Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
File: D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft (raw, json)
Hash identifier: 8nG7Znjx9fx6bHdw8XIArGGdsGy+O9M3cnJ2bSbzn0A=
Subject key identifier: A1:6D:D8:36:E2:DE:09:30:B0:0C:64:7A:4F:87:B0:F1:64:84:94:95
Authority key identifier: 0F:BF:E9:38:5E:6A:75:9F:83:3E:4F:09:A0:9F:0D:CF:ED:53:B3:E4
Certificate issuer: /CN=0fbfe9385e6a759f833e4f09a09f0dcfed53b3e4
Certificate serial: 019E1E35F9F9BE17BA6C5263787669B99391
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
Manifest number: 0879
Signing time: Tue 12 May 2026 22:01:54 +0000
Manifest this update: Tue 12 May 2026 22:01:54 +0000
Manifest next update: Wed 13 May 2026 22:01:54 +0000
Files and hashes: 1: 9VeKZDE1iGHZNfZDG7yt114IeSs.roa (hash: osxP6EgjjjBz4lB4YyG0W3qp7xP9edg7UyqKvlF/CrE=)
2: D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl (hash: JrG2ZQC6Q18B9ZqFUo0mGrAydRcoI4p097kU+8n3mLM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:f9:f9:be:17:ba:6c:52:63:78:76:69:b9:93:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fbfe9385e6a759f833e4f09a09f0dcfed53b3e4
Validity
Not Before: May 12 22:01:54 2026 GMT
Not After : May 13 22:01:54 2026 GMT
Subject: CN=a16dd836e2de0930b00c647a4f87b0f164849495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:31:94:a6:7f:d0:45:5a:e7:e6:cf:fc:f1:b1:
2f:f3:bf:4f:51:b5:f6:a1:18:e6:9a:18:53:c5:f8:
45:9d:3d:fe:62:9b:2d:36:30:8c:d3:46:72:26:f3:
48:ba:4b:8e:8f:fb:b7:bd:e4:f7:c8:96:44:d5:ba:
86:fe:13:56:2b:29:39:58:fe:34:42:73:eb:92:e3:
38:a4:4a:af:99:a6:99:f7:40:57:98:78:94:f0:e8:
73:71:b6:7f:2b:df:f2:3e:c0:05:6d:cd:a4:e9:cb:
eb:b5:48:ac:93:ce:ad:c2:27:20:82:3a:73:30:a9:
b8:de:64:44:99:48:fa:f4:93:4e:24:61:92:17:11:
39:ed:39:3c:05:ea:e9:eb:27:dc:3a:55:19:5e:ec:
ba:ae:42:53:e3:cc:a0:8d:e4:21:32:38:73:e9:12:
25:97:ca:c5:59:96:28:aa:1e:c9:76:06:6c:f1:fc:
73:f5:4e:71:6a:0d:a9:24:f3:9b:bf:31:d8:5e:21:
ec:8f:ff:1f:0b:b0:02:54:38:88:4d:29:ad:37:95:
01:59:86:b9:8b:07:57:8b:65:f6:c6:9e:92:b8:56:
d6:87:04:d3:fa:aa:98:75:7a:90:01:8e:83:dc:16:
9b:a3:da:cf:f2:d3:b7:d0:e3:39:47:85:5b:1c:20:
db:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:6D:D8:36:E2:DE:09:30:B0:0C:64:7A:4F:87:B0:F1:64:84:94:95
X509v3 Authority Key Identifier:
keyid:0F:BF:E9:38:5E:6A:75:9F:83:3E:4F:09:A0:9F:0D:CF:ED:53:B3:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:d2:8d:9d:3b:81:20:36:c6:65:21:c3:96:84:eb:c1:d3:dd:
40:06:a6:1b:7e:94:77:8b:63:1e:7a:57:a3:4f:86:76:f6:50:
d8:b2:4e:37:dd:4b:9c:5b:a4:50:d7:27:44:7e:fb:4c:d2:b8:
af:e5:07:00:5e:06:80:d2:58:13:6c:e4:d3:5b:d7:08:c4:11:
b8:41:aa:e5:1b:e0:c9:32:43:8d:40:f7:f4:12:66:77:50:f0:
6d:98:3d:7f:18:46:9c:4d:10:08:1d:01:3c:b7:1b:42:76:a9:
87:3b:de:d2:03:f5:46:f7:a0:d4:88:6e:c6:43:d3:7f:9d:8f:
12:82:4d:f7:58:25:a1:18:4f:70:6a:90:af:b2:43:5f:f0:4e:
1e:51:f6:cc:88:09:79:98:40:56:dc:a5:08:7c:d8:d7:5e:25:
86:85:bf:57:9e:f5:dc:33:5d:79:9f:54:f6:07:09:cd:29:74:
5d:ff:f3:06:55:96:a6:45:4b:29:70:23:18:f7:21:23:7f:1d:
59:9b:fc:ab:3e:d0:89:2d:80:ea:b6:a0:ae:db:b0:d6:13:67:
3d:9f:50:17:9e:72:dc:3d:f7:70:f9:51:70:2c:b9:8e:64:6b:
c7:d1:16:47:ad:3b:bd:b0:0c:9e:31:d9:23:5f:13:7f:12:a3:
bb:f2:89:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:16:20 2026 by rpki-client