Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
File: 1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft (raw, json)
Hash identifier: 096vnFB078vYvFAN4bOCmUz8Ebt06xKOBSfiOV8PEzc=
Subject key identifier: B1:28:23:35:F3:3F:00:B7:CA:25:43:67:50:BD:71:4C:AE:71:8B:3C
Authority key identifier: D5:06:97:94:36:76:39:9A:C5:CA:C6:A3:E4:76:54:5A:F0:DF:49:DD
Certificate issuer: /CN=d50697943676399ac5cac6a3e476545af0df49dd
Certificate serial: 019EC0A4400871CA5748E8AC78872535B432
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
Manifest number: 0BA3
Signing time: Sat 13 Jun 2026 11:00:50 +0000
Manifest this update: Sat 13 Jun 2026 11:00:50 +0000
Manifest next update: Sun 14 Jun 2026 11:00:50 +0000
Files and hashes: 1: 1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl (hash: DR8vw9t5MeDMavf6PZouuuguLzWZ8ImfPZyhVnkVmHA=)
2: Rb6ICVosTC_zaZ16edh9MPPlC-4.roa (hash: f7bv124K8RG4yyZpz3BCEJydd5vMDmuet5IH5Sqpc1Q=)
3: X9Dk1AunWGE1Dosy-zP1Hnz0r7o.roa (hash: /pQF82MMJDZaxsI41JYaoLCQk3D/NV9NF4tHkKVR/m4=)
4: oTAnj8V3sccufxLPJpZJ2av8j-A.roa (hash: +rK4QlG7dHwB2u8oBpVxeumts0TuXiCtUppM0dEFMEE=)
5: y81jmZh2IG1vc4T2rX8QCQEOL9E.roa (hash: Y1jjyD/MrRS3ujVJRgR28FUQy55OTENwus5vMZGjmSg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:a4:40:08:71:ca:57:48:e8:ac:78:87:25:35:b4:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50697943676399ac5cac6a3e476545af0df49dd
Validity
Not Before: Jun 13 11:00:50 2026 GMT
Not After : Jun 14 11:00:50 2026 GMT
Subject: CN=b1282335f33f00b7ca25436750bd714cae718b3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b2:7d:cd:a2:9b:2c:ce:66:3c:1c:d2:e6:ee:
97:d6:bb:77:ae:4c:7c:15:bd:9a:c4:e2:20:f0:6d:
bf:3f:08:87:34:e8:06:a3:19:a7:52:d2:97:63:d0:
78:c8:9d:b8:2a:09:10:65:cf:d4:25:b5:ed:b7:7a:
03:f6:7b:2f:e2:e9:01:70:20:ca:dc:b3:ef:1c:af:
63:6b:f7:e3:de:ae:3a:a7:8e:d3:b7:ea:a9:fe:b6:
88:7c:34:e3:60:b8:ee:96:0e:0c:57:fd:39:56:a2:
7b:af:8d:03:34:c5:dc:37:e8:00:c7:28:48:9f:36:
b6:49:a2:15:6b:43:53:40:93:56:ef:3f:e4:f3:d1:
64:8a:97:d1:7f:13:b2:f4:d5:23:85:44:71:15:0a:
29:1b:fd:1a:e2:85:b4:15:1f:34:a5:70:d1:e1:e2:
ee:78:6c:33:55:31:d6:96:c5:44:71:17:11:0a:ca:
da:9d:92:45:38:c4:cc:df:c5:e1:9c:0f:0f:e0:af:
6a:79:c1:c8:9c:3c:d5:b0:f4:bb:dd:ce:75:cb:a0:
68:c8:24:fe:46:54:dd:97:c9:36:ad:9a:2d:cc:fd:
c8:67:0e:be:bf:cf:d6:20:3e:e1:36:13:a2:3f:2c:
f8:cf:f0:25:44:73:46:3b:70:c1:07:6d:8c:98:49:
34:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:28:23:35:F3:3F:00:B7:CA:25:43:67:50:BD:71:4C:AE:71:8B:3C
X509v3 Authority Key Identifier:
keyid:D5:06:97:94:36:76:39:9A:C5:CA:C6:A3:E4:76:54:5A:F0:DF:49:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:05:25:94:d0:93:2f:f7:0b:80:15:cc:b5:65:48:d4:d4:bf:
3d:96:b2:d5:ca:9f:17:be:d0:5d:2a:49:d4:14:43:38:cd:96:
ba:57:78:30:6f:eb:aa:dd:eb:3f:c4:95:a5:04:5a:7d:69:9d:
ef:00:6e:8a:f0:2d:78:02:57:65:71:b2:09:56:b1:16:07:58:
81:86:87:92:10:ad:54:a7:8c:d3:28:c6:46:4b:2f:52:01:6d:
c1:67:b2:11:91:11:14:aa:8e:ee:90:7b:1b:17:07:4f:41:33:
00:b8:0f:08:31:7c:eb:99:ca:57:27:cc:d0:c8:64:b2:84:f4:
c1:7f:6b:84:f8:4d:88:a5:1a:44:54:38:24:70:73:d2:03:c4:
0d:a8:e8:28:c2:26:71:a0:08:f9:0f:0a:9e:89:5c:fd:c3:62:
20:e3:20:91:b7:f4:82:99:f6:22:2f:e1:59:55:b2:f0:9a:ab:
db:06:e4:87:3d:98:90:e8:cb:43:eb:ea:3e:85:c4:f3:d0:ed:
c1:a5:92:6b:30:1d:19:3d:cf:0a:2f:eb:c2:05:e4:e0:c1:e1:
49:5b:f0:5d:6d:b2:9a:cb:a8:e8:68:31:bb:d8:7a:27:65:42:
c5:72:04:f9:4a:28:f5:90:cf:70:68:1c:e1:a5:14:23:c0:24:
e0:dc:22:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:07:50 2026 by rpki-client