Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
File: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft (raw, json)
Hash identifier: zv79dnhZPaPIBFIfAv9TELKO//zhbbzGJXRP4ZgLULs=
Subject key identifier: 68:B5:80:1E:94:8B:97:48:C9:43:AB:32:0E:89:1C:6A:54:2D:F0:22
Authority key identifier: 0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
Certificate issuer: /CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Certificate serial: 019E1C7DF2C10051A877259867D187E7E1AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
Manifest number: 1069
Signing time: Tue 12 May 2026 14:01:16 +0000
Manifest this update: Tue 12 May 2026 14:01:16 +0000
Manifest next update: Wed 13 May 2026 14:01:16 +0000
Files and hashes: 1: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl (hash: mGBzXynMoLBb77jWepILiiMVqIR/RvSyBD9u2LclXBA=)
2: x5ebKc9_3qA7pEOC0_BnOS1B8oI.roa (hash: AqP1AEgenjD2KrPY+QLH5krFzTJA90JozOTpwzG6a5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:7d:f2:c1:00:51:a8:77:25:98:67:d1:87:e7:e1:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Validity
Not Before: May 12 14:01:16 2026 GMT
Not After : May 13 14:01:16 2026 GMT
Subject: CN=68b5801e948b9748c943ab320e891c6a542df022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:9d:9f:af:38:5e:a0:a5:8a:bc:90:de:53:86:
d9:58:ac:a6:52:f2:be:f5:30:3d:55:61:eb:12:ea:
f6:b0:a5:ad:dc:e4:17:b7:06:fe:56:37:4f:7b:f0:
25:39:82:cb:df:f2:b9:42:9d:ac:b1:c4:4a:e2:f4:
0c:95:22:f9:87:be:3b:9b:6e:97:98:e3:8b:72:2e:
d9:7a:39:5f:9b:6b:26:61:e8:aa:aa:2e:b2:50:e8:
83:1d:99:94:38:99:2a:e2:8b:39:0f:20:c2:e9:ef:
03:b7:e4:d1:de:9e:9a:94:a8:a3:dc:c1:3c:9f:07:
1f:e4:f1:b4:e4:bd:7f:8c:75:d1:c1:56:6b:69:a1:
59:cc:cb:aa:34:dd:87:8f:48:53:71:87:a3:3c:32:
37:33:d1:5c:10:96:29:7e:65:9e:07:d7:79:79:e9:
58:a5:2d:78:38:4d:50:d7:58:6a:8e:ee:5f:e9:4b:
a3:fa:20:70:92:87:9f:ae:fd:57:64:fa:55:3a:bb:
5e:b1:12:08:36:28:b2:be:8d:26:a3:ec:c0:be:a7:
46:1a:09:53:45:66:4b:67:f6:57:9d:32:c9:ca:a5:
ed:28:15:68:bc:c3:9b:42:c1:1f:8e:5a:82:c6:5d:
3e:5a:7b:c6:38:0d:3e:ff:8e:5b:be:fd:16:c6:d8:
fa:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B5:80:1E:94:8B:97:48:C9:43:AB:32:0E:89:1C:6A:54:2D:F0:22
X509v3 Authority Key Identifier:
keyid:0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:56:f0:4c:bf:55:8f:73:bc:52:ef:b6:33:05:8e:ef:3b:1d:
25:25:5c:d7:41:6a:11:6f:d1:ba:bb:67:29:e6:d7:bb:fb:75:
08:34:0f:ef:a6:d3:97:a8:1d:42:0e:d5:7e:e4:cb:98:0a:fe:
eb:1c:36:72:6f:45:e0:c1:71:d8:3b:9d:df:c3:18:93:59:82:
ff:ba:23:3b:f1:dd:9b:40:a3:a5:ec:04:bc:3e:fa:2a:89:f7:
0d:5b:cf:f1:4f:57:cf:4e:c5:df:c7:4b:d3:38:7d:da:e1:6d:
4a:61:38:2f:99:4f:28:24:f2:c3:e2:ff:14:43:6b:7d:02:10:
8d:16:b4:0b:15:f8:ef:69:8f:21:87:34:8d:32:d7:a8:2e:b1:
6a:52:25:b0:de:7d:b0:3e:c1:a7:0c:e3:7d:f1:aa:a8:a2:49:
6d:29:23:32:bc:a4:b3:32:36:43:1f:05:62:b6:c8:06:fd:63:
56:e9:57:da:05:a1:80:35:76:28:ef:fc:9c:e2:a7:0b:0d:ec:
10:6c:47:9d:b7:6a:1d:00:3b:96:3e:91:a0:17:40:3b:92:3f:
cb:00:2b:b8:de:77:9b:5c:30:2f:36:a6:b8:40:69:8d:05:c2:
39:d2:d6:e9:e7:e7:b5:f6:aa:26:b7:e5:63:42:3f:34:1b:b9:
9b:40:97:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:37:59 2026 by rpki-client