Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
File: v99XKOyr1W70Y3NWlVhmylRoaRo.mft (raw, json)
Hash identifier: JbirD6NB+GTd5TMmcaSJKZR0Y8qZFqd0NFHZFOYdr6w=
Subject key identifier: E5:1B:C6:4A:E3:70:8A:1B:08:D0:2B:6B:EF:EC:60:45:29:13:7A:95
Authority key identifier: BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
Certificate issuer: /CN=bfdf5728ecabd56ef4637356955866ca5468691a
Certificate serial: 019EC06DD7AC1BFF97EB6B8B5808DEDF5E43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
Manifest number: 057D
Signing time: Sat 13 Jun 2026 10:01:24 +0000
Manifest this update: Sat 13 Jun 2026 10:01:24 +0000
Manifest next update: Sun 14 Jun 2026 10:01:24 +0000
Files and hashes: 1: 3BcGBZCHDgJs9gSoEvIJqO6Wdng.roa (hash: QqrBTNsjue3924ijEFZUnNRSzA8ZRhSOavKbIrZOqys=)
2: v99XKOyr1W70Y3NWlVhmylRoaRo.crl (hash: omKZyzz1DYtUHDMQC388h6y5DkX/eLMDHPL6R3sOYhk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:6d:d7:ac:1b:ff:97:eb:6b:8b:58:08:de:df:5e:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfdf5728ecabd56ef4637356955866ca5468691a
Validity
Not Before: Jun 13 10:01:24 2026 GMT
Not After : Jun 14 10:01:24 2026 GMT
Subject: CN=e51bc64ae3708a1b08d02b6befec604529137a95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fb:9f:db:0e:43:3b:60:06:0f:0d:69:ee:b3:
2e:a2:d3:99:25:ca:10:8a:d8:d1:a6:0e:d7:b5:12:
15:51:21:31:1e:4d:b0:4f:f8:4a:37:a3:7e:0c:d9:
0d:4b:b2:b4:29:a5:66:6e:52:df:2a:db:29:c7:52:
ef:fa:62:21:3e:90:67:7b:41:2e:3c:90:27:16:30:
51:4c:1c:34:89:0d:be:9b:6a:8a:64:1a:c9:ad:ab:
cc:f2:85:43:4b:43:d2:90:9f:1e:bd:72:d8:fc:44:
b2:36:24:dd:6b:65:8b:17:91:9e:00:0b:2b:08:af:
88:f1:22:05:3d:49:3d:bd:81:32:03:30:d9:c8:40:
68:69:3a:b3:03:ae:2c:05:24:94:9d:ef:7e:3d:6d:
2a:2c:50:7e:11:08:1d:2e:e3:41:b8:cc:4d:94:66:
35:ef:a7:b6:e3:11:2f:fa:ed:60:9a:41:b0:4c:36:
12:1d:fb:de:c9:7e:99:30:df:2c:2d:2b:6c:14:45:
c1:cd:42:bc:1c:20:43:45:94:65:ae:f2:d0:a7:20:
87:4d:c3:b9:ff:8c:50:1e:ed:9c:08:72:78:66:10:
74:b8:8b:55:dc:5f:0d:7a:ad:ac:3e:9f:be:19:db:
17:01:14:00:2a:11:ae:28:43:42:15:c5:e6:8f:32:
d7:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:1B:C6:4A:E3:70:8A:1B:08:D0:2B:6B:EF:EC:60:45:29:13:7A:95
X509v3 Authority Key Identifier:
keyid:BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:e8:75:e7:05:a9:27:91:23:b6:f9:cc:a6:bb:2f:28:4c:f6:
d5:35:e0:bd:02:0c:e9:8f:f6:68:a3:7b:8c:c0:49:f1:11:19:
0d:b0:9b:ba:89:7b:29:fb:84:6c:6b:db:c5:e9:d3:cd:99:db:
4b:2e:e4:e0:26:64:09:88:3b:38:32:d0:b1:a0:f9:3b:d0:6a:
50:d2:3f:7e:25:a0:4f:01:d7:29:d1:d0:0f:a0:16:8c:49:dd:
a1:f5:5c:ed:5d:82:38:75:26:5d:fd:63:46:54:b0:2c:01:8d:
88:d9:3f:67:b6:c5:34:53:67:54:52:51:4f:0e:ff:78:2e:71:
44:e7:cc:43:6c:aa:bb:ba:2a:2e:0e:2d:c7:1c:fb:98:c1:a2:
94:af:59:b6:79:e6:8a:6e:fa:81:ef:f8:96:b0:1c:78:68:e3:
c3:d8:32:ac:1c:de:6a:48:f6:56:08:08:84:0f:52:8a:51:c5:
4e:fb:2f:ff:7a:ee:3b:c9:39:88:88:9d:6a:9a:b7:9b:38:8b:
08:1f:95:3e:36:3d:68:f9:fc:d6:ed:d0:b1:7f:2e:13:3f:36:
84:c7:07:51:93:b7:98:5c:c8:7a:6c:21:50:a6:04:9b:49:fa:
f7:dc:96:ae:1b:8b:ba:88:29:f2:a2:40:2a:f4:2e:21:9f:be:
6e:92:dc:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 14:03:21 2026 by rpki-client