Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
File: 23DOek5uSrOk6p8IH1kupfbSuao.mft (raw, json)
Hash identifier: 3Frap4JX0yto32FX7fz9z4JexEMGU8x482ID7qZKAQc=
Subject key identifier: A5:05:34:C8:97:16:68:42:4F:B3:2D:1C:8A:D9:74:11:37:DF:D7:4A
Authority key identifier: DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
Certificate issuer: /CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Certificate serial: 019E1F113E67032A2D19BD2814D8FC686FB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
Manifest number: 094A
Signing time: Wed 13 May 2026 02:01:24 +0000
Manifest this update: Wed 13 May 2026 02:01:24 +0000
Manifest next update: Thu 14 May 2026 02:01:24 +0000
Files and hashes: 1: 23DOek5uSrOk6p8IH1kupfbSuao.crl (hash: TEQaRU/3BvcqU/i8GYCEszfCsIgZg8VRYE9tK3yUaGA=)
2: hhh3z06Bpe2m47ehC44Gk6XsxWY.roa (hash: D+hS8HY9ljD+1P/aopr0G/yuhchBVZY0zZMSPMrBOWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:3e:67:03:2a:2d:19:bd:28:14:d8:fc:68:6f:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Validity
Not Before: May 13 02:01:24 2026 GMT
Not After : May 14 02:01:24 2026 GMT
Subject: CN=a50534c8971668424fb32d1c8ad9741137dfd74a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9e:9f:5f:7e:da:00:1d:b3:a8:c2:fc:a6:c0:
f4:79:55:06:ee:05:c1:3a:8d:13:44:e4:5c:54:5d:
1f:d1:99:9f:25:11:f3:22:e1:19:37:c9:26:b6:18:
18:fc:f5:6f:e9:41:7d:18:9b:44:52:88:44:76:59:
1b:7c:c9:92:dc:e6:96:77:db:d3:70:09:a8:1f:07:
29:9f:db:1e:44:d4:54:e8:5d:f1:3a:02:36:91:bc:
36:8b:fd:a1:4b:3f:1d:45:09:ef:60:8c:0f:47:a5:
5b:2a:64:80:dc:07:33:a7:69:18:aa:f9:e6:41:16:
46:a5:00:70:1a:45:72:5c:4b:f3:a5:f4:84:5c:2e:
4f:5e:c3:f2:51:8c:12:ca:35:bb:10:62:51:b1:3b:
a7:65:fe:f7:56:f2:ec:be:30:14:1f:de:a7:cb:f4:
17:da:7a:1e:b6:1d:d4:c1:de:ea:98:b9:6b:7c:af:
8d:ed:de:18:68:71:30:b1:06:44:b7:eb:7f:d4:47:
ef:78:5e:7e:28:1b:23:72:31:ee:eb:a3:31:1f:04:
b5:71:ad:cb:18:84:f6:2a:8f:0f:0e:66:74:8e:f7:
dc:7c:1d:a5:2d:b4:13:bc:8a:cd:7a:cf:b0:cf:d1:
82:49:b6:f1:cc:64:21:18:12:e7:fb:99:7c:42:56:
e6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:05:34:C8:97:16:68:42:4F:B3:2D:1C:8A:D9:74:11:37:DF:D7:4A
X509v3 Authority Key Identifier:
keyid:DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:d0:b8:ec:a4:6c:49:85:56:88:c0:de:e2:a7:8f:ce:c5:aa:
d7:c2:07:20:5f:8a:07:5f:77:32:62:6f:5c:7e:f5:3e:f2:c8:
19:8b:9b:b9:6c:c6:9a:fd:d8:01:72:46:7f:5a:01:de:dd:1e:
09:45:8e:2c:3d:ff:38:50:69:1f:e2:a9:ad:d2:f2:b9:cb:cd:
8f:27:ef:f9:9c:f7:99:10:f0:05:a5:dd:9e:44:23:da:d0:94:
1f:fd:8c:88:54:6d:9f:d0:4f:f0:8d:31:29:42:a7:68:4f:92:
53:a3:8e:d7:cc:87:ac:e2:43:21:17:bc:3e:b6:44:6e:d5:50:
79:36:c2:84:8e:28:f2:86:77:fa:4c:f4:d5:6a:00:1a:eb:e4:
c4:56:3a:db:63:32:4a:ed:a4:17:d2:2c:95:a3:d4:52:cc:21:
2f:24:b3:db:85:75:c8:f4:19:5d:e0:8b:e4:f2:30:8a:67:18:
31:b7:c6:6e:b7:2a:b8:2c:87:8f:c6:03:15:1a:85:47:b3:9a:
1d:ef:95:54:da:48:2e:2f:9d:e8:20:84:86:ad:08:87:ed:a5:
6f:c6:5e:50:a3:bc:6d:be:2f:ca:4e:b7:10:9a:22:c9:f4:c1:
21:4e:94:8e:fe:74:48:80:fb:fc:52:4f:ce:b6:41:6c:6b:b8:
e6:29:73:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:33:42 2026 by rpki-client