Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
File: DLvQEU2XGWdQ1IxeElbtBVpeniw.mft (raw, json)
Hash identifier: kFneiIvm2ANrEkekiraXDwCmjPAJ3900pDiOqqnDHus=
Subject key identifier: 4D:31:54:BB:FD:AD:8A:C4:70:74:9D:D4:0A:4F:C4:9C:20:C2:2C:1D
Authority key identifier: 0C:BB:D0:11:4D:97:19:67:50:D4:8C:5E:12:56:ED:05:5A:5E:9E:2C
Certificate issuer: /CN=0cbbd0114d97196750d48c5e1256ed055a5e9e2c
Certificate serial: 019E1D9055717577F6C8093C47A833C8C44A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
Manifest number: 0D5E
Signing time: Tue 12 May 2026 19:00:58 +0000
Manifest this update: Tue 12 May 2026 19:00:58 +0000
Manifest next update: Wed 13 May 2026 19:00:58 +0000
Files and hashes: 1: DLvQEU2XGWdQ1IxeElbtBVpeniw.crl (hash: 3aGYHFLSWXOuqKUpzBjbk4DCgt1QboFj5SHGDaUWTg4=)
2: zTRd4Rg7f52eGJE9IBoR1ppNzbw.roa (hash: 1Wo48c+UEPKDWWzPD4uCsXMeUU5ZpLq6o6j7k+pojVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:55:71:75:77:f6:c8:09:3c:47:a8:33:c8:c4:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cbbd0114d97196750d48c5e1256ed055a5e9e2c
Validity
Not Before: May 12 19:00:58 2026 GMT
Not After : May 13 19:00:58 2026 GMT
Subject: CN=4d3154bbfdad8ac470749dd40a4fc49c20c22c1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:be:2e:90:9b:78:6f:ed:06:03:5d:f0:49:3a:
7f:99:9b:5b:b9:b9:b0:dc:99:5b:04:a9:a9:7e:0b:
50:e1:94:44:5a:50:28:dd:f5:1c:63:cf:38:2c:44:
fd:f0:64:b1:de:3a:46:79:9c:95:3d:13:26:f8:52:
cd:d0:a8:34:7b:a1:66:53:2d:d3:04:a3:bf:71:a6:
fc:f2:84:20:1b:8a:19:b8:53:54:23:5a:5b:0a:50:
dd:d3:ae:7a:08:8f:58:d8:ed:41:07:ca:53:37:19:
09:4a:17:f6:3a:51:4b:97:8f:4e:39:71:bd:2c:83:
ab:f8:b5:f7:1c:4a:73:56:07:14:8e:31:3f:d5:69:
7a:09:b6:3b:4f:10:e3:2d:45:d4:21:3c:68:6c:28:
03:6f:71:ac:92:d5:42:a4:ce:3d:37:b6:ae:85:b6:
41:fb:bb:d3:05:f9:35:91:da:15:62:fc:14:07:e0:
cb:c2:69:99:06:06:3a:47:80:c5:f6:7b:b9:4b:fc:
c2:29:5f:7e:11:24:cf:d6:b0:2f:5f:65:76:47:fc:
ef:2a:f7:0b:36:5d:0b:53:3c:07:aa:3a:95:9a:aa:
2e:63:1f:fd:27:4f:3c:58:ff:4e:f8:d4:ec:8e:29:
e1:6a:f7:ea:02:4d:1c:16:69:14:88:14:7f:9f:0f:
3d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:31:54:BB:FD:AD:8A:C4:70:74:9D:D4:0A:4F:C4:9C:20:C2:2C:1D
X509v3 Authority Key Identifier:
keyid:0C:BB:D0:11:4D:97:19:67:50:D4:8C:5E:12:56:ED:05:5A:5E:9E:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:40:68:fc:18:69:f8:c2:0d:99:a7:d8:b2:f0:7c:1c:6c:68:
e1:32:f7:80:3c:36:e0:c3:26:1a:60:0e:0b:d0:b2:04:3e:aa:
0c:93:83:6a:78:ee:7a:0d:f4:bc:79:d6:44:20:2b:59:1c:2a:
a0:4f:bd:4f:33:c1:f7:ea:05:7a:fe:f6:fb:42:78:45:d6:52:
ee:c2:01:85:df:c8:af:f8:39:87:2a:d9:54:8b:ff:4f:7f:84:
5b:29:fa:ee:fd:64:bf:ff:8d:66:3f:e7:52:b3:a4:69:1f:98:
52:b7:68:04:bf:2f:08:66:10:dc:ad:49:51:6f:a1:40:0b:d3:
97:f0:49:87:bf:17:ac:39:9d:1c:52:54:af:61:11:4d:66:c5:
84:ac:2f:49:fa:a3:0b:92:58:c6:20:58:bb:5b:96:d9:53:0d:
fd:15:8e:2e:76:28:f1:ae:15:e3:be:cb:a2:0f:4f:a3:c3:6c:
a5:98:ff:80:1f:42:92:f1:76:65:ac:08:53:72:44:92:63:85:
8c:6d:37:88:d4:a9:2a:cc:d0:05:bf:e3:79:0a:3c:4a:62:57:
94:7d:f6:34:a6:71:42:70:72:25:19:19:58:01:8f:66:a0:cf:
ca:53:a7:f7:88:f1:8d:79:d3:23:10:fd:4a:ef:9a:0a:bb:d0:
3c:69:f4:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:12:32 2026 by rpki-client