Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
File: D3jqRswh1F7WEmjUqfVnMsheIVA.mft (raw, json)
Hash identifier: jUF7sAFcSjgjjKM+SwNn1L2u9vYEAN4KpSKLoXtC+gM=
Subject key identifier: A4:3A:DC:A3:E6:99:F3:F3:A5:75:DF:41:10:10:4C:ED:CE:61:B2:26
Authority key identifier: 0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
Certificate issuer: /CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Certificate serial: 019E1D90465C575719D726EDAA9E36D8EAC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
Manifest number: 1905
Signing time: Tue 12 May 2026 19:00:54 +0000
Manifest this update: Tue 12 May 2026 19:00:54 +0000
Manifest next update: Wed 13 May 2026 19:00:54 +0000
Files and hashes: 1: D3jqRswh1F7WEmjUqfVnMsheIVA.crl (hash: NQLMCPkixC9a6+fTkHtDzxCropF77zhvYhr+tPzLcFc=)
2: hFTnWGImSrItjvTZMgv5Y6qcHWI.roa (hash: pZbkXKYC4cfW4J3LrFAYotHKXZiiOIa/hV0bOys/6DA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:46:5c:57:57:19:d7:26:ed:aa:9e:36:d8:ea:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Validity
Not Before: May 12 19:00:54 2026 GMT
Not After : May 13 19:00:54 2026 GMT
Subject: CN=a43adca3e699f3f3a575df4110104cedce61b226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e8:68:e8:3c:31:6c:a1:f4:c7:ea:8c:2d:9d:
31:ab:09:19:21:8b:20:f2:bf:fa:37:39:60:4c:5d:
a4:15:a1:16:f2:85:22:ac:f1:70:f0:1c:8e:0e:7b:
7c:a3:80:6c:d2:bd:67:61:08:ba:87:88:ed:77:8f:
cd:46:c5:4f:0f:52:60:7b:82:74:2a:6b:85:60:99:
48:8d:53:ad:72:b9:50:8b:f4:b6:32:fb:de:93:fb:
c0:e4:5d:79:fc:51:b1:92:61:ef:23:0a:84:23:a5:
fb:81:a0:7d:3e:53:42:e7:47:e3:4b:68:b8:fc:6e:
7e:f5:cb:a3:62:ef:9b:86:97:8f:91:7a:fb:c0:b8:
32:ec:cf:c2:92:db:94:84:ff:2f:99:5c:c2:36:24:
a0:94:74:6e:5b:f8:db:93:e5:1d:aa:9c:54:42:41:
d5:90:9c:16:a4:f7:73:42:fb:8e:a9:b5:ed:92:37:
f2:88:87:31:84:33:f6:a6:2f:2d:06:56:3e:da:0f:
95:dd:be:e4:35:2c:08:82:ed:87:a1:04:77:83:21:
93:71:bb:6d:77:d6:e8:a2:b0:e2:a2:0a:df:7a:c1:
11:7c:72:cb:18:4f:fd:cf:d4:73:85:93:de:30:8a:
8a:4a:8a:ca:b5:c8:a7:d5:78:c0:ed:0f:b0:28:87:
1a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:3A:DC:A3:E6:99:F3:F3:A5:75:DF:41:10:10:4C:ED:CE:61:B2:26
X509v3 Authority Key Identifier:
keyid:0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:d2:cf:7c:71:b7:7e:36:07:a3:5b:6b:84:67:a9:b7:56:b9:
d3:5c:fc:3a:d0:33:1d:c5:a2:e0:16:db:b2:dd:9c:e9:26:b7:
eb:ce:2e:29:16:1b:ee:ee:18:dd:62:08:c2:37:97:ed:d6:c8:
ea:ce:dd:6a:cb:c9:ec:36:31:11:67:49:ac:c0:52:f7:78:b8:
a0:d2:ff:50:b6:64:39:0f:fe:e1:dc:32:85:39:36:18:a1:ef:
51:d5:3c:48:1e:a3:a7:3f:23:25:dc:f5:ba:aa:11:fa:ec:93:
bb:29:b9:d1:b6:5a:cc:4a:b7:1c:10:fb:13:72:97:9d:c7:e0:
45:8e:c5:fa:8f:ab:8b:04:69:17:1f:9f:d3:a3:06:63:8a:44:
76:b0:45:8d:4e:8d:23:d4:1a:8c:48:0b:85:a4:31:21:8e:2b:
5d:6a:fe:84:e4:fd:f3:db:77:2d:66:b2:b1:98:1a:ec:0f:b9:
7c:30:9e:07:e7:36:f7:2a:72:69:a1:8a:ed:19:c7:03:c9:bd:
59:0c:ca:2f:d8:e8:b0:1b:aa:48:c0:2f:ba:16:c2:8d:93:a7:
7f:7f:8c:ea:cc:12:a0:8f:6e:40:12:ec:cd:f0:2c:a7:47:b2:
d8:e2:bf:60:a6:5b:15:24:1e:71:7b:51:c7:15:b8:e1:18:95:
f6:6f:1c:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:06:28 2026 by rpki-client