Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.mft
File: dbzZGxsvmvS3QhSm1njOBxlo4c8.mft (raw, json)
Hash identifier: exOjMG8EBHDmU40hNxwfwbkTsnth0NHxRMgSQu4qrhI=
Subject key identifier: 89:B1:E5:2B:F2:72:11:7B:9E:08:25:57:E3:2C:E1:1A:70:74:A3:D9
Authority key identifier: 75:BC:D9:1B:1B:2F:9A:F4:B7:42:14:A6:D6:78:CE:07:19:68:E1:CF
Certificate issuer: /CN=75bcd91b1b2f9af4b74214a6d678ce071968e1cf
Certificate serial: 019E1C4775DC52A6002584A0F45A49B8950D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dbzZGxsvmvS3QhSm1njOBxlo4c8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.mft
Manifest number: 0B2F
Signing time: Tue 12 May 2026 13:01:45 +0000
Manifest this update: Tue 12 May 2026 13:01:45 +0000
Manifest next update: Wed 13 May 2026 13:01:45 +0000
Files and hashes: 1: Vqb24fiotLZOBuA1uv8cf7EHAOs.asa (hash: kL0LJuS+v//eRSQwWEOD6aFsJj9u86Nma+Ehm7jeQWc=)
2: dbzZGxsvmvS3QhSm1njOBxlo4c8.crl (hash: aJEIt0COpMXUW22toRA7ePNFYK3p3HXbzWL5HxdAoUM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.mft
rsync://rpki.ripe.net/repository/DEFAULT/dbzZGxsvmvS3QhSm1njOBxlo4c8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 13:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:47:75:dc:52:a6:00:25:84:a0:f4:5a:49:b8:95:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75bcd91b1b2f9af4b74214a6d678ce071968e1cf
Validity
Not Before: May 12 13:01:45 2026 GMT
Not After : May 13 13:01:45 2026 GMT
Subject: CN=89b1e52bf272117b9e082557e32ce11a7074a3d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9b:6e:6a:26:18:6e:f8:fa:16:44:01:c7:85:
3c:e3:bb:c8:81:97:53:39:f5:b8:84:f3:1a:a4:5c:
c4:fa:c4:e0:19:61:b8:4e:9a:00:b2:3f:ab:0e:6d:
b1:7a:7a:80:2e:65:41:4c:bf:20:8f:40:df:2c:3a:
4e:33:da:3a:29:7a:a8:e3:5b:e2:21:65:3d:38:36:
4e:6d:b9:c1:cb:ca:6a:57:95:a2:99:23:f6:fa:21:
e0:8c:c4:6e:9d:60:ee:eb:63:da:82:70:7f:31:88:
46:37:93:51:e0:5d:bb:bc:3b:bc:9d:86:36:af:54:
ae:ef:20:d3:9a:75:a9:d0:0c:1a:15:1e:d4:53:92:
67:2e:70:1f:e8:d9:42:ff:b8:f2:41:db:54:b5:03:
ae:6b:a1:a8:e7:0d:a6:9e:c6:34:86:11:b3:f7:19:
4c:83:6e:8c:78:de:11:9d:7d:c4:a5:ac:83:c1:9f:
5a:86:c5:fd:ff:0e:53:5d:0c:f4:15:19:16:65:1f:
8a:d2:2d:71:3d:40:2a:d8:1e:69:92:22:a8:5d:3a:
77:96:af:f4:fd:7e:6e:34:c0:50:21:d5:f5:05:6b:
1f:2e:1f:33:7f:97:1f:6d:64:59:b0:c9:6c:1f:3f:
5d:7c:b7:e7:e1:4a:11:9f:3b:cd:bf:bf:25:d3:43:
8a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B1:E5:2B:F2:72:11:7B:9E:08:25:57:E3:2C:E1:1A:70:74:A3:D9
X509v3 Authority Key Identifier:
keyid:75:BC:D9:1B:1B:2F:9A:F4:B7:42:14:A6:D6:78:CE:07:19:68:E1:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dbzZGxsvmvS3QhSm1njOBxlo4c8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:27:b7:8e:a9:9b:91:c5:7a:43:11:6d:01:d1:38:86:82:fd:
24:92:f5:0d:f4:77:fb:bf:55:db:95:78:77:d6:c3:f6:47:22:
cc:68:dd:9f:32:3d:04:b0:6e:a6:22:cd:2d:84:23:d8:84:0f:
78:f0:02:77:76:94:86:49:6a:0f:89:67:8e:34:3f:11:92:66:
cf:cc:88:8a:0f:ed:36:7a:35:20:1a:a0:dd:42:f4:5d:6e:53:
78:9f:73:59:09:69:0c:89:29:43:a6:33:ff:7f:9c:01:c3:30:
fd:6f:74:f3:7d:bb:4b:be:fa:c1:dc:9f:af:ea:6a:e7:c9:93:
55:e6:13:a7:2c:f9:c6:b0:61:34:52:4a:26:d8:24:ba:50:d0:
29:d1:ef:37:e2:4d:ed:b8:e7:da:35:4c:af:b4:a5:99:61:e6:
3a:b6:35:26:f0:93:99:c5:0d:47:98:58:87:9e:e5:c7:fa:07:
cd:99:37:9f:ae:ee:2e:01:a1:a5:8b:d5:9a:32:c2:05:72:4d:
b3:3c:b1:c3:00:de:2f:63:7b:ca:3f:43:22:66:81:2d:7c:13:
ac:b6:da:07:b2:f7:d9:34:de:bd:c3:1f:3e:0d:63:ac:1c:cb:
06:ea:10:6e:cb:8a:3b:9c:f0:f1:d6:a2:c5:ae:61:e7:f0:99:
af:a4:fa:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:23:26 2026 by rpki-client