Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json)
Hash identifier: WqlMTGSX+vtDk4K/XO7h6r+xSAlmJl0civizsd+jBfI=
Subject key identifier: 13:DB:91:37:05:83:79:10:C9:30:BA:B1:8E:70:24:2D:F6:BB:30:14
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial: 019EC3A5CF0980887F44938E7E419C140A45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
Manifest number: 1369
Signing time: Sun 14 Jun 2026 01:01:23 +0000
Manifest this update: Sun 14 Jun 2026 01:01:23 +0000
Manifest next update: Mon 15 Jun 2026 01:01:23 +0000
Files and hashes: 1: 7XPR057HTONIllGtY9NijiuY-tk.roa (hash: rKfjiDRkcr3HFT8PmmA3P0sCBQ3drFmQ5QDnLKCb/BE=)
2: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: dPmaNIt/LYEs5flxt8j7indDT0zeaCFB50tdkt/ZESM=)
3: T4FApCxhFe83q9A7YZlC1nZYzIE.roa (hash: LjUt5usAgPWHNriSJWMg7OS8Oagi6w46/dUqLi/UEzA=)
4: Wn-ZLE8xGx2iUZq_8EgFIe3BY1M.roa (hash: SwGxPAdfidv7O5nNS+nKj4I72Qs5sJPeTh9qbwfsZWo=)
5: YuGYvjrFzLezHsgzIUZ0asWCqVk.roa (hash: aZLneGXD5YvsOe9tvMiGcrBxDYxxGmpY4vDCZwd72Z8=)
6: fLae4aR9HsO6ApeohQnbJHEsvgg.roa (hash: /b3Xi59hV2RbWadggK4I0wXvCWO8lTHkzV3V9hJ6K0Y=)
7: jccKxXf-KlBy0OODUdeGAP1Pln4.roa (hash: kXcgJH+D8EkeDblDPw+VtydCo7evj5I/OxvPnwmyUe8=)
8: r2cUyHBMaewNpNV3po9MOZwNcyU.roa (hash: SVkhtUySEPUVdVwXoSgDIclbqsQ0muf2pONZTDoO/YE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:a5:cf:09:80:88:7f:44:93:8e:7e:41:9c:14:0a:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
Validity
Not Before: Jun 14 01:01:23 2026 GMT
Not After : Jun 15 01:01:23 2026 GMT
Subject: CN=13db913705837910c930bab18e70242df6bb3014
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:40:91:15:e2:48:dc:6f:f1:f0:a5:23:f6:1a:
7e:b8:01:32:d2:b1:d1:d7:65:4f:80:25:91:f2:d3:
2e:eb:72:07:84:a2:44:14:79:2b:06:54:25:e4:bb:
d9:06:1e:fb:9a:9e:4b:77:d6:e3:69:55:a9:57:e8:
e4:32:33:be:88:a2:d7:44:77:cf:19:c7:bb:0b:7b:
ad:a1:a4:c6:de:c3:1f:96:b2:26:44:2a:1f:c9:e7:
de:7d:f1:1f:61:4f:ab:c2:24:3b:90:32:ce:14:fc:
5d:11:70:9a:52:81:29:bb:8e:75:03:cf:d0:c3:b0:
76:27:cc:da:98:74:ce:e7:57:58:1b:c7:b8:70:32:
36:fa:9e:74:58:1f:8a:14:f0:f1:7d:72:dc:da:e8:
72:5f:99:0b:1b:37:9b:cf:fb:b0:51:82:26:bb:43:
58:0d:72:6e:47:62:71:66:80:fb:9f:f9:e5:8c:27:
a9:d1:cb:c2:85:ce:4e:17:e5:fc:08:a8:72:34:39:
13:c4:17:f4:47:d3:bf:58:91:ec:7b:f3:44:14:c9:
e0:20:71:d4:d4:5e:90:fa:f4:16:16:83:c7:8d:43:
eb:2e:3d:11:2d:1d:14:cb:45:d8:a5:d7:79:33:91:
72:d8:88:77:10:95:4a:34:87:14:ed:c2:f1:ea:d3:
2e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:DB:91:37:05:83:79:10:C9:30:BA:B1:8E:70:24:2D:F6:BB:30:14
X509v3 Authority Key Identifier:
keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:5f:b8:73:18:ea:58:27:72:ed:d6:4d:b3:8a:a6:ea:80:a6:
c1:ed:32:8d:f9:69:b5:55:92:ed:22:7f:ca:ba:8f:d4:27:fd:
63:13:0f:2e:f2:bf:84:ea:3c:77:ef:40:f6:e8:6a:20:14:ba:
41:ad:ca:a7:ec:67:f0:7a:5e:2c:85:11:ab:fe:9b:3c:28:8b:
12:25:e6:56:77:0c:f9:bb:fb:38:bd:9b:4a:cd:14:62:ed:39:
62:5d:02:df:42:bc:0b:e9:83:70:60:7e:a9:8a:01:6d:8f:ed:
6a:7e:9d:24:ce:ac:29:53:c5:d9:48:72:7e:a9:5a:ee:dd:ee:
d1:7c:07:cc:1a:a1:d4:5a:74:d8:ad:cb:5c:71:ba:9b:ac:f4:
35:d3:2f:dd:03:dc:48:c3:f0:8c:af:26:41:7d:1a:66:12:95:
af:c5:6b:b0:82:99:d0:b2:c5:4d:82:72:41:47:13:35:d8:46:
e1:8a:56:a9:a8:3e:05:44:44:19:33:90:85:0b:fa:fd:ac:ee:
85:1c:7d:89:f2:cd:68:98:0a:4f:a7:c5:21:ba:e8:2f:48:03:
8f:08:d5:19:fc:bc:03:27:0c:e5:9a:1b:87:8c:42:e1:74:ae:
33:c8:7c:5f:07:51:2c:42:28:8c:01:96:8d:52:6d:dd:34:20:
db:0d:b1:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 04:25:23 2026 by rpki-client