Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.mft
File: D0OG59TvxHLBH-nP7z0zCXSzP2E.mft (raw, json)
Hash identifier: pMsuMpUXtnsbu329yktbgPV75FwG5rC5RrVYwU/IkpY=
Subject key identifier: 99:AC:DC:23:1E:6E:D6:13:A6:49:65:50:BB:CA:04:E4:92:45:CB:F9
Authority key identifier: 0F:43:86:E7:D4:EF:C4:72:C1:1F:E9:CF:EF:3D:33:09:74:B3:3F:61
Certificate issuer: /CN=0f4386e7d4efc472c11fe9cfef3d330974b33f61
Certificate serial: 019E1E3574A62C3A2ACD16E6A1B3F3077298
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D0OG59TvxHLBH-nP7z0zCXSzP2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.mft
Manifest number: 0BA7
Signing time: Tue 12 May 2026 22:01:20 +0000
Manifest this update: Tue 12 May 2026 22:01:20 +0000
Manifest next update: Wed 13 May 2026 22:01:20 +0000
Files and hashes: 1: D0OG59TvxHLBH-nP7z0zCXSzP2E.crl (hash: WOsB1Us86F2EoQhjMRS9lF7aIkt8r9s7AJMUNvut/YA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.mft
rsync://rpki.ripe.net/repository/DEFAULT/D0OG59TvxHLBH-nP7z0zCXSzP2E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:74:a6:2c:3a:2a:cd:16:e6:a1:b3:f3:07:72:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f4386e7d4efc472c11fe9cfef3d330974b33f61
Validity
Not Before: May 12 22:01:20 2026 GMT
Not After : May 13 22:01:20 2026 GMT
Subject: CN=99acdc231e6ed613a6496550bbca04e49245cbf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:86:fa:0b:1a:2c:29:3b:ad:ee:14:c6:5b:47:
29:13:50:f1:ea:4e:10:69:29:07:6d:4f:45:30:09:
b0:52:77:56:dd:ac:52:bf:b3:77:b0:37:15:e0:37:
29:e4:56:17:f6:6f:89:54:87:9e:a9:fe:b0:e0:bc:
68:c2:27:95:06:9b:0e:58:ff:60:ad:83:8b:9c:be:
7a:04:89:b8:a3:e3:b6:f3:23:4f:b2:95:11:c1:80:
10:99:3c:4c:90:34:ec:2a:23:d5:7f:66:c5:3a:f6:
ba:37:64:7f:ed:6c:71:9c:fe:34:7d:1e:1f:a5:bc:
f2:a5:f2:d5:c0:f6:7b:6c:b2:55:60:17:58:40:45:
66:89:7a:d9:41:9f:bd:90:0e:d9:90:62:ac:6a:04:
c8:a7:80:65:67:6a:8f:7c:b6:22:3b:e6:17:52:9c:
8c:54:e7:83:6d:ef:c7:9d:6a:01:d8:52:56:42:cc:
b3:37:51:40:2f:e4:be:66:6c:37:43:cd:fe:37:ac:
e3:6f:30:40:9f:0b:b1:db:f5:7d:44:df:54:af:8d:
9a:aa:55:9b:a6:43:62:d9:25:78:4a:9c:2b:9c:78:
d9:93:9d:87:03:24:c6:a6:12:72:c3:d2:b7:e2:16:
06:7c:ad:06:48:70:67:83:c1:3f:09:c5:94:16:2e:
ac:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:AC:DC:23:1E:6E:D6:13:A6:49:65:50:BB:CA:04:E4:92:45:CB:F9
X509v3 Authority Key Identifier:
keyid:0F:43:86:E7:D4:EF:C4:72:C1:1F:E9:CF:EF:3D:33:09:74:B3:3F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D0OG59TvxHLBH-nP7z0zCXSzP2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:21:30:1a:58:50:5a:de:e2:cd:3f:fa:21:20:2f:d9:4d:e9:
b8:43:75:30:50:28:a4:00:07:09:cd:af:78:9d:4f:74:db:c2:
e8:e8:d7:1f:38:e5:45:48:d0:0f:f0:ce:3f:7b:3a:50:11:11:
13:6b:a6:5e:e5:dc:ab:de:57:f3:62:32:a2:5f:76:9c:32:32:
72:a8:e6:67:08:c0:df:cf:cc:d4:8b:c9:88:1f:e4:5b:d1:3f:
f0:50:32:76:3b:fc:f8:12:27:11:c1:15:ac:15:cb:5c:4c:0a:
a3:2b:53:a7:fe:64:f2:fa:07:e7:f9:e3:0f:10:c2:db:ee:81:
99:0b:90:c5:bb:98:85:14:58:24:61:35:f2:b4:51:fe:2e:33:
8a:41:d0:dd:04:49:f0:9d:6e:10:a0:66:a6:10:29:b0:08:54:
a8:7c:23:67:ec:fe:f3:fd:4d:3f:ca:59:80:f9:28:05:51:e3:
d2:80:9e:35:0d:f4:70:05:e1:2b:29:e0:be:3b:18:4b:48:76:
61:89:91:c3:4a:8f:ff:c6:29:cc:ba:73:61:42:e2:ef:43:18:
db:7d:59:bb:58:03:40:02:28:76:fd:76:19:dc:8a:6d:11:cb:
d2:7d:26:4a:3a:09:3b:aa:f8:74:02:df:66:9b:b4:94:2f:a7:
02:d7:2b:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:56:43 2026 by rpki-client