Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
File: DZ40sUlHfVXvC1lipeXgDN-1hIk.mft (raw, json)
Hash identifier: o1GgPdyWxs/+U2Xl/H9LRHgTcXHcMFVvyGI8MY4zso8=
Subject key identifier: 97:9E:F5:1A:A4:0D:57:3F:69:E3:4C:7F:74:23:3B:75:77:2D:09:F5
Authority key identifier: 0D:9E:34:B1:49:47:7D:55:EF:0B:59:62:A5:E5:E0:0C:DF:B5:84:89
Certificate issuer: /CN=0d9e34b149477d55ef0b5962a5e5e00cdfb58489
Certificate serial: 019E1E3524F08A46958206C2B6799173C764
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
Manifest number: 1643
Signing time: Tue 12 May 2026 22:00:59 +0000
Manifest this update: Tue 12 May 2026 22:00:59 +0000
Manifest next update: Wed 13 May 2026 22:00:59 +0000
Files and hashes: 1: DZ40sUlHfVXvC1lipeXgDN-1hIk.crl (hash: tHbGxT2Ejh9k/AkEZ9ZaHGenLFMY2dtmyFzDqW7hviU=)
2: jiPOjIl6nBCVWenOtGifVVlibug.roa (hash: XoY5kXa67LdZT4EHsb4gzDlj3ILFLqUeSW5H/QfO6kE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:24:f0:8a:46:95:82:06:c2:b6:79:91:73:c7:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d9e34b149477d55ef0b5962a5e5e00cdfb58489
Validity
Not Before: May 12 22:00:59 2026 GMT
Not After : May 13 22:00:59 2026 GMT
Subject: CN=979ef51aa40d573f69e34c7f74233b75772d09f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3e:5e:ff:12:fb:03:cd:7b:3b:1a:2c:f4:9e:
50:e6:c3:6e:6a:ac:68:8b:ea:32:e3:68:c3:36:81:
40:38:eb:22:c0:ac:bc:77:d1:16:20:e9:de:00:65:
15:ab:2a:7b:24:2e:a1:22:83:2d:ea:a2:d3:c9:40:
0f:fd:66:f0:ca:c0:11:cf:e1:d9:17:b6:f2:9a:b2:
5f:47:d1:fe:f4:fb:fc:b3:89:39:55:94:15:58:3f:
0f:34:f8:3b:60:63:30:11:b4:3e:3a:e2:26:9b:ee:
95:43:54:d7:9e:ec:74:25:43:15:2f:68:e6:e0:97:
76:db:2f:6c:03:eb:39:ab:11:e5:63:ab:b2:52:7b:
29:64:f8:3e:02:9b:32:b6:f3:94:0c:4c:a0:4b:34:
e9:e3:1a:24:b7:93:2c:ea:2d:2c:bd:4c:04:15:2c:
b0:e5:57:c2:a3:d4:31:4e:55:5b:5e:da:61:a2:07:
3e:ac:e6:43:c3:2a:32:6b:ec:f9:23:27:25:f8:77:
1e:3a:70:af:3d:95:1b:14:ed:20:6a:25:d6:22:e3:
74:2c:a8:81:12:56:a8:e7:03:f7:f6:e5:91:48:f3:
40:6e:57:a3:d5:23:d6:8b:83:59:66:e5:4a:ae:5b:
da:56:9d:f5:1d:d2:c6:c4:b6:37:cd:4e:50:f2:c8:
a5:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:9E:F5:1A:A4:0D:57:3F:69:E3:4C:7F:74:23:3B:75:77:2D:09:F5
X509v3 Authority Key Identifier:
keyid:0D:9E:34:B1:49:47:7D:55:EF:0B:59:62:A5:E5:E0:0C:DF:B5:84:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:95:2c:b0:a3:06:62:88:4c:0d:d4:fc:48:39:84:53:0d:73:
fd:27:37:b3:3b:70:9c:79:69:b7:1b:31:cd:4a:37:ca:9a:5a:
c5:54:54:79:0c:2a:6c:75:21:db:53:68:c8:ed:a4:08:47:90:
fc:1b:e6:d1:3b:b1:60:dd:1f:7d:ed:8e:23:ab:6a:0c:04:96:
f1:8c:17:c5:d2:5f:23:1f:92:1a:af:2f:36:8e:7d:e1:08:be:
4e:fb:8a:85:3b:00:9e:38:7a:aa:b7:82:9c:0e:a1:74:8f:c1:
3a:7f:75:09:8d:6f:6f:a2:4a:2c:ce:68:fa:29:e9:f8:87:a7:
52:38:26:7a:fd:72:cd:e9:87:37:8b:0f:d1:50:80:35:6e:b5:
d1:ce:52:2f:c4:47:12:f6:a4:88:eb:fb:3e:b3:49:ad:21:57:
b0:57:dd:10:fe:7c:0f:06:1f:57:8c:00:5d:62:ec:7f:5b:8a:
65:38:5a:a8:0c:31:98:56:d4:3c:da:f0:49:27:81:bb:a2:7a:
8b:60:9a:27:63:27:27:eb:82:6c:1c:85:93:f5:bf:2e:d3:d7:
a0:f2:80:fe:4c:5f:7f:dd:c1:50:c9:cb:b5:52:59:bb:57:b4:
e8:39:f0:09:e0:6d:bc:3e:97:8a:6d:cb:cf:a3:a2:15:ce:2f:
8e:43:90:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:52:47 2026 by rpki-client