Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
File: 32GikiI62a68itgsKlZHX72XqDQ.mft (raw, json)
Hash identifier: /k5ob1zwAXWP4BrY3FgkCrZ7ljjFNHCRLqIAJgxqSGI=
Subject key identifier: BD:9A:99:B2:0F:28:F1:A9:E2:87:CE:E7:2A:06:F5:52:78:3E:CD:03
Authority key identifier: DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
Certificate issuer: /CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Certificate serial: 019D2772E1F7B89E0CAEB4F98BF7A38F7F2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
Manifest number: 0F35
Signing time: Thu 26 Mar 2026 00:02:13 +0000
Manifest this update: Thu 26 Mar 2026 00:02:13 +0000
Manifest next update: Fri 27 Mar 2026 00:02:13 +0000
Files and hashes: 1: 32GikiI62a68itgsKlZHX72XqDQ.crl (hash: i4UFn6Tw1V0mfBbjbRQX1grRzAmT45O+/lrECeD8WtU=)
2: 3N8RjBOaHqysfsXcuS4moMiqHcA.roa (hash: iQaQoggeO3tLMHb/V/COJC4hr6BU8lu4S0DICLg++wE=)
3: QjEkoZ53NxBeCFxk_AcoQWsSsbc.roa (hash: F5UhzU9AKBT9nluGCkFBzLOXoDePYCyzrIATvKRbYOM=)
4: W_FOHMjyvQTaAri5A_zDlx2DY2k.roa (hash: njRnMCxu5gn2zsVJDrc4Nj/3Yt4VdpnpXJ0wh2X6tGk=)
5: fdth4-LheaAtkNOEJz6pHobfl_k.roa (hash: rTpg5aqyYW2RH+xhrSVpQRy6U3wJBueXqcjg7bGUFhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:e1:f7:b8:9e:0c:ae:b4:f9:8b:f7:a3:8f:7f:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Validity
Not Before: Mar 26 00:02:13 2026 GMT
Not After : Mar 27 00:02:13 2026 GMT
Subject: CN=bd9a99b20f28f1a9e287cee72a06f552783ecd03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b1:da:42:ef:a4:95:4a:3e:f5:fa:9b:7d:7a:
52:25:ab:eb:34:fd:58:ec:c7:70:80:3e:cb:1b:51:
9e:9a:69:f9:81:43:ed:88:34:61:b6:c6:cb:d9:7b:
23:e4:6d:93:d1:77:35:db:1c:e3:ca:68:89:6c:69:
54:11:2b:7b:68:a8:9a:26:cf:40:49:34:16:49:d4:
28:3a:66:fa:28:2b:0e:32:13:35:07:2b:62:33:b6:
c3:f6:c2:93:29:ad:e7:6b:a3:78:91:2b:d8:72:48:
1e:c5:77:87:3d:88:9b:06:4b:77:b2:8e:f7:5b:04:
c7:fc:ae:ad:25:3b:3a:13:86:ff:3e:d1:85:17:76:
f1:d3:99:2a:87:6a:ea:f2:40:8f:54:02:18:ec:bd:
bc:6a:e2:90:53:ef:2b:eb:93:08:2f:98:d2:84:35:
49:e9:4a:a8:63:b7:c0:60:35:25:0a:ea:43:ed:00:
7e:fe:fb:a1:4f:35:5a:34:2b:a7:15:e3:ff:8b:50:
fe:89:b0:79:20:82:7b:a9:f8:9c:62:9b:56:41:3b:
cf:fd:b3:77:b9:73:ae:a0:e4:1e:0e:cf:a0:fc:1b:
ba:82:b5:59:6b:66:fd:1f:77:f3:db:d9:b9:c9:a1:
2b:e3:32:13:ea:82:78:54:4d:a9:de:bf:b0:3e:fd:
a4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:9A:99:B2:0F:28:F1:A9:E2:87:CE:E7:2A:06:F5:52:78:3E:CD:03
X509v3 Authority Key Identifier:
keyid:DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:b0:e1:76:91:c9:fb:85:ee:89:33:cd:b9:d7:fa:4d:55:f0:
e2:31:46:24:68:84:63:2f:89:af:8f:dd:ae:4e:df:ea:3a:d6:
9f:d9:98:0e:3f:17:00:e4:bb:a6:2e:68:b5:d8:bd:01:5f:1b:
ea:00:a6:9f:fb:01:36:26:27:7a:19:e3:26:50:62:f6:9c:92:
ca:db:3f:37:d8:75:84:29:16:9b:30:a7:7f:d8:97:d7:8a:a2:
7a:d8:86:f9:f9:21:cc:82:26:e5:7c:e3:59:14:ed:ae:fa:25:
31:6b:e1:8c:29:96:b1:1d:c2:1c:e3:dd:80:95:8c:7b:ba:72:
d9:6e:f5:65:9c:1d:b1:4d:bc:4c:08:f6:0b:35:17:c5:29:67:
9a:2a:4b:f1:14:2e:d8:eb:bd:3f:43:63:99:30:9e:14:00:c5:
23:3f:41:28:49:3e:04:10:64:6f:3d:c2:a4:f2:95:5e:55:4a:
0a:44:06:7e:64:dd:06:4e:a7:38:76:38:2b:3d:ab:bd:1c:cc:
7a:46:f0:25:d9:b1:5f:73:59:8a:93:14:92:76:15:70:39:73:
7b:63:03:33:8f:69:89:13:6e:3e:f2:72:56:58:c9:2f:49:7a:
b3:68:f1:6b:33:5a:1f:a6:88:66:1d:62:eb:2d:64:cd:ee:15:
fb:9d:a8:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:36:35 2026 by rpki-client