Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
File: D5otI3SqascUtfim7duA3GlnnMY.mft (raw, json)
Hash identifier: 3EZcCFikMiC/K1orl+PCnsNV37q1Hgfze0J/a5mswvU=
Subject key identifier: 72:52:9A:5A:3D:71:3E:22:B1:B8:9A:CC:62:7E:7B:1F:ED:51:5D:F7
Authority key identifier: 0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
Certificate issuer: /CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Certificate serial: 019E1E355C14E17B80487167CF79DC187A5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
Manifest number: 0F6B
Signing time: Tue 12 May 2026 22:01:13 +0000
Manifest this update: Tue 12 May 2026 22:01:13 +0000
Manifest next update: Wed 13 May 2026 22:01:13 +0000
Files and hashes: 1: 8SEsdKMq767CnaRYG-1hJ5v6Hic.roa (hash: h/RdezdmLSdHmsoFs8q7JJ7Hnulds2LoEiNuAXGhUZg=)
2: D5otI3SqascUtfim7duA3GlnnMY.crl (hash: xhErsifJa5f5Nvogl+N98cnOHiIkjeFtXLA586P0RnY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:5c:14:e1:7b:80:48:71:67:cf:79:dc:18:7a:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Validity
Not Before: May 12 22:01:13 2026 GMT
Not After : May 13 22:01:13 2026 GMT
Subject: CN=72529a5a3d713e22b1b89acc627e7b1fed515df7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e5:77:30:68:1e:f2:65:44:dc:fb:12:6c:54:
e5:32:cd:84:f3:91:6d:6f:d9:f4:cc:8c:9d:e9:a7:
1b:e1:4b:02:ae:fb:24:d6:44:68:c3:ca:30:45:6b:
f4:12:eb:7d:4a:e0:2c:b7:9a:f8:cb:6d:2e:f7:89:
da:22:a1:67:cb:a0:61:92:95:62:f2:b9:62:78:fa:
e7:f7:f5:5a:15:d7:07:46:3d:3a:06:16:5b:7d:fe:
74:e8:d7:ed:c7:9b:7d:38:0a:51:f8:cb:e1:37:0d:
12:0d:f7:9c:e0:00:02:0e:19:7b:d8:15:c0:cd:4c:
87:3f:de:ab:04:ea:8c:72:7f:a5:af:45:62:16:36:
27:21:63:22:ff:45:b2:7c:ed:b3:af:65:78:fe:4c:
da:fc:67:32:08:0a:f4:2d:50:f6:2f:5a:d6:ca:02:
fb:fd:4d:04:60:ed:e0:7b:01:c8:f9:24:1b:7f:85:
dc:d0:3f:2e:d6:4e:26:e0:f9:69:78:c1:5b:aa:af:
fe:93:fc:d5:e1:9d:ae:b1:d7:bd:2c:a1:ef:aa:3f:
49:d4:3f:4c:34:c9:80:26:0c:4d:12:22:67:f4:57:
e9:66:c6:e6:b2:af:c4:a1:37:25:c3:14:2e:04:a7:
64:80:6c:58:e4:91:39:16:b1:cd:ca:4f:06:d4:6c:
a8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:52:9A:5A:3D:71:3E:22:B1:B8:9A:CC:62:7E:7B:1F:ED:51:5D:F7
X509v3 Authority Key Identifier:
keyid:0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:ee:e7:3c:32:28:a0:a9:49:43:11:b3:b1:a8:8b:38:7a:6e:
f0:43:98:ad:ac:b4:eb:2a:00:e3:be:24:3b:45:51:c1:72:fb:
2b:ee:f2:25:7b:88:5f:c1:88:0e:47:1a:b4:4c:4f:90:c4:60:
5f:7e:55:4c:d6:66:4f:e2:1c:45:18:9a:fd:c7:c2:0b:16:78:
14:3a:c3:fc:02:9e:c0:b6:c4:a1:15:f6:e7:34:a0:d7:5d:fb:
b3:b7:2e:10:38:6d:c6:ae:4b:b4:9a:95:be:65:ea:64:d8:c1:
f5:78:02:19:a4:56:b0:35:eb:19:7f:5a:c8:a5:b5:95:a0:14:
1a:8f:14:d9:f2:f7:c8:7e:99:48:23:ba:f9:28:cd:46:f0:ce:
ef:c4:75:f3:33:2d:7e:84:6d:39:a9:8d:77:6f:9e:09:8c:c1:
b7:40:d0:5e:96:2d:9c:8c:0b:59:8b:13:25:b0:25:8a:ae:18:
93:0a:c0:e8:ff:22:e5:cc:bf:46:59:bb:66:87:7a:59:b5:a4:
b6:e2:71:c3:e4:43:4c:65:3c:c4:86:46:c8:e2:cb:7a:1b:d3:
bf:60:ad:be:1c:58:1f:89:03:8e:61:7e:34:fd:5a:2b:d7:e5:
01:1b:6a:3d:1f:7c:1a:4c:5e:58:31:2c:72:0c:60:65:9e:55:
0d:f5:ac:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:59:25 2026 by rpki-client