Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.mft
File: D5x3odzbju1izTyoClFE3E4kP04.mft (raw, json)
Hash identifier: YqrF2m/CrBmDAwPNlIdJYOdTI7SMuFivi41AmJNKSq0=
Subject key identifier: FE:09:DA:85:94:55:7E:1D:2C:5A:8D:AF:53:65:99:E0:F8:20:A0:21
Authority key identifier: 0F:9C:77:A1:DC:DB:8E:ED:62:CD:3C:A8:0A:51:44:DC:4E:24:3F:4E
Certificate issuer: /CN=0f9c77a1dcdb8eed62cd3ca80a5144dc4e243f4e
Certificate serial: 019E1DFEAC6D3AE3BCFF2AC5CFDFDE4B8098
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5x3odzbju1izTyoClFE3E4kP04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.mft
Manifest number: 1911
Signing time: Tue 12 May 2026 21:01:30 +0000
Manifest this update: Tue 12 May 2026 21:01:30 +0000
Manifest next update: Wed 13 May 2026 21:01:30 +0000
Files and hashes: 1: D5x3odzbju1izTyoClFE3E4kP04.crl (hash: IWWiXp+Z8W4NHDXPyHed9M4nCgAaQO8sIDxS+PUA4Js=)
2: Mgm2FMvEWQvAKDRyHQNdXSs8Gk8.roa (hash: YvcWkgvU2zBPk1+mekhJs/OPMV1l8zTWtIoK9RU96lk=)
3: O103OuQ4IixndGyKa3UX3V5e3WQ.roa (hash: TcKGNvz82Ie8m+YB2xFxcsRcNfeQxqqzYWZzRclot5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5x3odzbju1izTyoClFE3E4kP04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:ac:6d:3a:e3:bc:ff:2a:c5:cf:df:de:4b:80:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9c77a1dcdb8eed62cd3ca80a5144dc4e243f4e
Validity
Not Before: May 12 21:01:30 2026 GMT
Not After : May 13 21:01:30 2026 GMT
Subject: CN=fe09da8594557e1d2c5a8daf536599e0f820a021
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:20:24:34:3f:44:73:5f:8d:53:f7:d9:5c:48:
7d:9d:29:50:b2:8d:d3:e0:57:1a:2a:20:dc:f4:55:
36:98:ca:44:23:b8:9e:67:cf:05:d2:46:9d:09:17:
7b:61:f8:9d:30:c4:95:c1:b5:ef:dd:4a:87:7b:1f:
96:32:1d:5d:b3:6a:65:ff:aa:64:5d:e2:41:97:c1:
56:54:89:74:eb:93:83:ac:b6:0d:ef:36:01:71:36:
cf:93:13:d7:5b:69:e1:16:98:b8:d0:2f:2e:67:82:
ff:36:85:c6:47:b1:2f:30:9e:eb:e8:ff:38:ea:8e:
34:fd:14:68:61:ec:e0:e6:fd:c5:93:a0:7d:9c:52:
dd:40:96:94:f5:28:24:af:5f:71:44:d1:f1:7c:22:
a1:68:3d:53:70:db:9c:4a:9e:4b:c3:56:c9:6e:d5:
83:17:23:da:ed:5c:90:79:4f:7a:0f:b8:e9:da:47:
06:01:84:e0:dd:00:b4:82:35:5f:16:01:c3:c6:0d:
fe:88:52:11:24:f7:ad:a5:6e:af:a3:8d:00:33:10:
f1:9c:c0:0e:28:10:db:f6:88:6e:f2:ae:a1:1a:8d:
70:ed:85:0d:3e:fb:4a:08:98:aa:82:be:c0:a8:d7:
25:14:7a:5c:92:ef:9e:9a:c9:b0:16:2b:c5:8c:07:
9f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:09:DA:85:94:55:7E:1D:2C:5A:8D:AF:53:65:99:E0:F8:20:A0:21
X509v3 Authority Key Identifier:
keyid:0F:9C:77:A1:DC:DB:8E:ED:62:CD:3C:A8:0A:51:44:DC:4E:24:3F:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5x3odzbju1izTyoClFE3E4kP04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:45:a1:1b:4d:ab:1d:58:97:62:27:f6:71:c2:22:58:68:1b:
42:1b:9a:10:1b:e6:e6:c7:0b:9f:15:85:18:14:92:44:5d:d9:
a3:85:3c:7a:f6:09:7d:8a:3b:dd:e6:f6:ad:69:38:78:e1:aa:
b4:92:f8:f0:7a:33:d5:28:fc:68:23:8c:56:ac:fe:53:42:e1:
78:ee:eb:0c:f5:dc:c9:29:5a:1b:db:ba:46:04:4c:d6:df:d0:
61:3b:e5:5e:40:ae:2e:6b:5d:c0:5c:90:66:fd:84:c8:11:2c:
8e:c6:a1:24:1b:b2:fb:44:d0:29:de:ff:d0:7f:c9:e1:26:b9:
97:e3:74:e5:9b:19:31:ea:8d:a9:a4:d0:4a:46:0d:2f:ce:4e:
ea:db:a5:15:9e:ee:bd:a6:0f:71:26:56:c6:86:a0:3f:1c:29:
ec:ea:7f:02:10:8e:a5:b8:1d:8e:64:35:f4:1b:16:55:61:aa:
55:82:54:b8:e7:4f:b3:b3:d3:47:d5:2a:e7:1a:41:b2:ad:31:
34:45:68:3c:c6:34:15:d7:bf:d6:f3:18:69:2d:72:c0:45:d0:
62:7e:e5:3c:5f:2f:4a:21:d0:da:68:a5:cb:26:8a:a7:c5:c0:
e3:e4:34:be:70:07:0b:a2:33:6d:ea:d8:25:ad:9b:3f:ff:26:
44:7f:ad:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:49:08 2026 by rpki-client