Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
File: DAHrsNsEzE1pGCs47A30sIkiJ40.mft (raw, json)
Hash identifier: Sek2+e6HyJDekKVsuzvpCZZPt35kLFN1aRYQBCYqFM4=
Subject key identifier: B0:FA:AA:61:0C:F4:72:D7:B9:31:18:5A:C1:C5:19:F9:1C:DE:31:52
Authority key identifier: 0C:01:EB:B0:DB:04:CC:4D:69:18:2B:38:EC:0D:F4:B0:89:22:27:8D
Certificate issuer: /CN=0c01ebb0db04cc4d69182b38ec0df4b08922278d
Certificate serial: 019E3184C734399EB31F1981BA6FE7B052F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
Manifest number: 190B
Signing time: Sat 16 May 2026 16:00:45 +0000
Manifest this update: Sat 16 May 2026 16:00:45 +0000
Manifest next update: Sun 17 May 2026 16:00:45 +0000
Files and hashes: 1: DAHrsNsEzE1pGCs47A30sIkiJ40.crl (hash: Rhg2VLgLx90qpFfUCZOmHBRCrWwxkZba5WxZPlyDMsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:84:c7:34:39:9e:b3:1f:19:81:ba:6f:e7:b0:52:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c01ebb0db04cc4d69182b38ec0df4b08922278d
Validity
Not Before: May 16 16:00:45 2026 GMT
Not After : May 17 16:00:45 2026 GMT
Subject: CN=b0faaa610cf472d7b931185ac1c519f91cde3152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:01:96:f9:db:58:13:14:d0:1c:c4:28:aa:f9:
bf:0d:49:5d:70:63:0d:28:27:b9:8c:45:0b:f4:e5:
83:0f:65:1b:81:2a:bb:de:f1:c9:e4:1d:08:38:a8:
c2:00:0c:f6:a5:2e:87:4c:a8:99:97:d4:88:5a:db:
66:ef:00:16:81:53:a9:80:d3:ba:f3:4c:f3:b4:b7:
64:f9:3c:de:2d:14:6c:2a:10:21:49:bc:e6:4a:54:
f1:b3:bd:27:46:7f:52:42:95:61:eb:b4:0c:2b:91:
5a:5d:c2:6a:be:53:18:1a:da:14:0b:a5:df:5b:6b:
46:83:d7:47:32:b1:ae:d1:f0:85:47:d2:e1:e0:5d:
d6:f3:0f:9d:38:53:07:e7:90:a1:84:d4:bc:5e:1e:
8d:86:95:82:fb:96:d9:d2:4c:fc:ea:59:42:f1:b8:
da:34:41:cc:68:89:81:12:ab:f5:07:15:89:f0:84:
84:94:c8:11:5e:10:2c:97:20:75:00:9a:98:c5:f2:
22:29:e0:59:3a:7d:69:17:26:b9:ec:49:be:69:24:
4e:aa:b5:bf:33:8a:2f:40:a4:cf:69:05:71:ab:17:
f1:1d:d1:90:72:ca:3e:bc:95:5f:93:ce:4c:1f:4c:
ab:21:e1:6d:7a:e2:ed:ef:32:d5:72:6f:26:16:af:
a9:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:FA:AA:61:0C:F4:72:D7:B9:31:18:5A:C1:C5:19:F9:1C:DE:31:52
X509v3 Authority Key Identifier:
keyid:0C:01:EB:B0:DB:04:CC:4D:69:18:2B:38:EC:0D:F4:B0:89:22:27:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:71:f4:9a:71:23:30:9f:5f:64:46:f4:14:48:dc:ef:84:5b:
56:80:3c:ab:df:71:24:34:e3:72:d8:a2:68:6d:15:94:a2:64:
b5:c6:de:a5:ad:bb:f9:c5:97:b9:bc:98:e4:05:4a:8c:00:2c:
d3:c3:52:08:c0:63:85:6f:9e:bc:41:a1:3a:6e:77:ed:9e:f3:
35:0a:f5:72:b5:35:23:57:fa:b6:5f:ef:ce:76:ba:98:73:2f:
03:cc:28:9d:cd:4d:ae:13:b8:5a:a8:75:f1:c5:51:77:7b:9c:
89:2d:ba:71:0c:38:33:3a:11:76:85:9f:82:31:dc:51:99:c7:
ed:a6:a6:90:53:67:62:54:36:c7:e9:9f:2b:3f:19:f5:84:1f:
d5:18:a1:43:9f:0a:9b:5c:61:3a:df:91:e5:f2:46:94:cb:bb:
a8:a0:a6:50:6a:e8:d8:3d:05:4c:63:52:a7:8f:d6:20:5a:01:
30:12:97:80:7d:d2:85:ee:ca:1a:e7:73:c8:6a:1f:38:1a:1f:
a6:ad:17:f4:46:c0:ae:cb:b8:a5:ff:1a:be:6b:2c:4d:2a:82:
24:47:13:1f:4e:27:d4:5c:d7:1f:d9:69:b8:a2:5c:06:1e:8a:
fc:0b:9c:98:14:d7:2c:42:b2:11:ea:fc:9a:8c:3f:80:0d:a7:
f9:7f:2d:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 19:31:05 2026 by rpki-client