Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.mft
File: 28sc89PzzcNCb7SfCgwz3ATIaBw.mft (raw, json)
Hash identifier: /A/138O1ZX+apwZwvAHk6HJcZth9qO/elWVKEgcWkWo=
Subject key identifier: 81:9A:36:39:B1:29:EF:42:99:2C:6C:0B:87:42:B6:1B:70:BC:D4:12
Authority key identifier: DB:CB:1C:F3:D3:F3:CD:C3:42:6F:B4:9F:0A:0C:33:DC:04:C8:68:1C
Certificate issuer: /CN=dbcb1cf3d3f3cdc3426fb49f0a0c33dc04c8681c
Certificate serial: 019E1D91274F88EAF49A930BCFFF49009C75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28sc89PzzcNCb7SfCgwz3ATIaBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.mft
Manifest number: 129C
Signing time: Tue 12 May 2026 19:01:52 +0000
Manifest this update: Tue 12 May 2026 19:01:52 +0000
Manifest next update: Wed 13 May 2026 19:01:52 +0000
Files and hashes: 1: 28sc89PzzcNCb7SfCgwz3ATIaBw.crl (hash: R/BpPhml0I01dVIgbaHXyDXgRycKHT4CZnSLdRQR3oQ=)
2: MZXVTiNksKGTLq9u4L9cUwgb3IA.roa (hash: 2+1QbFKQ4zkEeb7PjYF9N7gyfg92zYXucG3hxOSuoJk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.mft
rsync://rpki.ripe.net/repository/DEFAULT/28sc89PzzcNCb7SfCgwz3ATIaBw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:91:27:4f:88:ea:f4:9a:93:0b:cf:ff:49:00:9c:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbcb1cf3d3f3cdc3426fb49f0a0c33dc04c8681c
Validity
Not Before: May 12 19:01:52 2026 GMT
Not After : May 13 19:01:52 2026 GMT
Subject: CN=819a3639b129ef42992c6c0b8742b61b70bcd412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1b:8e:fd:03:f0:4f:9b:0f:33:83:dd:de:53:
08:a3:05:66:44:b6:4f:9a:90:0a:c2:c7:89:16:23:
10:e6:5f:26:2a:0e:a7:16:9a:d0:60:56:58:ed:06:
0e:b2:28:d7:4a:26:e5:10:3b:f4:af:9b:fc:57:f8:
53:20:2b:4a:c3:80:29:24:0c:4e:8f:aa:5f:f0:72:
4d:b0:33:40:df:8c:58:91:c5:b2:ba:33:0c:b8:73:
f9:4c:f7:80:6a:dc:b2:97:a0:48:26:30:d6:aa:53:
da:aa:fa:55:27:3c:d3:9b:6c:0c:6e:5d:81:91:67:
bf:bf:f2:0e:bc:ac:00:13:f8:cf:e5:81:6b:14:64:
92:c7:a7:6c:db:03:b3:99:8d:d3:c5:ba:79:c2:de:
c4:1c:3a:b7:f2:3d:49:3f:7f:47:22:9e:07:56:45:
53:8c:3f:9e:fc:20:e7:d3:82:ce:57:58:b5:bc:50:
08:7b:cc:fa:2e:d1:49:31:dc:1c:83:08:ce:fc:2b:
ef:4d:d5:8b:4a:b2:bf:95:30:49:ac:8a:bd:8d:58:
d1:76:95:ac:f8:7e:93:7a:52:35:d5:af:55:a3:45:
be:7e:82:45:10:64:e8:a1:1c:30:a7:6d:98:e6:7b:
7d:6a:99:7c:40:35:08:9c:4d:99:ba:84:ec:4a:6b:
ce:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:9A:36:39:B1:29:EF:42:99:2C:6C:0B:87:42:B6:1B:70:BC:D4:12
X509v3 Authority Key Identifier:
keyid:DB:CB:1C:F3:D3:F3:CD:C3:42:6F:B4:9F:0A:0C:33:DC:04:C8:68:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28sc89PzzcNCb7SfCgwz3ATIaBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:81:b9:69:5a:10:25:e4:a4:ed:7c:38:a3:2f:ce:f0:44:53:
ab:21:e5:63:fd:e4:48:7a:53:08:4b:12:da:81:2c:e6:ee:b3:
c5:10:f3:42:b4:60:b7:86:58:d6:10:25:71:06:e9:f5:1d:a2:
8b:e9:cf:9a:02:5c:b2:58:49:1d:68:70:f5:ee:fd:39:7b:59:
3b:bc:18:c0:0a:1d:e8:55:4d:af:7b:76:ab:09:31:1a:c8:1c:
fa:e5:1b:ec:b7:65:4f:42:46:71:cb:44:10:2f:07:35:89:bd:
3c:3d:87:b1:4f:07:a8:f3:1e:d8:34:43:c5:45:db:d3:9e:61:
a2:6a:87:53:7e:c1:fa:08:5e:8c:40:90:be:77:62:41:12:5d:
2b:9d:aa:a2:60:3c:47:07:e8:1a:23:12:1d:3a:93:26:0c:59:
73:a1:15:07:92:68:07:b3:79:30:00:2e:37:f2:6d:b7:6f:16:
d8:f5:84:54:63:1f:b0:a1:81:5d:d5:f2:51:1a:ee:b6:cb:54:
c7:57:c1:22:3f:8d:bf:a2:ea:eb:f2:55:ec:92:b0:1b:36:e9:
c6:79:fa:a1:15:b7:c6:0f:90:ae:79:57:c2:dc:1a:0b:28:1c:
5b:df:c2:8a:42:07:66:99:c6:c8:aa:69:31:47:f9:b5:2f:a7:
3e:5b:84:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:13:43 2026 by rpki-client