Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
File: DAHrsNsEzE1pGCs47A30sIkiJ40.mft (raw, json)
Hash identifier: zKcg+/urZdysaibp60u+arz0QoiMbmZ8Qqy3vQM9bo0=
Subject key identifier: 4C:36:41:82:24:73:85:69:07:6A:BC:AE:99:F0:4A:64:5B:4C:A7:A2
Authority key identifier: 0C:01:EB:B0:DB:04:CC:4D:69:18:2B:38:EC:0D:F4:B0:89:22:27:8D
Certificate issuer: /CN=0c01ebb0db04cc4d69182b38ec0df4b08922278d
Certificate serial: 019E1E35399B278335D7CC440B4C810C0AA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
Manifest number: 1901
Signing time: Tue 12 May 2026 22:01:04 +0000
Manifest this update: Tue 12 May 2026 22:01:04 +0000
Manifest next update: Wed 13 May 2026 22:01:04 +0000
Files and hashes: 1: DAHrsNsEzE1pGCs47A30sIkiJ40.crl (hash: lxNbF5kALLap8gb0TJyy4PKHdib0QVqJuPcBHJZK3Bo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:39:9b:27:83:35:d7:cc:44:0b:4c:81:0c:0a:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c01ebb0db04cc4d69182b38ec0df4b08922278d
Validity
Not Before: May 12 22:01:04 2026 GMT
Not After : May 13 22:01:04 2026 GMT
Subject: CN=4c36418224738569076abcae99f04a645b4ca7a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:7f:e7:b3:2c:09:c3:03:07:63:20:1e:1d:6a:
a8:1b:ed:43:42:d9:99:ac:0e:16:26:8b:9a:ea:48:
12:56:3f:e1:32:8f:70:b9:77:db:14:f1:f4:51:dc:
7e:e9:9f:00:2d:72:9b:e5:6d:d2:54:0e:d7:a2:64:
d0:9f:83:6c:3c:df:5b:58:65:d1:8e:5a:b7:a1:eb:
24:6f:82:c8:dc:12:42:b8:f8:89:c1:f9:f0:bf:33:
64:20:3a:2b:22:0b:f1:09:80:71:84:1a:36:16:f6:
ea:0d:44:7b:48:5f:12:f0:61:d9:a0:c0:a0:e8:24:
4c:d6:8b:ed:f3:ef:61:89:f7:79:06:2e:c3:37:73:
d1:1a:b4:5b:e9:07:62:97:fe:7f:da:66:9f:8c:6f:
41:2a:77:78:8d:0f:f1:45:f2:23:7f:22:0a:fc:d3:
55:25:9a:e9:46:b7:38:93:ec:74:ce:ab:4e:85:cf:
38:87:b4:cb:8e:f4:cc:ce:10:cc:04:16:a7:91:aa:
43:1d:84:08:7d:92:38:e0:39:0a:4c:a8:9b:70:84:
e2:59:4a:6a:ad:da:9e:2a:79:57:5f:51:46:65:ae:
24:0d:8a:79:c7:4f:c2:76:30:b6:9b:d0:be:98:56:
e1:23:44:d4:87:0b:f4:f3:28:5e:03:b7:06:39:ae:
fb:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:36:41:82:24:73:85:69:07:6A:BC:AE:99:F0:4A:64:5B:4C:A7:A2
X509v3 Authority Key Identifier:
keyid:0C:01:EB:B0:DB:04:CC:4D:69:18:2B:38:EC:0D:F4:B0:89:22:27:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:4a:05:45:e7:74:42:48:65:f4:17:2a:24:9c:ad:f0:ef:66:
d1:8e:85:ba:45:2e:fe:f6:54:5a:bb:81:ed:44:6e:61:8f:17:
b0:d4:9c:8f:41:ee:15:21:38:e1:75:dd:8c:30:13:c4:0a:90:
6a:04:f8:9d:c2:34:28:ff:8d:3e:2b:05:aa:8c:17:ee:92:7e:
e6:67:cb:b7:ed:b5:ee:1e:01:e7:d2:91:ab:51:af:de:3b:f0:
f9:42:63:aa:40:eb:bd:ae:cd:5f:0c:9a:40:89:12:74:b2:db:
22:0f:b8:c9:e4:d5:31:dd:be:90:66:d2:da:65:a1:36:a3:b9:
1a:81:16:d7:4c:49:b8:62:19:a7:90:49:1c:d9:c5:33:85:0c:
f8:08:3d:87:8c:af:a1:b7:1a:c6:87:8d:56:70:61:c0:61:ef:
11:e0:c3:23:95:10:a2:58:0d:89:c1:0d:e4:7f:f9:e6:13:34:
05:00:83:16:10:a6:af:45:e3:b5:b8:17:85:17:d6:80:8c:f4:
3f:32:22:94:dc:52:5e:ec:d7:34:e0:14:90:26:00:ad:7a:e8:
4c:59:08:aa:af:d2:ed:56:23:91:f1:02:fa:a4:57:3e:e9:d9:
8f:07:5e:4b:85:26:9b:33:fd:1e:0a:1f:3f:da:c3:aa:75:a7:
92:eb:c6:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:00:47 2026 by rpki-client