Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft
File: DkTxM_OHWTqvor6rOIhJBPrJvRk.mft (raw, json)
Hash identifier: VkjzHLDUDAGQhYrKNzsaSglO4ywejWklziHTy7Hoo/4=
Subject key identifier: E8:B4:40:95:64:9F:F7:B0:61:A2:B0:FC:93:2A:09:2D:25:B1:70:6A
Authority key identifier: 0E:44:F1:33:F3:87:59:3A:AF:A2:BE:AB:38:88:49:04:FA:C9:BD:19
Certificate issuer: /CN=0e44f133f387593aafa2beab38884904fac9bd19
Certificate serial: 019D2695E3334B418141CDE54516EF0F962C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkTxM_OHWTqvor6rOIhJBPrJvRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft
Manifest number: 0512
Signing time: Wed 25 Mar 2026 20:00:50 +0000
Manifest this update: Wed 25 Mar 2026 20:00:50 +0000
Manifest next update: Thu 26 Mar 2026 20:00:50 +0000
Files and hashes: 1: DkTxM_OHWTqvor6rOIhJBPrJvRk.crl (hash: 5xCFKmVmW1WOMvOgv8Dpza26AxDzAlhJTssU3GX9ZmE=)
2: Zu63Ow6HIL-cM_My8KJ_oXolMPU.roa (hash: wpqllHKhhs+9B3WcGLDKMWL4IN9CvMn3Xo3gy5XniVk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft
rsync://rpki.ripe.net/repository/DEFAULT/DkTxM_OHWTqvor6rOIhJBPrJvRk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 20:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:95:e3:33:4b:41:81:41:cd:e5:45:16:ef:0f:96:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e44f133f387593aafa2beab38884904fac9bd19
Validity
Not Before: Mar 25 20:00:50 2026 GMT
Not After : Mar 26 20:00:50 2026 GMT
Subject: CN=e8b44095649ff7b061a2b0fc932a092d25b1706a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:3e:63:a3:10:fc:c7:85:3f:24:92:16:96:be:
35:2a:b3:04:1a:39:80:2a:e2:a6:e6:cc:1f:46:62:
bf:6d:56:55:3b:48:71:fb:55:d3:2e:df:6e:23:19:
ef:32:7f:e0:6e:87:94:37:33:b7:a6:86:98:22:13:
e3:4e:0e:b8:e4:fe:6c:98:9b:a9:04:a7:db:2e:90:
8a:2e:28:03:2f:7d:90:4f:15:75:fd:41:ae:ba:f4:
dc:04:36:7a:fc:e5:a2:fe:2f:f8:93:74:ab:91:20:
33:4c:9b:5a:c9:8e:a0:e0:56:9c:aa:d4:25:b2:70:
cf:59:28:78:8b:69:7a:86:ab:a3:ba:ce:45:92:08:
ec:2f:8c:0d:28:6e:20:a0:57:a7:e9:b1:db:4f:5b:
45:5c:62:cc:15:83:cc:1c:a9:1e:b6:48:e0:c6:60:
db:ab:68:fb:0f:6f:5a:88:69:1a:e7:7e:fc:21:18:
5d:1e:27:b3:26:19:6b:f7:a9:73:ad:ce:33:cf:35:
bd:d3:44:94:83:a9:9f:ac:9e:39:e9:24:b3:1c:c0:
e6:7b:7c:a9:22:aa:2d:12:dd:78:d8:18:0c:15:20:
e6:c8:0b:58:d0:cc:b1:3b:14:36:9c:fd:d9:dd:13:
d2:9b:0f:bc:93:09:d6:d4:35:38:ba:57:f3:41:57:
5f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:B4:40:95:64:9F:F7:B0:61:A2:B0:FC:93:2A:09:2D:25:B1:70:6A
X509v3 Authority Key Identifier:
keyid:0E:44:F1:33:F3:87:59:3A:AF:A2:BE:AB:38:88:49:04:FA:C9:BD:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkTxM_OHWTqvor6rOIhJBPrJvRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:10:ef:53:99:1c:b7:92:30:b8:94:f9:87:4a:2c:40:13:e1:
ba:f4:36:7a:75:7c:bf:1d:39:61:67:6b:26:1e:03:07:d5:64:
39:7c:c1:ec:b4:32:7d:0b:41:e8:9c:fa:0a:7a:91:1a:20:42:
7b:13:8d:69:08:d9:a0:c2:d6:6a:fe:c9:48:77:29:ea:3e:74:
8a:12:49:5a:9e:30:2a:8f:58:e0:22:6a:ff:e2:a3:4c:4e:99:
5f:ce:f8:69:8e:34:98:2c:5f:48:24:20:b8:17:ce:4e:03:64:
35:46:42:7c:9b:a0:6f:29:3a:45:3e:65:7f:30:2b:15:77:38:
23:55:66:1b:dd:83:d1:90:0d:79:4d:f7:31:b4:25:00:63:6c:
f3:77:55:f1:c9:c0:5d:4c:48:39:58:ea:97:10:40:51:f9:67:
13:e5:66:74:bc:b9:41:c3:8e:43:67:f2:9d:17:ed:ec:35:47:
63:d3:17:d3:55:d8:bd:24:fd:c9:b7:2a:b6:12:09:90:a3:c8:
63:33:3c:5e:d7:ef:58:ba:c4:bd:1b:17:9d:ab:64:4a:0b:73:
ad:95:3d:5a:af:f6:df:b3:c1:f4:52:b9:10:b8:3c:9d:b2:22:
16:85:1f:46:32:5d:41:8f:96:b0:f7:a4:72:dc:93:3b:96:60:
f7:da:b5:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:51:59 2026 by rpki-client