Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
File: sda67LY65G_uowyrhiHUbFn3KAg.mft (raw, json)
Hash identifier: 6f5ZehZKj4Hu//3rqKL59BoysiLl3ueePiAJz/1Htt4=
Subject key identifier: 77:90:06:8E:4D:A2:7F:16:3B:FE:D5:AC:06:20:FE:99:14:08:BF:F1
Authority key identifier: B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
Certificate issuer: /CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Certificate serial: 019E1E6C71B5028ACA2FA3CEB758BFBE794B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
Manifest number: 1658
Signing time: Tue 12 May 2026 23:01:23 +0000
Manifest this update: Tue 12 May 2026 23:01:23 +0000
Manifest next update: Wed 13 May 2026 23:01:23 +0000
Files and hashes: 1: 8JPDTRJcWjJC1p6Bup8VRe1Gagc.roa (hash: /UT/Fa23tq8Vnw8GXuEzSsDokpGGbDVoxclf2hd11P4=)
2: sda67LY65G_uowyrhiHUbFn3KAg.crl (hash: kQ/f6OWMjKoJ0U5ecUA1UsNZimvP7TxKrGwY5vpbDlo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:71:b5:02:8a:ca:2f:a3:ce:b7:58:bf:be:79:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Validity
Not Before: May 12 23:01:23 2026 GMT
Not After : May 13 23:01:23 2026 GMT
Subject: CN=7790068e4da27f163bfed5ac0620fe991408bff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:24:ef:b8:81:ad:be:f3:46:ae:65:5e:c7:12:
7d:f3:be:f7:b7:0b:03:2a:2e:55:c9:f7:ed:9a:4c:
85:22:92:d4:2c:1e:27:83:00:53:e7:f4:43:3a:ec:
e5:74:1c:64:67:b7:dc:ad:91:b2:36:c3:35:18:3d:
06:a5:23:e0:74:97:1f:7a:4e:d1:68:df:20:32:af:
fb:3a:74:07:24:dc:23:a0:7c:20:0a:e0:7a:90:76:
42:d3:e6:df:08:f2:48:64:63:52:48:6b:6e:47:14:
b9:ba:22:8d:46:8a:ac:49:3d:fc:bc:25:4e:ee:b9:
51:a3:ec:5a:fb:cb:88:27:5c:7b:97:8c:17:68:37:
18:f6:9f:74:43:25:f3:8a:4a:d3:c7:94:ac:1a:1c:
39:c2:11:18:ef:ec:3e:05:dc:2d:d9:50:39:fd:f3:
da:93:8c:00:45:af:d5:25:e0:fd:5d:f7:07:82:bb:
53:16:ac:b8:a6:87:97:1e:9b:1c:35:6b:5b:74:3a:
25:43:41:7e:86:e6:7e:6b:7a:4a:45:8a:b1:e0:49:
ec:80:cf:ad:64:85:1b:2a:64:92:68:92:c1:6d:5c:
d7:1e:17:37:8b:94:c3:5c:02:01:07:29:db:61:14:
88:43:a5:fd:25:47:35:0d:76:6a:a7:bf:8f:3c:20:
28:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:90:06:8E:4D:A2:7F:16:3B:FE:D5:AC:06:20:FE:99:14:08:BF:F1
X509v3 Authority Key Identifier:
keyid:B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:0c:53:aa:f1:7e:bf:94:ef:42:49:60:76:07:1a:9c:b3:89:
0e:ba:3b:83:c7:5a:24:44:62:6f:06:3d:19:58:38:bc:7e:24:
bd:99:25:0c:33:05:5f:dd:e9:6b:f4:9e:fc:c8:9a:25:8a:da:
c9:0b:4d:76:f0:35:02:61:19:9e:ec:bd:1f:4b:74:12:cc:ba:
9f:73:30:49:56:0d:e8:60:de:83:47:2b:ad:f3:ab:55:91:7b:
45:c2:0e:57:24:b8:08:80:88:20:ae:70:71:be:cb:30:bb:b9:
82:35:fa:08:cb:36:51:54:b5:05:fe:6a:87:a0:b4:ec:f7:1b:
98:1e:29:9d:63:e2:0f:03:64:6c:39:00:b6:a1:b1:e0:f9:4b:
d6:74:a9:bb:ba:e5:c0:97:2e:3b:c9:32:bb:e9:cd:7b:92:f1:
80:0d:df:62:68:06:53:06:4a:98:9a:91:1e:7a:ad:7c:e6:21:
af:78:fc:7a:43:5f:02:82:df:51:c8:e9:24:dc:68:c3:8b:95:
43:65:25:0d:98:13:c9:6f:77:08:19:8e:26:5d:c2:6e:59:c1:
48:37:89:c3:e1:2f:78:8c:f2:c5:82:3f:74:f9:f5:1d:19:ff:
8d:93:b4:7b:67:07:8c:2a:47:2c:14:6a:3f:0b:2d:0a:c9:95:
32:48:51:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:13:07 2026 by rpki-client