Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
File: rfDfdxFHQeE6F9chPmlWv5YntVg.mft (raw, json)
Hash identifier: eTUTfhY1Rgg4V2kOaucdi+UUbK68zhNZhDAetviC1J8=
Subject key identifier: D1:FC:BC:15:0A:97:24:7D:E4:0D:F6:D1:75:63:6A:60:46:54:9C:AE
Authority key identifier: AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
Certificate issuer: /CN=adf0df77114741e13a17d7213e6956bf9627b558
Certificate serial: 019E1F47ABE24D5EBEC380FF772A74D3F113
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
Manifest number: 17BB
Signing time: Wed 13 May 2026 03:00:51 +0000
Manifest this update: Wed 13 May 2026 03:00:51 +0000
Manifest next update: Thu 14 May 2026 03:00:51 +0000
Files and hashes: 1: 8eYijGU89HKkHPl1vQkVznR2YWI.roa (hash: GVKbdEH+zbWNIRI6lkz6XipadG7YSN2rD9CEidAiQUs=)
2: rfDfdxFHQeE6F9chPmlWv5YntVg.crl (hash: ggpOjlZtTIIIKK+hCg/zJoIY1baQ9wawwd3DhDFG2jI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 03:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:ab:e2:4d:5e:be:c3:80:ff:77:2a:74:d3:f1:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf0df77114741e13a17d7213e6956bf9627b558
Validity
Not Before: May 13 03:00:51 2026 GMT
Not After : May 14 03:00:51 2026 GMT
Subject: CN=d1fcbc150a97247de40df6d175636a6046549cae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0d:70:92:77:dc:bf:1b:ac:7a:8b:16:a4:c0:
7e:74:e3:ae:f3:61:55:90:66:0c:ef:52:b8:71:84:
e9:52:50:fd:87:b8:7f:71:13:e1:9a:a9:e9:e3:06:
47:13:55:c6:d7:2c:82:97:92:11:95:46:10:aa:79:
71:a6:e6:ad:26:c3:0e:71:82:3a:56:39:74:7c:d8:
53:ac:57:c3:ff:f0:5b:12:c8:0d:44:c3:c4:a4:9d:
25:7c:49:7d:e7:09:3f:29:c3:a4:57:49:74:71:7e:
cf:ec:f5:90:4f:50:cc:1c:09:36:37:2f:79:7b:99:
4d:4d:c5:52:4d:a1:e5:7f:4e:68:3b:5e:39:de:12:
25:49:1c:ef:24:5f:5a:b0:14:88:0d:b5:ac:e0:c4:
10:88:f4:e0:87:ad:96:61:e5:70:24:a8:00:dc:9a:
44:60:db:3b:d7:16:be:a7:5e:cf:7f:d3:5b:93:8f:
e7:3e:78:9b:86:6c:60:f8:fb:96:84:fe:77:93:88:
4e:4a:fa:ee:84:6e:7e:f1:b4:86:3c:07:bb:69:61:
7f:9b:bf:b6:8e:63:05:08:0a:d2:bc:2b:1b:eb:ec:
8d:e4:b7:11:50:6b:46:ea:bf:50:25:f7:9d:84:56:
11:db:1c:a0:d2:e4:da:bd:72:de:f5:73:96:3f:3f:
1b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:FC:BC:15:0A:97:24:7D:E4:0D:F6:D1:75:63:6A:60:46:54:9C:AE
X509v3 Authority Key Identifier:
keyid:AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:a1:c1:64:65:38:fe:2e:c6:05:62:df:da:78:23:93:98:6a:
ff:1c:72:3a:03:74:9a:cd:23:82:29:5c:c2:87:de:07:47:04:
84:78:2c:fc:7b:38:cd:62:89:8a:e3:dd:f7:3e:eb:32:d5:b0:
30:99:9e:5f:48:1b:33:37:18:5d:6b:3a:0e:9b:8b:61:cf:e2:
ac:4b:08:8f:c1:5d:66:70:89:f6:6b:17:9b:69:d9:5b:95:de:
db:27:64:90:c1:e7:ec:e3:85:51:c3:da:7f:83:a1:58:0e:ac:
ed:d6:bc:7a:38:2b:68:a6:0f:4f:4d:99:06:24:81:38:b3:49:
f4:f3:0f:87:1a:3d:f9:fe:bb:19:43:a2:3c:8a:73:1b:d2:73:
9a:f4:16:82:1c:99:55:47:b4:5a:a5:d8:1b:28:58:45:f7:ba:
25:69:bf:7d:87:bb:8d:cb:88:92:00:c8:58:a3:c6:00:2c:b2:
55:c2:f0:7f:d8:ee:e2:8d:44:08:d8:15:2e:8e:d1:a4:ce:35:
71:18:31:a2:52:eb:48:26:d8:94:e4:05:65:60:42:ab:74:f8:
17:4e:f8:2d:19:4d:b9:79:bf:25:ff:01:f5:03:24:4a:bd:63:
d0:88:01:61:d3:ae:ed:72:99:23:86:32:e9:d1:03:8f:e4:1e:
98:71:8f:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:49:59 2026 by rpki-client