Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/8fc261-bff8-4490-8b69-009739f7e55c/1/10itqKdHT1rZkMmB_2snzj3hRxM.mft
File: 10itqKdHT1rZkMmB_2snzj3hRxM.mft (raw, json)
Hash identifier: DOYnEeLF4+k3khqTR91J2526eD0dFweLP/Rg/1/aZUE=
Subject key identifier: AF:DC:E8:E9:33:69:D5:46:92:2F:CA:81:1A:25:85:3E:E1:E9:1A:24
Authority key identifier: D7:48:AD:A8:A7:47:4F:5A:D9:90:C9:81:FF:6B:27:CE:3D:E1:47:13
Certificate issuer: /CN=d748ada8a7474f5ad990c981ff6b27ce3de14713
Certificate serial: 019E1F482EE8E54D76D75E6AE2872722858D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10itqKdHT1rZkMmB_2snzj3hRxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/8fc261-bff8-4490-8b69-009739f7e55c/1/10itqKdHT1rZkMmB_2snzj3hRxM.mft
Manifest number: 0223
Signing time: Wed 13 May 2026 03:01:24 +0000
Manifest this update: Wed 13 May 2026 03:01:24 +0000
Manifest next update: Thu 14 May 2026 03:01:24 +0000
Files and hashes: 1: 10itqKdHT1rZkMmB_2snzj3hRxM.crl (hash: gKdwbOwxByn7A0Xx+L3UAqwPRONxchvUdGBV2xK8Ak8=)
2: dh6O1KZT1UxJ74lXsViPoGTKRqs.roa (hash: GqWYfVTgp7zJ77InQ5zu+O/CisErYsq267odGYdVn8s=)
3: q2Sr6iNLEgQhXIhOj17x_U41yCw.roa (hash: v7+FGob3+laO9WE5TRGdJZbvI5tauk2y9nqQMlT/eeI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/8fc261-bff8-4490-8b69-009739f7e55c/1/10itqKdHT1rZkMmB_2snzj3hRxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/8fc261-bff8-4490-8b69-009739f7e55c/1/10itqKdHT1rZkMmB_2snzj3hRxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/10itqKdHT1rZkMmB_2snzj3hRxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:48:2e:e8:e5:4d:76:d7:5e:6a:e2:87:27:22:85:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d748ada8a7474f5ad990c981ff6b27ce3de14713
Validity
Not Before: May 13 03:01:24 2026 GMT
Not After : May 14 03:01:24 2026 GMT
Subject: CN=afdce8e93369d546922fca811a25853ee1e91a24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:2e:06:a0:37:e8:3e:de:f2:fc:82:b1:21:7f:
f0:b4:8f:87:63:7d:1e:2e:88:51:41:78:45:18:23:
c8:05:d1:05:68:59:55:eb:16:aa:0c:bd:25:86:39:
c3:6b:b6:53:43:81:e1:f6:f3:bf:fa:4c:a3:5e:10:
78:b3:51:85:f0:43:45:17:ee:7e:44:ed:47:a8:96:
52:4f:43:69:1c:4b:87:ff:f2:bd:e5:55:29:b0:f0:
66:e1:53:7b:11:2e:d9:b5:9e:68:32:34:09:d5:76:
7c:1b:7c:06:a5:4a:d2:74:1b:b3:55:4f:63:af:d3:
88:47:dc:98:e4:80:00:c2:f0:bb:95:e1:90:1f:98:
09:c7:b0:9d:82:c9:62:83:5d:f9:6d:3b:f0:51:f9:
1c:89:67:6d:77:0a:1d:37:90:8c:e6:44:a1:52:eb:
2c:24:4f:13:a4:c2:ef:d6:0c:27:c7:b1:42:37:6e:
de:eb:65:6c:20:00:10:6b:60:cb:68:8b:81:f6:3d:
89:c1:7f:b0:32:55:a0:5f:6e:98:fa:69:ce:d5:65:
fb:5f:9b:86:2e:f4:ea:d2:05:44:3d:a7:80:f0:57:
c2:ec:a6:c5:df:a5:20:1e:13:d7:99:c1:91:40:d4:
f7:7f:b0:d9:38:71:1c:6c:10:47:af:8a:3d:d9:ab:
04:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:DC:E8:E9:33:69:D5:46:92:2F:CA:81:1A:25:85:3E:E1:E9:1A:24
X509v3 Authority Key Identifier:
keyid:D7:48:AD:A8:A7:47:4F:5A:D9:90:C9:81:FF:6B:27:CE:3D:E1:47:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10itqKdHT1rZkMmB_2snzj3hRxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8fc261-bff8-4490-8b69-009739f7e55c/1/10itqKdHT1rZkMmB_2snzj3hRxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8fc261-bff8-4490-8b69-009739f7e55c/1/10itqKdHT1rZkMmB_2snzj3hRxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:1d:37:74:be:f6:05:b0:af:03:60:ed:12:84:96:77:fa:02:
af:bb:16:e5:b8:27:d7:b9:51:9d:86:bd:a8:ae:76:06:b7:2c:
23:7f:f1:62:63:aa:ac:cb:4e:52:0b:a6:be:f6:66:e1:69:58:
62:9c:37:c1:ab:a1:8b:d0:69:72:27:0f:26:8f:ea:ed:12:05:
6e:d9:51:20:c7:38:f1:f9:7b:56:bf:aa:fb:3a:6f:05:7b:53:
5e:84:03:36:f1:13:61:39:90:60:62:0c:1f:b6:b2:28:7c:c1:
02:68:65:d0:0f:c9:4e:7c:b3:c7:a9:a6:13:6d:8b:44:ee:ac:
25:fb:1e:7c:2f:1d:f8:ed:02:d3:1e:c1:2d:ff:f4:2d:56:19:
5a:a1:48:60:26:5e:ce:ab:a8:b7:df:28:92:36:d9:9d:70:0a:
59:d1:ba:ea:fb:81:c3:63:e4:47:f0:df:c3:b2:2b:65:69:d7:
67:26:26:01:b8:ca:a8:a8:f9:43:8b:1e:43:2f:61:13:8b:e7:
bc:38:4e:61:9d:5d:93:62:29:94:d9:09:3a:2b:ad:10:72:e8:
d3:94:09:3b:3e:1e:7d:bf:26:9d:b5:6d:f5:a9:5f:63:03:cb:
e4:e2:5d:25:6d:37:c4:e3:72:81:8d:c1:97:b8:05:79:7e:91:
81:7c:df:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:31:29 2026 by rpki-client