Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
File: 70eAIfcqIbdxQqRNgV3envJoTLw.mft (raw, json)
Hash identifier: w9V/p4vJMUCnBZHfO5s6u1hWOREMidATkdC3hOlRqkw=
Subject key identifier: 0D:96:AA:1F:5F:46:9A:AE:E7:FD:16:E6:5B:92:42:3D:8F:9B:34:6C
Authority key identifier: EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
Certificate issuer: /CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Certificate serial: 019EBE1092790C4E99C921347F391F60033E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
Manifest number: 1957
Signing time: Fri 12 Jun 2026 23:00:17 +0000
Manifest this update: Fri 12 Jun 2026 23:00:17 +0000
Manifest next update: Sat 13 Jun 2026 23:00:17 +0000
Files and hashes: 1: 70eAIfcqIbdxQqRNgV3envJoTLw.crl (hash: WmB8cRrndl9vTjpGcs7sPLJQnKDia3Lcti+Wd84mlyI=)
2: I9nUczY20Zb-qB4txSR8cQbIwOU.roa (hash: tVztN2aCOWmTRMBNdBunPfUafnJabZOVueK23yoz3NY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 23:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:10:92:79:0c:4e:99:c9:21:34:7f:39:1f:60:03:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Validity
Not Before: Jun 12 23:00:17 2026 GMT
Not After : Jun 13 23:00:17 2026 GMT
Subject: CN=0d96aa1f5f469aaee7fd16e65b92423d8f9b346c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ea:6d:20:d7:4b:c2:3b:92:13:e9:5f:d3:b0:
71:61:aa:97:5f:e3:be:96:ab:fa:6a:bd:42:20:43:
9f:85:72:10:6a:36:74:79:0d:31:6b:38:68:8f:b0:
70:f7:24:6c:47:b5:e6:5e:42:71:31:e8:75:df:1b:
32:fb:13:80:88:40:e3:06:53:f0:2e:48:b9:0d:e2:
64:66:6f:de:02:f2:e3:68:1c:db:36:12:62:c6:97:
96:ff:c5:a1:b5:cb:2f:a1:a5:31:7c:8f:35:a9:47:
dd:b6:33:2a:31:75:99:5a:51:7a:f9:98:da:4d:09:
01:25:2b:8a:c2:eb:4e:17:19:40:97:a7:3c:c1:91:
48:c4:db:6b:6f:ab:6b:bf:6f:59:9e:fb:c9:3f:7e:
af:37:5f:d3:b9:38:07:84:35:25:65:2a:66:7b:b5:
03:2c:37:3f:01:7b:d7:15:ca:e1:a3:fc:9a:53:1b:
cf:bb:81:b3:1e:8c:e3:ad:26:82:1f:26:77:be:c8:
6a:2c:b1:be:9b:ee:8d:8e:c8:f8:72:be:09:4e:60:
7f:61:92:a3:56:46:fe:3f:9b:0d:86:93:18:0a:5c:
72:e9:4b:c2:c4:5d:48:fb:25:b8:da:8c:1c:f7:0a:
6f:a3:d3:9d:fb:c0:90:2d:82:ce:84:c6:c3:52:34:
69:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:96:AA:1F:5F:46:9A:AE:E7:FD:16:E6:5B:92:42:3D:8F:9B:34:6C
X509v3 Authority Key Identifier:
keyid:EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:a2:ee:34:3c:29:72:43:60:7b:b0:7c:4a:77:74:a8:cc:c0:
ee:93:fd:a2:bc:c4:aa:32:3e:cd:d6:33:b3:2b:0c:be:c1:c3:
6a:e5:35:ea:fa:58:de:a7:3b:43:27:7f:38:79:1b:63:3c:f9:
d6:94:ce:0b:e5:0c:d7:8b:12:7c:08:7e:f3:ee:39:3c:6b:c6:
01:cf:cc:f3:db:6a:ff:97:e8:c6:96:7d:4a:57:2b:c2:3f:76:
67:a9:e5:27:59:f9:bf:ae:f6:2d:20:c6:f8:2b:df:3e:ca:28:
01:03:5c:6c:0c:ce:d5:a0:39:5d:25:51:9e:6d:a4:ed:1e:57:
5e:47:d5:78:a8:3b:cc:4f:c6:cc:8b:88:c1:18:5e:49:40:0e:
ef:4a:47:62:43:67:f8:72:10:6e:c1:73:a1:cd:d8:fc:6d:02:
c9:9b:f3:01:23:16:3d:f3:4d:1e:d7:be:da:0f:de:08:42:6c:
55:e4:47:e7:c7:15:20:f6:e8:60:b1:e7:c8:b3:28:b3:af:5a:
e6:4b:cf:a1:af:77:8e:eb:f8:04:76:42:28:7b:fc:c2:90:c6:
73:ff:c7:36:ea:84:ce:37:92:7d:3d:35:ec:11:58:e8:95:31:
64:77:fd:e6:33:8d:7c:fe:7b:87:a0:d2:ac:25:b3:03:fe:c0:
c4:25:2d:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:02:16 2026 by rpki-client