Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.mft
File: 352lG6cnhKBORBIPne1HhWd5TBs.mft (raw, json)
Hash identifier: wIy0GNS9GQIQAsO+tHafdK/Dh0WOi0vI2FBQ+1EJ+1I=
Subject key identifier: BA:EB:A2:77:47:95:B4:AB:E5:06:38:58:57:38:0D:B2:50:8F:E6:5A
Authority key identifier: DF:9D:A5:1B:A7:27:84:A0:4E:44:12:0F:9D:ED:47:85:67:79:4C:1B
Certificate issuer: /CN=df9da51ba72784a04e44120f9ded478567794c1b
Certificate serial: 019E1D595E36BA85BC49641BEE126D45C2FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/352lG6cnhKBORBIPne1HhWd5TBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.mft
Manifest number: 0CEE
Signing time: Tue 12 May 2026 18:00:56 +0000
Manifest this update: Tue 12 May 2026 18:00:56 +0000
Manifest next update: Wed 13 May 2026 18:00:56 +0000
Files and hashes: 1: 2W88bJ9UIevT6ruHtvcfNI1Zt7c.roa (hash: WGP7jajyyzt7YE+QpBz+OBA3QcdppcJEykw9cTms7PE=)
2: 352lG6cnhKBORBIPne1HhWd5TBs.crl (hash: 93/7IhbrIKC/xmHcdD9+uSG4+hfVgd5Xwee9yBozPtE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/352lG6cnhKBORBIPne1HhWd5TBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:5e:36:ba:85:bc:49:64:1b:ee:12:6d:45:c2:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df9da51ba72784a04e44120f9ded478567794c1b
Validity
Not Before: May 12 18:00:56 2026 GMT
Not After : May 13 18:00:56 2026 GMT
Subject: CN=baeba2774795b4abe506385857380db2508fe65a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a8:c0:fc:67:31:95:f4:65:14:39:ab:5f:a3:
9f:cf:ec:1f:c8:da:f0:98:cb:21:07:11:e5:dc:f9:
68:f0:03:9d:b4:50:d8:51:13:b5:ea:22:ed:3a:f9:
b9:af:66:0c:4e:e7:5a:92:b2:7c:ea:55:d5:b4:5a:
22:b3:89:34:a8:7c:85:28:89:dd:f1:58:e3:f3:84:
10:85:19:d9:5d:c6:3c:8e:3b:d9:b7:6c:f9:73:c5:
7a:77:15:2d:3f:b9:1e:5c:c1:8f:a3:82:44:73:d7:
12:84:e9:cb:97:a7:01:fb:76:af:c4:3c:3d:b7:ae:
a0:e7:15:e1:04:96:6f:14:16:b1:45:23:0c:c8:96:
db:20:d1:19:8a:06:ce:97:a2:de:ea:78:45:82:24:
6f:da:c7:45:c8:52:bd:0c:6f:dd:48:57:fc:71:3a:
69:0f:83:0b:4c:55:e7:82:9f:4e:29:82:42:97:02:
b8:3f:f4:91:5c:ae:64:c0:07:e9:d8:3d:73:1d:d2:
d7:88:ff:1f:13:7e:c3:10:21:9d:79:78:d8:6e:47:
44:9e:17:d6:05:38:3d:9c:44:b3:6a:c5:1b:3b:08:
54:98:bc:99:20:0d:3d:3b:6a:53:5e:79:68:79:18:
d1:bf:18:01:f4:42:b4:79:4b:3b:7c:36:fd:3f:cc:
a8:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:EB:A2:77:47:95:B4:AB:E5:06:38:58:57:38:0D:B2:50:8F:E6:5A
X509v3 Authority Key Identifier:
keyid:DF:9D:A5:1B:A7:27:84:A0:4E:44:12:0F:9D:ED:47:85:67:79:4C:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/352lG6cnhKBORBIPne1HhWd5TBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:ec:b6:0d:c2:96:00:28:1e:8f:63:f4:53:5d:d9:93:35:2b:
8c:c7:66:8d:0b:25:e0:c9:cc:1e:7d:a3:59:13:75:88:06:62:
a4:98:08:e1:4b:91:8b:e0:5f:b0:d6:58:0f:a3:06:f0:12:58:
02:43:26:7c:99:cc:c8:95:eb:9c:d9:9a:ba:90:5c:f7:51:eb:
04:e3:39:a9:d7:d5:24:e9:14:a6:1d:1f:c4:76:00:d2:df:8f:
bf:ee:14:ff:b4:c5:75:8f:9a:e2:be:6a:3f:e1:bb:b8:75:b4:
6e:51:3f:5f:ae:4f:dd:5d:4c:e9:b7:36:a9:8c:27:99:3e:04:
d8:e9:17:6c:c0:66:91:26:4d:a7:ef:f7:2d:02:38:0a:ef:88:
54:7b:08:ae:58:e9:b2:54:ad:72:f9:17:ca:31:19:da:7e:2f:
df:58:28:ab:2e:b2:d4:a3:1e:96:9d:2b:bf:68:dc:80:bb:d1:
81:e2:9a:39:fa:ab:23:af:d6:69:04:a9:38:ff:51:d8:76:be:
f7:47:7e:d2:e3:cd:c0:40:01:b5:e1:9e:73:12:89:80:99:cc:
15:40:7f:56:8f:ee:9f:0e:35:60:02:d8:95:6f:6f:c8:4a:0f:
8f:fc:ac:73:be:45:bc:77:e9:dc:c3:22:93:c3:35:7b:b5:20:
ab:10:9e:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:13:26 2026 by rpki-client