Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
File: 0c0c1HQkGQk2se35qYScPjBYfzo.mft (raw, json)
Hash identifier: LwTakvsffgyj5+Jp6O4QO7wsUzgdYXFQBVYAWnt5IiM=
Subject key identifier: D0:8E:45:E8:2D:8B:25:0A:25:48:08:91:1F:00:AC:25:99:6A:8E:EE
Authority key identifier: D1:CD:1C:D4:74:24:19:09:36:B1:ED:F9:A9:84:9C:3E:30:58:7F:3A
Certificate issuer: /CN=d1cd1cd47424190936b1edf9a9849c3e30587f3a
Certificate serial: 019E1E3523652E882BC6277119769D39D0C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0c0c1HQkGQk2se35qYScPjBYfzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
Manifest number: 1066
Signing time: Tue 12 May 2026 22:00:59 +0000
Manifest this update: Tue 12 May 2026 22:00:59 +0000
Manifest next update: Wed 13 May 2026 22:00:59 +0000
Files and hashes: 1: 0c0c1HQkGQk2se35qYScPjBYfzo.crl (hash: Caev8fdDgQZeON+tzeHUJM1in7FjUP9Wq5DSfhLbQc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/0c0c1HQkGQk2se35qYScPjBYfzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:23:65:2e:88:2b:c6:27:71:19:76:9d:39:d0:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1cd1cd47424190936b1edf9a9849c3e30587f3a
Validity
Not Before: May 12 22:00:59 2026 GMT
Not After : May 13 22:00:59 2026 GMT
Subject: CN=d08e45e82d8b250a254808911f00ac25996a8eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:cc:65:cb:9f:42:b9:e3:b6:d2:52:a2:bc:c7:
a8:d6:df:0c:05:8d:8c:5a:6b:d5:33:63:5b:9e:7c:
e9:04:70:27:f0:aa:3b:ff:85:59:c2:a5:04:2c:1f:
08:ec:f8:56:29:39:8c:5b:c9:93:ab:58:57:a4:fc:
94:29:53:f2:af:0b:57:af:80:26:2a:29:ee:22:30:
23:35:d4:a6:be:34:77:7f:4d:15:18:5e:4a:8c:e7:
15:9e:92:40:34:f3:8f:1b:68:c8:34:ca:1f:a1:01:
5f:88:6b:fd:04:4f:d2:5a:48:6a:52:28:af:10:a3:
ce:63:f7:df:e6:b1:fe:29:48:37:ac:a9:a7:ea:35:
2b:83:86:bd:9e:d5:2f:1a:24:3e:34:0f:8c:a9:68:
6f:30:51:9d:29:fc:e7:48:80:5f:6e:ff:fe:15:e9:
d4:6d:cd:3b:04:f6:64:7d:54:fd:20:95:bb:6a:b0:
1e:7e:12:6f:a1:e6:47:bf:d1:f2:eb:02:79:19:9d:
64:4d:07:8d:26:77:af:c5:17:36:d4:76:12:96:57:
17:f8:15:33:50:4e:e0:fc:38:cb:3f:44:c0:cc:bf:
67:8e:5b:5c:b8:41:85:f0:26:c6:ad:ef:21:ea:06:
5f:28:5e:31:30:36:a8:c0:e4:db:10:b2:73:f6:aa:
04:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:8E:45:E8:2D:8B:25:0A:25:48:08:91:1F:00:AC:25:99:6A:8E:EE
X509v3 Authority Key Identifier:
keyid:D1:CD:1C:D4:74:24:19:09:36:B1:ED:F9:A9:84:9C:3E:30:58:7F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c0c1HQkGQk2se35qYScPjBYfzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:46:fa:f9:7c:d3:07:76:e5:b7:9b:fb:22:0e:b0:9c:d4:6d:
15:d5:1a:98:96:89:a1:ca:94:fb:32:fe:c1:1b:09:bf:df:19:
e7:99:e5:85:3f:ec:89:33:0b:39:d2:52:56:83:dd:88:b4:08:
0e:6f:f8:1f:0e:c1:98:b9:78:ce:16:2b:ca:4b:d0:fc:81:1c:
06:98:3d:f0:f8:a0:d0:47:91:ef:10:05:4a:8e:7e:2c:7c:92:
a3:02:db:62:43:89:3f:ea:0d:5b:64:04:aa:fc:b2:bd:5b:d2:
f2:8f:f7:48:e6:20:a7:8d:2a:7b:ba:46:45:f0:aa:cf:3d:13:
53:fc:9a:32:ba:b3:7b:9c:47:1a:0a:8e:fb:76:de:a9:54:13:
0b:4f:6c:45:01:24:9d:57:46:49:be:ef:45:0e:81:9d:63:a7:
51:d6:84:11:3c:a7:be:e0:6d:75:3b:ae:00:fe:cc:36:4a:6a:
83:7a:56:fe:10:5b:eb:d2:60:5a:3b:d9:c2:75:20:52:62:71:
bc:ec:13:52:34:56:3f:2f:58:37:f9:91:fc:a8:9d:df:d6:07:
cc:91:9d:fc:92:8c:92:2c:f3:e7:46:6b:b4:4f:92:84:9e:59:
14:f7:57:8a:67:9a:5b:d0:9e:e7:48:cc:c5:0f:cc:46:cd:c6:
2c:0d:41:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:01:49 2026 by rpki-client