a:bf:33:58:32:8a:d8:f4:ec:b7:91:19:83:50:
f3:76:ca:9a:8d:52:c3:90:94:0a:7a:bc:8b:4b:54:3a:51:ff:
16:58:c0:e3:c4:77:a7:66:07:b8:7c:50:33:7b:93:1c:54:f7:
50:ad:73:a1:c6:b0:33:f9:48:05:d0:11:37:bf:6c:98:38:c9:
6a:22:f9:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 17:57:37 2026 by rpki-client