Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json)
Hash identifier: z3yFrwYPibANvVV5UEzkgnBU0CGiBxv2ygqdKwqsyAw=
Subject key identifier: 54:2C:6B:6A:EA:7E:04:1A:94:21:B0:92:93:09:7B:58:3C:1C:E7:CA
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial: 019E1D90915F1F9C6D0ABC7F1E22B25F3F33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
Manifest number: 1313
Signing time: Tue 12 May 2026 19:01:13 +0000
Manifest this update: Tue 12 May 2026 19:01:13 +0000
Manifest next update: Wed 13 May 2026 19:01:13 +0000
Files and hashes: 1: 7XPR057HTONIllGtY9NijiuY-tk.roa (hash: rKfjiDRkcr3HFT8PmmA3P0sCBQ3drFmQ5QDnLKCb/BE=)
2: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: CeB+x3ASRAyPF0dYQ+iOX6VOA3j9E1yxRfJJe0bf44g=)
3: T4FApCxhFe83q9A7YZlC1nZYzIE.roa (hash: LjUt5usAgPWHNriSJWMg7OS8Oagi6w46/dUqLi/UEzA=)
4: Wn-ZLE8xGx2iUZq_8EgFIe3BY1M.roa (hash: SwGxPAdfidv7O5nNS+nKj4I72Qs5sJPeTh9qbwfsZWo=)
5: YuGYvjrFzLezHsgzIUZ0asWCqVk.roa (hash: aZLneGXD5YvsOe9tvMiGcrBxDYxxGmpY4vDCZwd72Z8=)
6: fLae4aR9HsO6ApeohQnbJHEsvgg.roa (hash: /b3Xi59hV2RbWadggK4I0wXvCWO8lTHkzV3V9hJ6K0Y=)
7: jccKxXf-KlBy0OODUdeGAP1Pln4.roa (hash: kXcgJH+D8EkeDblDPw+VtydCo7evj5I/OxvPnwmyUe8=)
8: r2cUyHBMaewNpNV3po9MOZwNcyU.roa (hash: SVkhtUySEPUVdVwXoSgDIclbqsQ0muf2pONZTDoO/YE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:91:5f:1f:9c:6d:0a:bc:7f:1e:22:b2:5f:3f:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
Validity
Not Before: May 12 19:01:13 2026 GMT
Not After : May 13 19:01:13 2026 GMT
Subject: CN=542c6b6aea7e041a9421b09293097b583c1ce7ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e0:ac:6a:c7:11:80:12:ec:11:55:16:d6:89:
8f:21:44:a1:6a:09:8d:44:a9:18:cb:cb:df:60:96:
20:eb:2f:58:cf:c3:9e:4f:c4:81:a2:4c:9f:07:f0:
61:2f:4c:06:43:9b:c9:81:23:c4:3e:26:55:26:d1:
6d:db:5e:c6:28:78:b2:7a:fc:2b:fe:50:db:6f:d2:
15:be:c8:8f:0d:dd:3a:22:20:e1:db:da:b9:7e:f6:
be:bb:b6:d2:77:bf:db:57:6b:d2:84:96:73:4c:9d:
c3:ac:b5:96:d4:85:69:7c:60:95:4e:b1:9a:68:30:
2d:f4:dd:38:ee:8f:7d:02:0e:4a:7b:d1:90:1b:70:
e4:41:4d:02:a2:4c:db:52:8d:9a:90:82:cf:37:a1:
cf:b5:07:94:b1:b6:8b:20:75:dc:4c:ac:58:53:0a:
29:a7:01:47:80:53:dd:2c:14:87:ea:23:59:77:85:
64:b8:89:b3:8c:1d:53:a9:bc:4d:7e:30:1a:8e:46:
c4:5c:0b:e9:f2:48:d9:7a:99:bc:f5:81:76:18:b4:
7f:26:5e:77:1e:fb:e1:4b:a1:20:f9:e1:ba:5c:a9:
77:c7:8c:99:a6:3d:7a:88:a9:77:7b:7b:ef:6d:6b:
ac:67:ab:f3:e8:eb:d5:da:97:eb:e7:81:b2:4c:e2:
93:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:2C:6B:6A:EA:7E:04:1A:94:21:B0:92:93:09:7B:58:3C:1C:E7:CA
X509v3 Authority Key Identifier:
keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:1c:5c:12:a8:d3:db:dd:05:38:91:90:4e:24:24:c3:a6:fa:
9b:d4:72:58:6f:fa:e2:83:d9:d7:23:b5:4c:c4:24:55:a0:cf:
2c:81:5d:a6:70:46:f8:98:c4:61:1a:16:ff:5b:ba:03:9c:eb:
16:01:03:88:56:8e:a0:2f:51:cf:92:14:be:0c:07:4e:d4:93:
8d:e7:83:cd:63:62:76:d8:d4:f3:98:97:ff:ba:f5:95:20:0c:
2c:52:88:bb:08:3e:fb:e5:09:fa:dd:ba:eb:c7:01:db:51:e4:
ac:94:4d:c4:48:70:f5:32:84:48:f0:b8:ad:28:d9:3e:7c:e2:
60:fa:ac:e2:98:3e:32:2d:57:02:7a:10:9a:d5:5e:b3:84:38:
b9:4d:ed:00:28:4f:16:6f:16:dc:39:12:a2:9d:64:0d:ef:45:
1e:bf:59:d5:15:dc:70:81:bc:ae:19:29:b8:35:08:5c:db:3a:
c6:cf:2f:0c:12:d5:69:5f:9d:e2:e1:06:39:4e:ae:ba:5d:4b:
4b:da:4b:c5:06:ac:41:b1:dc:ef:cf:e1:37:10:f7:b8:6f:15:
62:f2:01:5b:3d:cc:91:e0:68:80:60:1d:a6:5c:eb:b2:49:25:
3b:6e:de:6c:e7:b6:6f:0a:48:f5:91:2a:69:67:11:b1:a6:7e:
71:78:56:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:09:43 2026 by rpki-client