Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
File: D6j7U5miekMK5yfFMs0iSZnohk8.mft (raw, json)
Hash identifier: murQ/AIRienj5vAS7FBR5/XZdpb9G9tLqMrXJWIYWh4=
Subject key identifier: E7:FD:96:B5:44:AC:CA:6C:D2:63:4A:CF:A3:A3:E9:9E:5B:CD:57:70
Authority key identifier: 0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
Certificate issuer: /CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Certificate serial: 019E1D59807B8C99D3EC3551F45783F27EFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
Manifest number: 0590
Signing time: Tue 12 May 2026 18:01:05 +0000
Manifest this update: Tue 12 May 2026 18:01:05 +0000
Manifest next update: Wed 13 May 2026 18:01:05 +0000
Files and hashes: 1: D6j7U5miekMK5yfFMs0iSZnohk8.crl (hash: MBssawCgw7DrANUCqUGlMDZ8NMf68gYtsPtmpyJJw/E=)
2: N3bXffW8yKFqU5UMm7fvxG-jz6A.roa (hash: bdRoY8TZDQQa0PscQFcX1AU8tV8n2oKXvuQ9ADHxYzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:80:7b:8c:99:d3:ec:35:51:f4:57:83:f2:7e:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Validity
Not Before: May 12 18:01:05 2026 GMT
Not After : May 13 18:01:05 2026 GMT
Subject: CN=e7fd96b544acca6cd2634acfa3a3e99e5bcd5770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:15:33:cf:24:97:6f:5c:2d:2e:2d:36:1d:99:
e6:49:c6:6e:cb:ac:a4:51:b2:a8:b3:43:b5:1f:a6:
29:1c:63:b8:e6:8e:58:1c:6b:6a:68:dd:cb:65:cb:
72:05:91:90:62:ce:7f:8c:7a:b0:38:56:46:0d:a5:
94:c2:b2:65:db:ee:05:5a:c6:b5:2f:4c:5d:12:5f:
9c:3a:d9:b2:f4:2a:f9:5f:b9:8e:44:dd:b7:9f:66:
20:94:31:bd:fc:e5:09:a8:dc:5c:20:30:6b:29:34:
d1:95:90:23:66:6e:70:9e:9f:32:e1:9c:55:9c:98:
b8:8f:d8:46:22:3a:fd:16:12:5d:27:6c:d3:e9:55:
e5:ad:4c:a0:ee:6d:63:e4:de:dd:91:17:7b:f1:b2:
15:f8:15:a5:6d:be:0e:3c:d9:8d:6f:ac:0b:fb:87:
6e:4f:f1:6d:45:55:39:56:92:8b:c0:f7:81:63:90:
66:28:07:30:74:9e:92:70:e3:db:64:56:96:76:7a:
5f:af:5a:59:3a:13:ca:36:af:5e:a3:b8:2b:40:7a:
0b:3b:14:2b:7b:0e:6a:3e:80:9b:47:d1:d1:be:95:
33:7b:6c:a9:18:62:61:0c:b8:1d:c2:10:56:92:0c:
45:7f:40:64:bf:5a:69:e5:bf:a0:1c:fc:5e:6f:15:
8d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:FD:96:B5:44:AC:CA:6C:D2:63:4A:CF:A3:A3:E9:9E:5B:CD:57:70
X509v3 Authority Key Identifier:
keyid:0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:0b:7b:64:c9:d9:bd:b8:ac:00:bf:ec:d4:b7:14:3c:3a:b9:
6f:40:d7:bd:bd:2b:f0:34:8f:dd:80:90:be:81:3d:8f:30:0c:
d3:a7:27:c2:a9:a9:54:de:78:8f:82:9f:b9:ec:c9:e4:8d:06:
45:58:78:4a:8c:ea:31:ec:f2:48:6a:01:66:87:fd:27:28:bd:
d0:d7:7b:9b:75:83:0c:ef:22:51:b1:15:7e:de:84:80:7c:26:
b2:ef:e1:41:ba:17:e8:fd:ee:28:eb:2e:f4:f4:f0:c6:ec:0d:
aa:51:85:2c:f2:68:0c:c8:f2:61:a0:c4:bd:c8:1f:8f:15:f7:
69:7f:10:63:bc:d1:23:a2:18:b2:53:58:ca:7c:00:c2:a9:89:
75:f0:31:88:dd:45:68:92:bd:03:eb:db:c8:03:53:e9:6c:eb:
e9:04:4d:21:0a:28:a5:56:d4:fa:5b:73:5d:08:d6:25:8a:9e:
48:bc:61:28:81:e3:07:f6:cc:82:86:9c:35:fe:0e:0d:ad:65:
92:34:5d:39:5c:24:45:94:24:cc:0e:fa:f4:66:bf:71:32:66:
0b:e8:16:54:d9:cd:d4:13:5f:33:70:a0:80:58:a0:01:4f:69:
65:d8:57:e0:84:af:0c:85:be:96:1a:60:53:d6:8a:1e:c6:88:
bb:57:f6:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:12:43 2026 by rpki-client