Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
File: s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft (raw, json)
Hash identifier: 3NBKVjV+aXrkO7P0W8+++vtTwOGO9saTNyXpvg8xYUM=
Subject key identifier: E1:29:DA:D8:8E:33:21:35:B2:E5:D7:21:15:A8:BC:15:6E:DD:03:70
Authority key identifier: B3:93:DF:87:7B:F2:F0:CF:01:A9:71:89:73:EA:EE:E8:7B:06:97:D9
Certificate issuer: /CN=b393df877bf2f0cf01a9718973eaeee87b0697d9
Certificate serial: 019EC0365F6DB233BB20A77451476D0FC3CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
Manifest number: 1339
Signing time: Sat 13 Jun 2026 09:00:49 +0000
Manifest this update: Sat 13 Jun 2026 09:00:49 +0000
Manifest next update: Sun 14 Jun 2026 09:00:49 +0000
Files and hashes: 1: 2zW08BKeRm7D1IDPo_HIO01939Y.roa (hash: 47sX7u1KvuJt0tJls26PNQunkQblcdvkWNhCFldDuVU=)
2: FiLe_I9IP6W7MphiOr_CiL0bjSs.roa (hash: q1TJFvUMkjNyX0aSOs41/td1gkb7//YLN5yBHlFxZC4=)
3: JIIXr3X9vCQszAbNslU1l97JDHE.roa (hash: 1cSDQwO2+YC255/v6AV3wkUxgfk6+iiyEcMIh68CJvY=)
4: LFK2KZYQdm49lMZGq09_QCx1zKM.roa (hash: nYysAfjey6lKN0HP83k5T3J+7jNUAsnWPGq1zi3IPys=)
5: Txc0Y3w5O2MeuabOsp_i0fCstJU.roa (hash: XbbTV+bUv06PJ/qu0aw1RaX6Asirn+MLh6nL3Y4mz7s=)
6: ZQoXdMphcAyX_vSWGtLFp2lvoas.roa (hash: iFh6LchnjC6OiPt1RjLveej4KNPbVSeFQ+5l4ZDpv0s=)
7: s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl (hash: h/BcdT24/gRqW3jh7LeSsQwGMf31bfDjBFIvy1NHsrw=)
8: wDNBjtjhirmC6HysMhN91EuISE4.roa (hash: VJdL+BcRDNdb1Ls5gcb7MknnthUWMMrUmAyuqY4kqkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:36:5f:6d:b2:33:bb:20:a7:74:51:47:6d:0f:c3:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b393df877bf2f0cf01a9718973eaeee87b0697d9
Validity
Not Before: Jun 13 09:00:49 2026 GMT
Not After : Jun 14 09:00:49 2026 GMT
Subject: CN=e129dad88e332135b2e5d72115a8bc156edd0370
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:30:52:0c:f0:e6:cb:f9:ba:c0:7a:e4:b0:60:
d7:09:54:16:ff:e7:08:93:f1:01:c0:42:ee:45:5d:
83:c6:a4:24:42:06:de:2d:3a:b7:f6:54:a8:69:a0:
56:cd:d4:f6:b8:6e:b0:2c:3d:95:91:c4:4f:35:0f:
dc:2e:d1:f2:21:43:a2:cf:c2:a0:53:0e:81:09:d9:
65:e3:96:d6:2a:b9:d1:17:bb:e1:11:ef:c0:b4:87:
b8:87:a7:68:d4:ab:bb:1e:c8:10:b8:e8:5f:c6:a9:
cc:a3:de:0c:8d:c6:09:e4:58:90:eb:68:72:ae:3d:
26:fb:29:03:8d:2d:22:c0:da:fb:3b:cc:af:74:4d:
5a:2d:ef:3f:c4:67:7a:ab:b1:63:c7:72:bf:3b:3a:
ea:93:01:8b:74:0d:0a:4a:ec:1f:08:89:07:fe:a3:
5a:f2:d3:e4:52:ac:7f:10:85:81:55:8c:10:91:7c:
32:d3:5f:18:d4:92:4b:4f:f8:e2:cf:65:e6:e1:77:
da:0d:3e:51:00:7f:84:bc:f3:95:22:e7:4c:9b:a8:
e3:6a:c4:ed:92:01:0a:6c:77:7c:26:15:71:19:df:
ca:2d:97:82:0d:48:c0:07:5c:59:01:7d:75:7e:f4:
04:bc:f8:8c:63:54:9b:5c:de:de:be:5c:c4:81:e1:
93:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:29:DA:D8:8E:33:21:35:B2:E5:D7:21:15:A8:BC:15:6E:DD:03:70
X509v3 Authority Key Identifier:
keyid:B3:93:DF:87:7B:F2:F0:CF:01:A9:71:89:73:EA:EE:E8:7B:06:97:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:8b:0d:78:41:d3:93:2a:bd:b1:0b:aa:45:06:89:d9:f5:44:
57:7f:e5:39:bd:77:5f:da:f7:1f:5c:b1:95:02:2e:d3:3b:72:
d7:87:67:91:fa:6c:d9:11:d1:9d:36:1d:c8:ed:48:60:53:57:
e0:c3:7f:2b:3f:5f:1e:96:28:f9:50:48:a3:1a:14:ce:38:22:
9f:43:81:df:0e:84:44:f0:64:b9:77:f6:b6:e6:c4:64:8c:f5:
c6:d1:91:4c:42:7f:d2:92:e2:83:56:9b:a2:6f:0e:5b:69:f4:
ca:7f:06:68:13:58:da:8c:c5:eb:6a:73:28:5e:f2:f0:4e:49:
ee:36:77:0f:ef:ca:fc:69:d2:b0:f7:88:2d:04:f5:b5:72:a8:
9c:cc:6c:56:c3:06:84:fc:18:e9:05:7a:c1:68:70:9a:38:8e:
d5:cc:b5:20:bf:83:78:f3:bc:10:4c:b5:a5:6c:de:05:0c:1b:
5a:ce:86:49:02:34:43:cc:ae:75:52:16:21:f1:d0:d1:07:43:
20:c8:e8:b0:62:11:50:c7:4c:27:b1:9f:8c:81:4d:17:a9:ee:
ef:11:5e:0a:3a:b2:2a:6c:5f:73:07:4a:22:5b:8c:9f:e5:18:
9b:97:3f:b9:b9:17:b2:5b:cb:43:c8:fb:88:59:c7:1c:98:06:
39:71:1d:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:28:17 2026 by rpki-client