Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
File: tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft (raw, json)
Hash identifier: unl6GFR13du6muq8ZffXafVK7a1jeaHNVDrVgE748dk=
Subject key identifier: 9D:CE:89:F7:50:38:9D:33:75:5E:DE:F1:10:3B:42:8D:A7:8B:F6:E4
Authority key identifier: B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
Certificate issuer: /CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Certificate serial: 019E209129182DAC580A770D2F214BAEAD97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
Manifest number: 0638
Signing time: Wed 13 May 2026 09:00:44 +0000
Manifest this update: Wed 13 May 2026 09:00:44 +0000
Manifest next update: Thu 14 May 2026 09:00:44 +0000
Files and hashes: 1: 0lwIzPsGn14owxvXy7_61u8zBPk.roa (hash: RHYNuusrfwoS7Vg7kp1EMywIH/hGj3OELuZX6uFgB7Q=)
2: tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl (hash: T26YKvErmAn/NnQq2qGI71nqqGSWGs51CtvVdBVoj8Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:29:18:2d:ac:58:0a:77:0d:2f:21:4b:ae:ad:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Validity
Not Before: May 13 09:00:44 2026 GMT
Not After : May 14 09:00:44 2026 GMT
Subject: CN=9dce89f750389d33755edef1103b428da78bf6e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:59:47:36:68:21:1f:d9:fe:b8:e9:29:7d:27:
67:84:a8:a1:87:8b:91:8b:1d:30:64:df:a3:bc:18:
40:1f:2a:82:56:61:8c:2e:1e:23:e8:7e:0f:14:3a:
9f:72:4a:ae:d2:58:87:0b:39:3c:f9:3a:21:92:be:
1f:61:74:99:e3:fd:b9:b9:23:dc:45:16:02:c9:5e:
e4:e6:7a:74:5e:4d:b4:50:fe:35:06:bd:cc:f3:69:
a1:8a:d3:c1:bb:7d:b4:8e:5a:74:d2:6b:6f:f1:e4:
28:26:4d:94:74:c0:23:d3:c5:6f:79:0f:6c:a3:32:
00:36:ae:16:97:5d:23:52:28:3e:c0:91:1a:d8:64:
fa:5e:56:d3:29:79:7a:cd:3c:87:73:ff:55:6d:dd:
50:d4:f2:d3:d4:48:ae:ff:99:32:1d:00:69:ab:0a:
80:69:cd:8d:98:b2:8d:9b:e3:ac:85:6b:e0:17:32:
94:dd:1c:26:00:4b:06:70:f4:49:1c:2e:61:9e:e3:
16:08:ac:95:45:1f:2e:e4:ee:81:49:c5:38:ec:f0:
22:48:3a:00:7b:30:5e:03:a9:1a:f5:f9:17:a8:77:
b4:8e:61:7e:52:ba:7c:38:f1:fd:81:60:b1:e5:eb:
20:20:94:04:b5:57:a3:75:95:54:9e:3b:b9:7e:f4:
b7:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:CE:89:F7:50:38:9D:33:75:5E:DE:F1:10:3B:42:8D:A7:8B:F6:E4
X509v3 Authority Key Identifier:
keyid:B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:ef:87:df:f5:8f:91:af:ce:98:95:2a:06:cb:20:d4:5a:61:
78:17:59:cb:7b:bd:bd:db:31:f0:07:86:4b:82:23:fb:dd:62:
92:91:78:e7:da:49:e0:e2:10:b7:a6:d6:63:0e:3f:00:b3:2b:
2f:f8:b0:98:13:e6:59:98:68:a1:2d:85:f8:0d:b7:75:2b:db:
52:14:36:90:7d:86:8c:d1:5a:f3:75:83:d3:7f:6f:ee:c6:0b:
bc:26:13:87:0c:c7:6c:f9:dd:0c:2b:29:eb:6d:5e:3e:69:f8:
f4:2d:e9:60:5f:01:5a:2a:ef:2a:37:91:c2:a1:7f:25:d4:d0:
6f:26:3d:55:fb:5b:98:43:cf:15:c9:28:3b:23:1c:70:6d:64:
80:52:b1:11:3b:c4:42:bd:65:92:73:f2:2a:fa:02:cf:79:1d:
1d:f3:56:52:70:61:e2:59:da:6f:a4:d5:4e:79:5f:5d:71:44:
1c:f3:e6:d0:d5:24:91:92:30:66:39:b1:6d:1a:49:59:79:6e:
b1:5a:5f:1d:85:52:6c:74:de:71:2d:93:29:7d:f8:d3:a2:5c:
1e:6b:7b:f6:de:b5:10:cc:26:1a:0d:d0:02:67:b5:1f:e0:1b:
64:6e:43:f2:91:e0:a2:04:1b:33:6c:be:90:26:7d:33:fd:9d:
92:a8:62:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:39:18 2026 by rpki-client