Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
File: 0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft (raw, json)
Hash identifier: KbUpkJOSZAebA/lA9uOV4qXjB9LT9BZHmwCg87zJLgc=
Subject key identifier: C0:A1:07:8E:5F:DA:09:2C:FE:3A:C9:6B:0D:4F:05:D4:AD:04:5C:54
Authority key identifier: D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF
Certificate issuer: /CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf
Certificate serial: 019E1CB48E0254FA1F675C1EBD5E72140121
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
Manifest number: 075B
Signing time: Tue 12 May 2026 15:00:55 +0000
Manifest this update: Tue 12 May 2026 15:00:55 +0000
Manifest next update: Wed 13 May 2026 15:00:55 +0000
Files and hashes: 1: 0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl (hash: yNdHHYjtKzeJNubbsIS1oGD7swuoKBVrcckfvbdnorQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b4:8e:02:54:fa:1f:67:5c:1e:bd:5e:72:14:01:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf
Validity
Not Before: May 12 15:00:55 2026 GMT
Not After : May 13 15:00:55 2026 GMT
Subject: CN=c0a1078e5fda092cfe3ac96b0d4f05d4ad045c54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:15:b5:cb:e9:8f:e2:79:49:c4:b9:a3:0a:1c:
20:22:fa:b5:04:1b:a8:d1:a1:1d:be:5c:01:37:c6:
41:c9:55:23:9f:07:8a:c5:fb:d6:2e:b5:a5:c1:9b:
65:79:e2:ef:1e:10:1d:36:55:9e:77:58:d0:38:42:
b7:9c:75:62:e3:06:b4:bf:78:97:97:20:14:2c:39:
5d:4d:f2:fd:1a:d0:8f:48:03:6b:70:f2:ff:da:ed:
4c:1f:c5:3d:69:16:79:06:3c:a2:bc:27:0c:89:ba:
f7:7f:23:13:b5:7e:57:20:a4:3b:d3:9b:7d:d4:46:
1c:95:46:f0:a3:8c:d2:18:4f:e2:0d:af:68:ed:e1:
55:28:10:d1:b8:e6:f3:0c:9d:9b:49:c5:31:e4:39:
3c:0a:95:d6:7a:44:bb:7a:ea:6f:6b:4e:05:86:fb:
89:17:7d:03:d2:0d:ac:8a:40:1c:88:81:6e:4a:4f:
86:25:29:27:6c:5f:2f:14:ca:0e:94:cf:36:8a:94:
01:48:7d:0f:ec:06:02:ac:ed:52:92:08:6e:98:36:
77:07:6f:f8:d8:5c:a1:58:64:09:22:0c:96:04:a7:
38:47:ba:c4:6e:a7:82:1a:8a:f7:cf:87:06:8b:60:
77:a4:9a:b8:fb:77:0f:fb:ad:4c:c7:3e:9c:7c:c4:
97:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:A1:07:8E:5F:DA:09:2C:FE:3A:C9:6B:0D:4F:05:D4:AD:04:5C:54
X509v3 Authority Key Identifier:
keyid:D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:23:d4:2f:c5:2b:5d:da:e9:2a:52:0a:a8:1a:e5:17:5a:cf:
3e:e3:0b:09:7c:4d:b9:bb:bc:e3:34:2f:21:27:52:a0:c6:b7:
ca:d0:2a:fc:b9:d8:e1:86:3c:4f:c0:7f:80:c7:0c:11:6e:2f:
57:d1:ec:d6:86:20:47:fc:0f:d6:31:30:c7:33:07:3c:10:b8:
e6:8b:6a:13:77:3f:14:02:8f:5b:67:81:a0:62:bf:90:63:38:
87:cd:4b:a1:cb:7e:88:ce:a0:e9:cb:ec:f8:66:72:b7:17:1f:
db:f4:71:02:39:ae:66:72:1e:79:d5:fa:ec:5f:0a:50:a0:66:
78:0c:c5:06:44:9e:c5:95:d1:4e:61:ea:4f:fc:52:20:10:e3:
66:c0:35:ef:17:ea:01:d8:42:f2:32:54:43:1d:82:f6:db:62:
ff:83:58:a2:c6:03:bf:67:b2:a8:7d:66:83:25:a7:07:58:77:
c9:fb:c2:8f:9b:9a:db:ec:47:89:8c:f3:aa:1b:2a:d4:bd:85:
8f:d0:20:51:a5:24:67:8c:0e:f0:9f:67:20:3a:b3:59:df:66:
a9:42:60:c2:67:f7:06:45:12:22:3a:61:19:54:6e:5d:d1:11:
ef:1f:06:d6:74:48:12:79:bd:c3:41:d4:df:ce:f9:5c:a0:7b:
76:fa:73:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:56:55 2026 by rpki-client