Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
File: 25Kd7FwPI63Zuu7qe7OayHpykIM.mft (raw, json)
Hash identifier: NqAkBMV51bgpkoaI7herYvo8XFY3ueqDMF1EJbMcinA=
Subject key identifier: A5:CA:8A:4D:42:A2:C6:17:C5:D4:82:0E:70:2A:6C:D8:8C:F3:ED:CC
Authority key identifier: DB:92:9D:EC:5C:0F:23:AD:D9:BA:EE:EA:7B:B3:9A:C8:7A:72:90:83
Certificate issuer: /CN=db929dec5c0f23add9baeeea7bb39ac87a729083
Certificate serial: 019E1D2253AA50FE5A2C158A24367859546A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
Manifest number: 190A
Signing time: Tue 12 May 2026 17:00:49 +0000
Manifest this update: Tue 12 May 2026 17:00:49 +0000
Manifest next update: Wed 13 May 2026 17:00:49 +0000
Files and hashes: 1: 25Kd7FwPI63Zuu7qe7OayHpykIM.crl (hash: kLmu/xUclJlK7B7i5aaH5vm1z13lttjy0y/pxkczuZU=)
2: Vtd2ZoTlFAYzPYon3etMYV70kbQ.roa (hash: UpRfDwFjhIVb/ZI584vVNpvIkj/uDCeECPlZurhHCQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:53:aa:50:fe:5a:2c:15:8a:24:36:78:59:54:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db929dec5c0f23add9baeeea7bb39ac87a729083
Validity
Not Before: May 12 17:00:49 2026 GMT
Not After : May 13 17:00:49 2026 GMT
Subject: CN=a5ca8a4d42a2c617c5d4820e702a6cd88cf3edcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:63:38:d7:a7:fd:dc:fc:41:17:a3:96:3d:2c:
cc:eb:41:b4:a2:12:f1:6b:8f:4d:92:34:e4:b6:9c:
02:cf:4c:66:f9:ca:fd:28:47:0c:2e:b2:e9:f5:5a:
6c:04:7d:dc:d3:37:10:4a:15:3a:ae:26:e5:6d:01:
ac:40:0b:8c:d5:45:b5:92:95:c7:88:4b:06:11:45:
41:25:64:52:96:8e:8f:24:e5:17:54:e4:39:ed:cd:
72:37:07:ce:3b:dc:71:c7:8a:35:1f:c2:69:ef:04:
40:83:cf:ff:b9:a3:5d:d8:b1:cc:f5:56:71:99:5c:
98:da:5c:1d:88:7a:18:a5:1c:16:39:84:f8:c9:b3:
02:f4:75:c6:9a:a2:a9:d2:1d:32:48:fc:75:0a:1a:
99:35:39:f4:3d:8e:2e:4a:8e:f2:8d:14:70:ec:ce:
52:fd:91:7b:9c:e6:27:f5:75:8f:a5:74:25:21:30:
80:d8:0a:f9:7c:6c:a4:19:fe:ee:6a:5b:35:67:92:
f7:3f:e5:72:d8:87:0b:28:d1:b1:84:04:12:a6:92:
9a:ae:5b:5a:e3:30:41:07:e2:ea:c8:d0:22:0d:07:
94:31:3e:b5:99:08:60:4b:11:4f:0d:78:b5:7a:61:
67:b2:e3:5e:2f:27:a3:0d:3f:76:39:bf:ee:73:14:
8f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:CA:8A:4D:42:A2:C6:17:C5:D4:82:0E:70:2A:6C:D8:8C:F3:ED:CC
X509v3 Authority Key Identifier:
keyid:DB:92:9D:EC:5C:0F:23:AD:D9:BA:EE:EA:7B:B3:9A:C8:7A:72:90:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:29:c3:5a:00:95:e2:10:ab:27:6c:d0:43:45:67:e7:14:7f:
06:ee:ca:bc:b5:fe:45:86:b6:b9:c0:19:12:fc:90:29:45:ed:
86:ad:34:58:81:dc:66:4a:d0:9f:64:26:71:46:48:5a:f0:72:
73:41:6a:f6:3f:04:c5:68:d2:7d:d8:44:53:2e:0f:2b:56:47:
04:01:19:7a:1a:41:a9:ce:10:0a:11:37:0f:a9:da:c3:e2:64:
58:95:1f:df:be:be:45:f1:78:51:47:a2:6e:d3:81:40:f4:b9:
e2:04:20:b5:20:2d:17:ce:63:5d:90:43:ce:5b:14:67:8b:44:
71:ef:25:00:80:12:aa:14:88:d1:fe:38:0c:14:27:6d:f9:4e:
3b:d3:bc:a1:cb:41:b3:50:f8:e1:3b:9a:61:2c:75:4d:ce:43:
43:d4:23:ff:81:5b:45:d1:4d:f0:52:f0:19:51:5a:56:95:fd:
6a:4e:05:15:48:d3:39:91:c1:c2:a4:e5:fa:59:a4:13:88:73:
a2:f6:78:a0:6c:5f:31:f2:d6:69:e5:da:0b:f9:76:af:0c:23:
00:59:8b:0d:94:dd:3a:5c:b6:00:e2:98:f8:df:d6:af:7b:6a:
4b:85:00:ea:05:50:42:6c:2f:6c:3f:72:da:15:13:22:06:a7:
c9:1c:05:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:17:00 2026 by rpki-client