Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
File: MtOVxX39MMDNLDD0IziuTBSnUKE.mft (raw, json)
Hash identifier: /25J/59A44LK6Hz/bOuvXSgfYiFjmeVqMdlLBEXore4=
Subject key identifier: C2:CF:25:1D:32:1F:67:41:D5:82:6F:B8:C8:D8:68:C8:BA:8B:AC:57
Authority key identifier: 32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
Certificate issuer: /CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Certificate serial: 019EC413194ADEAA39DFB6FD3A6CE7739F00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
Manifest number: 0E45
Signing time: Sun 14 Jun 2026 03:00:46 +0000
Manifest this update: Sun 14 Jun 2026 03:00:46 +0000
Manifest next update: Mon 15 Jun 2026 03:00:46 +0000
Files and hashes: 1: 44IrAvvEKSWJ98iqKpkSKb-6qZQ.roa (hash: U4fdOWuwUY9/P9u0/ZElUYWz4NntxpKIR4cfbGlP9vk=)
2: MtOVxX39MMDNLDD0IziuTBSnUKE.crl (hash: 6ZK9XylCP5ZFw8VBiC3LwQejvt+9uBrSYhqb7XxC8rE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 02:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c4:13:19:4a:de:aa:39:df:b6:fd:3a:6c:e7:73:9f:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Validity
Not Before: Jun 14 03:00:46 2026 GMT
Not After : Jun 15 03:00:46 2026 GMT
Subject: CN=c2cf251d321f6741d5826fb8c8d868c8ba8bac57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a1:51:87:f5:eb:1d:49:cc:40:49:53:f4:ad:
4e:d3:13:ff:78:38:04:99:d7:b0:0e:8a:4a:65:b2:
41:20:bd:84:a2:11:b3:8d:11:06:99:ea:e2:19:7f:
82:a1:79:ff:bb:6f:93:d2:9f:d2:e2:08:42:cb:46:
c1:75:74:ee:80:e5:ac:0c:eb:e6:09:14:11:72:62:
ee:51:ae:70:0e:a1:fb:8b:69:56:0f:71:27:7e:21:
be:27:f7:fc:92:21:83:88:22:3c:87:7a:58:97:0d:
72:b8:e5:dc:9e:3d:ea:93:d0:70:40:c5:ac:cc:0e:
20:8d:11:44:62:64:0e:27:32:3f:9c:50:9a:db:19:
75:fe:ea:a5:b6:9c:73:0f:a3:e1:64:25:db:8e:17:
da:50:da:cd:31:79:b5:bb:4d:a1:ac:64:69:ce:d4:
9e:64:bf:ac:47:6a:bd:1b:39:04:a5:e3:0f:cf:30:
f5:dd:e6:b8:31:15:e3:d1:d7:b0:4b:72:b8:c0:77:
7b:e8:25:76:55:54:87:4d:ab:43:d5:81:36:99:92:
97:0c:e2:ac:79:7b:4c:41:a2:94:23:41:c6:45:eb:
95:df:2a:f6:2f:60:2e:2e:f9:f8:67:1e:21:24:cf:
8a:02:87:e8:7c:94:b8:af:ea:4c:30:4e:a4:a7:d3:
8e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:CF:25:1D:32:1F:67:41:D5:82:6F:B8:C8:D8:68:C8:BA:8B:AC:57
X509v3 Authority Key Identifier:
keyid:32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:d3:e0:74:88:27:75:8a:9a:90:f4:d0:eb:93:5e:e8:7e:d3:
58:41:71:67:c0:cc:a8:0d:7b:ca:df:f2:d4:e0:95:02:f5:72:
34:f0:ad:da:88:3e:d5:1f:e3:26:84:c6:c1:d3:0f:30:f3:0c:
eb:5d:5b:b0:76:09:b6:b9:a7:d9:58:3f:94:4d:fa:bb:23:2c:
a1:ea:34:27:03:14:43:18:51:07:44:2a:a3:23:7b:72:10:61:
6d:d1:cc:a9:ac:b0:c7:5e:9a:5b:62:e3:b4:1c:30:c8:38:0a:
1f:6c:7a:52:e9:72:ee:a5:2d:cb:71:d0:85:4b:c0:50:d3:64:
c6:fd:6a:ac:30:37:69:f9:88:d3:a4:1f:2f:31:be:6a:e3:3e:
a5:d1:a5:ac:01:88:98:6e:b6:d3:ef:69:f6:4c:17:0c:3b:35:
d6:ec:98:5f:67:1f:7c:3b:2e:cc:cd:01:49:04:41:c0:00:12:
24:cd:52:06:a9:d2:3b:b5:64:18:de:e0:72:52:a6:a6:1d:91:
a3:f9:3f:30:5a:3b:6f:0f:f5:00:af:55:00:9d:ad:e8:0d:08:
d6:7a:42:bc:95:c6:d9:41:26:90:b1:ba:b4:35:19:fa:f0:4b:
fc:61:5d:3e:21:b5:55:a0:ec:9f:35:c2:b3:32:41:fd:65:d2:
6d:b2:3d:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 07:09:36 2026 by rpki-client