Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft
File: USd7w4wS4ELt31bX519QVjxL0ic.mft (raw, json)
Hash identifier: Na4/IvSg+FfL3Tw6GKu9mLrKnZObnk9NqHUteSVfJtc=
Subject key identifier: 3D:12:7F:6C:AE:B3:E8:1B:0B:6F:0F:66:8C:49:77:46:74:7D:5D:6C
Authority key identifier: 51:27:7B:C3:8C:12:E0:42:ED:DF:56:D7:E7:5F:50:56:3C:4B:D2:27
Certificate issuer: /CN=51277bc38c12e042eddf56d7e75f50563c4bd227
Certificate serial: 019EC1498CA973DE4ECDA2297FE706BE5145
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft
Manifest number: 1958
Signing time: Sat 13 Jun 2026 14:01:23 +0000
Manifest this update: Sat 13 Jun 2026 14:01:23 +0000
Manifest next update: Sun 14 Jun 2026 14:01:23 +0000
Files and hashes: 1: D4QRrUObCGq3FWyTZQYsdDxIC-Y.asa (hash: f66FrX9VHylFdBsRAbYxdFz6/ASysid9BFIKkasqYLk=)
2: HVAKOChJvzlPOcqJ_ehcMgXUK9o.roa (hash: 2mWGKvxbtg/GycElX7B4p0Awmc5Qwctw5xexjAFCbUI=)
3: USd7w4wS4ELt31bX519QVjxL0ic.crl (hash: qODdCJS7fdfIXGrnwkBwpnPocCd6eEg6AzXpV36fgqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft
rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 14:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:49:8c:a9:73:de:4e:cd:a2:29:7f:e7:06:be:51:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51277bc38c12e042eddf56d7e75f50563c4bd227
Validity
Not Before: Jun 13 14:01:23 2026 GMT
Not After : Jun 14 14:01:23 2026 GMT
Subject: CN=3d127f6caeb3e81b0b6f0f668c497746747d5d6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:31:8b:a2:2f:94:6b:bb:a7:37:df:b7:89:24:
85:dd:1d:b6:bc:9b:ac:eb:01:de:c5:d2:13:a4:2d:
d4:bd:5c:dc:43:80:7a:37:55:59:41:b1:95:8d:74:
3a:7f:e2:25:14:6d:fe:68:b0:e2:bc:3a:d6:6c:e3:
8f:ec:56:96:4a:78:ec:69:95:8c:15:39:f5:4f:02:
25:49:b1:95:78:5a:cd:3a:ee:88:c1:01:28:fe:ef:
be:3e:cc:84:b0:5a:f6:43:06:fb:6f:bf:d9:2d:17:
bf:29:a5:37:d4:b2:dc:54:91:67:c4:f1:3e:fa:bc:
52:8f:ac:f9:95:63:47:8b:e5:33:31:09:6c:5c:4b:
b3:e6:fc:e0:34:83:35:92:00:71:ac:1f:e4:72:90:
81:2c:37:43:67:2b:d5:6c:9d:83:40:1a:07:70:ef:
e4:fc:27:ee:68:e4:d8:17:b6:79:e6:1d:7c:01:e3:
c3:f5:4e:db:e1:38:a0:29:a6:f0:a8:24:a3:0f:a7:
fa:0f:d5:b7:6d:26:78:51:73:7c:80:8c:09:71:52:
f0:bc:aa:c1:48:be:be:d3:f8:6c:43:a4:30:a0:be:
43:15:82:98:e6:ae:4d:c6:a8:23:ac:76:6b:24:e2:
59:65:ed:48:6d:fe:11:c2:21:14:16:8f:bb:b1:d8:
a7:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:12:7F:6C:AE:B3:E8:1B:0B:6F:0F:66:8C:49:77:46:74:7D:5D:6C
X509v3 Authority Key Identifier:
keyid:51:27:7B:C3:8C:12:E0:42:ED:DF:56:D7:E7:5F:50:56:3C:4B:D2:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:af:66:09:7f:b8:61:e5:f6:ce:78:46:1e:07:c1:cf:40:45:
c4:cf:16:07:26:ae:8c:83:e7:2e:f1:89:c8:68:92:f3:ba:27:
c3:6e:7f:45:85:bb:f9:fe:7e:57:7a:12:f1:7e:cf:72:6d:ab:
e0:8b:a7:52:f9:17:3d:4a:65:ff:cd:78:5f:70:0e:eb:3c:be:
c4:98:7c:bc:ee:c9:53:0d:a4:c6:5a:dd:cd:fb:81:40:03:35:
3b:35:2f:24:f7:71:2d:2a:3c:13:b0:00:fd:26:68:1e:27:d4:
73:c7:6e:b7:47:4a:e1:78:cd:d3:37:48:65:20:88:54:3e:31:
91:eb:5f:32:06:dd:f0:65:75:2a:2f:60:05:2d:c8:e0:4d:d7:
be:1e:2a:9a:b9:92:eb:1b:eb:be:7b:75:fe:f8:2e:e4:4d:c8:
c8:05:24:cd:1a:28:f8:66:a0:ab:33:7b:ea:ac:ed:8f:85:e0:
12:d7:52:55:ea:1a:e0:3f:2b:3c:4a:79:ee:7b:28:50:6d:42:
19:a1:d8:33:b5:2e:6f:a4:96:06:55:c2:22:6b:df:45:36:7e:
3f:2c:d1:f9:ed:bf:f5:61:2f:8d:ff:72:fc:e5:e4:4a:2e:47:
2f:ec:94:1a:8b:40:05:bf:6f:1e:60:14:d2:10:b3:b5:f0:89:
a9:07:42:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 22:30:39 2026 by rpki-client