Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
File: 32GikiI62a68itgsKlZHX72XqDQ.mft (raw, json)
Hash identifier: 5NxVU+SzF6WRVTjtxawiV4QRJeXMkYzKJnw1dWJym8o=
Subject key identifier: 4A:E1:FF:D9:6F:EF:08:B9:06:64:B7:3A:79:32:A9:04:B7:BF:33:59
Authority key identifier: DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
Certificate issuer: /CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Certificate serial: 019E1EA2CA8DEEC1E3FA74D918C3A031CAF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
Manifest number: 0FB5
Signing time: Wed 13 May 2026 00:00:45 +0000
Manifest this update: Wed 13 May 2026 00:00:45 +0000
Manifest next update: Thu 14 May 2026 00:00:45 +0000
Files and hashes: 1: 32GikiI62a68itgsKlZHX72XqDQ.crl (hash: yyi7zKtXExyiz8DQhYpSBL4Wb3zLlXTUzON0wODGmyE=)
2: 3N8RjBOaHqysfsXcuS4moMiqHcA.roa (hash: iQaQoggeO3tLMHb/V/COJC4hr6BU8lu4S0DICLg++wE=)
3: QjEkoZ53NxBeCFxk_AcoQWsSsbc.roa (hash: F5UhzU9AKBT9nluGCkFBzLOXoDePYCyzrIATvKRbYOM=)
4: W_FOHMjyvQTaAri5A_zDlx2DY2k.roa (hash: njRnMCxu5gn2zsVJDrc4Nj/3Yt4VdpnpXJ0wh2X6tGk=)
5: fdth4-LheaAtkNOEJz6pHobfl_k.roa (hash: rTpg5aqyYW2RH+xhrSVpQRy6U3wJBueXqcjg7bGUFhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a2:ca:8d:ee:c1:e3:fa:74:d9:18:c3:a0:31:ca:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Validity
Not Before: May 13 00:00:45 2026 GMT
Not After : May 14 00:00:45 2026 GMT
Subject: CN=4ae1ffd96fef08b90664b73a7932a904b7bf3359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:53:0d:06:47:4f:f5:07:cb:85:5b:03:e7:d8:
e2:bc:39:64:f4:34:ef:e0:7a:61:46:8b:b8:62:1a:
9e:44:6b:25:b2:f4:f9:03:17:cf:be:29:e3:c9:b3:
07:04:64:4d:92:a5:a3:46:e9:2b:cf:ff:56:f9:05:
15:46:7e:c6:20:f4:55:8d:b9:30:5c:85:31:e9:2c:
00:15:83:fa:5e:c0:55:62:83:cf:69:b3:e2:51:0f:
ff:28:f0:a8:43:49:6d:2c:2b:39:61:16:89:c4:c0:
e7:fa:0b:91:04:cd:a8:6f:2d:94:fb:9e:3e:07:e3:
45:2f:95:5e:20:c6:af:f1:4e:3d:d1:0b:64:db:e0:
a1:2e:b7:d8:f2:37:5e:dd:80:b8:9f:7f:62:96:f6:
ca:87:a1:45:39:84:7d:5e:4c:9a:5f:4d:cd:3f:25:
f8:ce:74:b3:b6:6b:12:3b:50:11:e5:55:ec:fc:1d:
42:59:f5:49:66:30:bc:e5:1b:74:d8:68:dc:ca:3f:
42:64:0d:24:e1:d2:ac:66:a3:3a:60:08:44:60:fb:
f5:fd:33:90:25:68:37:21:6f:1a:00:29:a0:44:74:
32:50:1c:0e:35:58:04:e2:b4:e1:6b:5f:08:35:b1:
e9:c1:58:b8:d0:74:07:f1:92:e5:1a:2d:d8:53:45:
07:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:E1:FF:D9:6F:EF:08:B9:06:64:B7:3A:79:32:A9:04:B7:BF:33:59
X509v3 Authority Key Identifier:
keyid:DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:32:0d:74:14:9f:54:2a:ac:c9:fe:b7:ff:31:1e:b3:90:00:
2d:5a:c7:52:5f:e4:c3:46:df:ff:2f:77:ac:32:69:37:5e:6a:
41:e3:35:18:ce:f0:28:dd:6d:2d:0a:c7:f9:db:82:c5:f8:70:
73:1b:e3:80:f4:a6:8d:2a:75:a4:bb:99:fb:6d:98:84:c4:cb:
d4:f8:c8:b2:28:22:b1:f9:5f:62:b5:89:c6:f1:23:85:e4:a7:
2b:2b:54:cd:11:12:61:95:94:f5:f2:cc:08:fd:34:09:fd:47:
da:5e:e7:be:dd:65:0f:43:cb:29:95:7b:70:49:df:1b:fa:d9:
6c:53:e0:77:61:b7:08:2d:ca:a1:15:bd:7c:e5:56:be:4b:13:
a9:fa:91:70:73:9d:33:4d:d8:0a:c9:98:66:dd:7a:04:9f:fe:
c8:46:33:63:82:ff:50:50:a1:5d:e7:43:9f:6b:8a:fe:5b:aa:
fa:0d:4a:e6:9b:e8:43:20:c3:c9:09:1a:8e:aa:47:d4:7d:b5:
3d:2b:2d:ff:34:b4:8b:a3:a8:e1:f2:da:30:18:3b:27:16:8a:
9e:af:62:76:44:fa:3f:80:6d:39:ae:e8:2c:1c:b4:f0:8f:c6:
7d:6a:dc:19:a8:2e:0e:a1:6f:0e:98:e6:96:67:72:57:c9:01:
b1:56:7e:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:41:49 2026 by rpki-client