Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json)
Hash identifier: 43Yqtg5O9Z0yzdCmMLl9unXOzJvnhMylGTNJRSISMI4=
Subject key identifier: 6D:14:73:90:36:51:E6:4B:A7:FC:84:C5:DB:0D:E9:7D:9A:ED:CF:1D
Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Certificate serial: 019E209113B2429909A2D219E8A264637F20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
Manifest number: 0624
Signing time: Wed 13 May 2026 09:00:39 +0000
Manifest this update: Wed 13 May 2026 09:00:39 +0000
Manifest next update: Thu 14 May 2026 09:00:39 +0000
Files and hashes: 1: 8Qo74UQPSqvugCWFfb9DBf7wKqE.roa (hash: M/pOvg/hdX2EdZ83UmfDv3mPILFnj+u5MLVly1CyGXs=)
2: NZYrDqHNM7w06ZqIbetRmQuvkI8.roa (hash: aqDX81Tnke9g7oa5zcmS5K2aP4v9bwtCbdPJWZIvsEE=)
3: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: M9S2xnxKPQjxBn3xbaHS+Ve79y63CJRt0tbFRGx94dU=)
4: j7E0VOUyJDRGY1mXB_LTgfCHtec.roa (hash: DmIJX6VYUzzGV5IX9wpqM+xTHY2Teuv8gdmzrljcdLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:13:b2:42:99:09:a2:d2:19:e8:a2:64:63:7f:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Validity
Not Before: May 13 09:00:39 2026 GMT
Not After : May 14 09:00:39 2026 GMT
Subject: CN=6d1473903651e64ba7fc84c5db0de97d9aedcf1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:48:7e:e8:03:59:99:9e:86:19:18:1a:fa:cf:
13:97:1e:8c:60:b0:5a:1d:ed:a9:d3:0e:f2:dc:c2:
39:3b:45:e2:76:b4:aa:bf:a9:7b:8d:10:af:84:49:
10:ce:a7:6b:80:51:73:80:88:aa:61:9f:9c:16:e4:
15:bf:b0:30:d9:2a:a7:c6:47:9c:40:3e:b9:15:4b:
e8:bf:5c:a6:ff:8a:26:11:b2:56:6c:b1:6e:ad:7e:
dc:29:5e:ab:f0:4e:74:69:c8:19:c0:b6:83:f7:3c:
44:40:12:a3:c9:54:1a:8b:7f:b0:d9:9d:16:45:c2:
01:3b:7b:12:f5:66:67:55:c0:3f:ec:b7:6e:ac:9d:
e0:12:fc:70:be:26:84:6b:23:32:51:a4:e6:6b:14:
be:ac:a7:25:a4:76:b9:0c:69:a8:3e:6b:f0:b1:48:
f4:b0:b4:41:8c:2e:45:5a:bb:57:69:a2:b9:81:47:
cb:97:88:c4:ae:8d:c1:ea:bf:1a:aa:3d:26:0b:a5:
61:c5:13:ac:ed:8a:97:74:4c:2b:12:18:c4:88:3d:
1a:39:4f:8b:60:dc:ba:7c:01:03:23:78:0d:cb:1d:
1b:ae:7e:42:b1:23:fb:26:90:8b:ee:0b:3b:8f:4a:
92:ff:a9:e8:70:34:d8:58:14:52:de:05:25:c0:71:
7a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:14:73:90:36:51:E6:4B:A7:FC:84:C5:DB:0D:E9:7D:9A:ED:CF:1D
X509v3 Authority Key Identifier:
keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:f0:f3:29:f6:76:7d:9c:34:ff:96:54:5d:cd:9a:bd:49:80:
0b:a7:f3:99:f6:fa:47:bf:88:71:37:83:5b:e6:02:0b:60:6a:
2d:b5:7c:d8:ae:bf:53:93:32:75:33:48:97:67:52:58:9a:a3:
9a:66:55:52:cc:c5:cc:53:f4:3d:14:92:b5:f4:f8:06:49:6c:
f8:3d:9b:62:b7:cd:82:3d:99:97:ad:46:0c:41:21:af:a6:69:
ce:88:02:42:38:07:18:7e:7a:a9:de:43:39:05:d9:33:a1:43:
a8:a1:29:19:65:9a:93:74:28:72:38:14:47:9e:c3:b9:75:e1:
72:d3:d6:52:c4:b3:30:b7:9c:da:7c:f4:04:e0:6d:e9:d8:7a:
6d:7d:9c:6a:ae:56:17:9f:2a:53:56:8f:64:f8:28:dc:a9:62:
fd:3f:7a:bd:36:22:58:b5:ef:09:9e:1c:a6:e5:6d:e7:83:80:
6e:27:f2:26:63:07:e6:7c:11:38:2f:c1:0c:c9:db:1c:07:a2:
ca:28:a8:e5:fb:a7:1a:d8:c1:55:d3:77:3f:29:4e:e1:ab:a2:
73:37:86:df:d0:92:d2:ca:c5:10:37:32:5f:f0:d1:41:fe:5b:
71:86:34:4a:e8:39:69:d4:ef:49:d1:68:56:ea:f6:72:da:0b:
fb:d9:13:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:10:48 2026 by rpki-client