Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft
File: DbPDFk09jCZEzymzI2dhpXHuWLo.mft (raw, json)
Hash identifier: V70lEzv9YSFdJ5RDH7KHTpd3x5YxQIoW3UvwjJYaIxI=
Subject key identifier: 8D:73:94:BF:50:6A:75:8B:40:89:4F:D0:5A:83:2D:96:58:F8:2D:FE
Authority key identifier: 0D:B3:C3:16:4D:3D:8C:26:44:CF:29:B3:23:67:61:A5:71:EE:58:BA
Certificate issuer: /CN=0db3c3164d3d8c2644cf29b3236761a571ee58ba
Certificate serial: 019E1D90867FAF5B5B4C4FA0DC96485B91F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft
Manifest number: 0F0D
Signing time: Tue 12 May 2026 19:01:11 +0000
Manifest this update: Tue 12 May 2026 19:01:11 +0000
Manifest next update: Wed 13 May 2026 19:01:11 +0000
Files and hashes: 1: AV8o_HRJCYQ0OsTpD-wRX5B7CZE.roa (hash: IbeU1AeOys6rseJf5ugRnLAWWP/7mZIxuUtqX7netkk=)
2: DbPDFk09jCZEzymzI2dhpXHuWLo.crl (hash: WOvyWDEThgbixqiWkghB36ibvL9pzeBOIvMsgDGkYO0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft
rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:86:7f:af:5b:5b:4c:4f:a0:dc:96:48:5b:91:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db3c3164d3d8c2644cf29b3236761a571ee58ba
Validity
Not Before: May 12 19:01:11 2026 GMT
Not After : May 13 19:01:11 2026 GMT
Subject: CN=8d7394bf506a758b40894fd05a832d9658f82dfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:91:47:54:f9:b9:a6:56:83:74:a0:c5:d9:b7:
ad:4b:8f:e7:64:a5:b0:34:36:72:c4:04:df:b7:e9:
e7:57:59:6d:62:a4:e8:ae:30:d8:8e:81:32:a6:c6:
a4:11:4c:c3:6f:0c:8e:bf:2a:57:87:9a:be:24:c9:
f5:51:cc:53:24:f7:66:ff:8f:f8:07:48:53:48:57:
a5:69:e8:f3:a4:19:cc:9e:db:fe:d6:98:65:d9:a4:
ba:b1:30:29:07:e4:30:48:43:bf:75:e6:90:58:ed:
29:93:9e:29:b9:ce:d6:5e:42:06:00:05:e0:11:55:
12:e7:06:c0:e9:15:9c:34:63:bc:de:1d:fc:c6:64:
09:a5:6d:ef:ba:fa:a6:c9:11:35:6e:03:f8:c7:9f:
4b:1a:2c:50:de:bd:6f:43:ef:23:69:2d:9d:1f:c8:
45:c1:e1:6a:ad:63:11:77:8d:60:72:da:c8:1b:eb:
36:02:86:86:7b:85:03:ec:cc:f2:c8:c1:20:01:03:
10:35:8d:83:90:09:63:03:06:bc:e9:75:82:0b:63:
bf:24:30:f5:cf:d1:fa:d6:31:ae:59:ba:d9:30:e8:
8d:22:c7:db:6d:1d:fa:db:c6:40:b2:8e:c3:0b:de:
03:37:21:a0:7f:03:d2:2a:68:bc:59:d6:b5:d6:52:
4e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:73:94:BF:50:6A:75:8B:40:89:4F:D0:5A:83:2D:96:58:F8:2D:FE
X509v3 Authority Key Identifier:
keyid:0D:B3:C3:16:4D:3D:8C:26:44:CF:29:B3:23:67:61:A5:71:EE:58:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:f8:f7:68:fc:c9:67:24:54:ca:4c:bd:aa:a0:51:ec:7e:de:
57:f4:c2:5b:1b:7a:88:15:c5:7e:9e:ae:68:13:48:4e:97:b5:
68:bf:9a:e1:77:65:e5:e8:91:46:9e:e3:ee:42:72:8e:99:68:
0d:16:c0:11:d9:ff:43:6e:b7:98:96:9a:d4:a8:8e:b1:2c:b9:
38:63:be:30:3c:94:ab:51:9a:63:67:b1:6f:ed:dc:73:6b:14:
2e:ce:96:f9:5d:e2:67:d3:38:42:cb:5c:cd:f3:8c:96:1b:e4:
86:87:6f:84:2f:a5:c4:e8:1c:0f:be:12:ed:be:dd:6c:8f:af:
8e:9f:8a:83:d4:eb:0c:ee:d7:3b:fe:54:0a:64:18:af:07:6b:
e0:ac:84:a8:9d:35:2e:93:2e:09:7d:aa:a0:53:15:76:62:a7:
0d:8e:93:e9:d9:11:32:da:95:5f:67:4a:06:5d:4c:63:5a:fb:
c1:06:16:4e:b7:9a:2a:c5:ef:9d:c3:01:f4:93:77:49:2f:c3:
a9:47:98:06:3d:6b:9a:d5:15:76:93:90:8b:6b:67:c3:df:ba:
6e:14:28:40:15:fe:0b:24:5f:87:99:dd:3c:e0:97:26:11:ff:
f1:4a:dd:79:0c:a9:91:f4:cd:4b:1a:76:a4:ef:2b:01:df:ef:
f3:3e:3c:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:45:54 2026 by rpki-client