Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
File: CtBt0nvZOjgNpMddGovwdoKP1ko.mft (raw, json)
Hash identifier: x087OTtGU4HT+n1iPi1HiMDfkfcHABnN/eO82DKBbOY=
Subject key identifier: DA:68:97:DA:A3:3E:3C:B0:31:CD:68:15:E3:15:1C:4B:15:66:85:A6
Authority key identifier: 0A:D0:6D:D2:7B:D9:3A:38:0D:A4:C7:5D:1A:8B:F0:76:82:8F:D6:4A
Certificate issuer: /CN=0ad06dd27bd93a380da4c75d1a8bf076828fd64a
Certificate serial: 019EB733D21A2C6C3E9DC2246847588C48C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
Manifest number: 0C4E
Signing time: Thu 11 Jun 2026 15:01:27 +0000
Manifest this update: Thu 11 Jun 2026 15:01:27 +0000
Manifest next update: Fri 12 Jun 2026 15:01:27 +0000
Files and hashes: 1: CtBt0nvZOjgNpMddGovwdoKP1ko.crl (hash: RJUVVMc/V5XK+Uqk8xh3fYd9CVZCbKECCSVYGrre6Fc=)
2: rRTCz9gdKZmCD2CPH7ZEPITaxno.roa (hash: IkdpUdMuuhLbUbcbS19kzqtq8+mEc9r+5ZSOWumJXFc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:33:d2:1a:2c:6c:3e:9d:c2:24:68:47:58:8c:48:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ad06dd27bd93a380da4c75d1a8bf076828fd64a
Validity
Not Before: Jun 11 15:01:27 2026 GMT
Not After : Jun 12 15:01:27 2026 GMT
Subject: CN=da6897daa33e3cb031cd6815e3151c4b156685a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:05:99:2b:c9:53:b9:04:e3:46:05:3f:98:f1:
6e:f6:1b:ba:fe:54:c3:48:dc:c6:69:b5:2e:cf:9d:
64:5e:6a:c8:4a:8f:0c:cb:db:90:0f:76:b0:58:f2:
21:c8:ca:1c:3c:83:dc:46:16:26:8f:a0:e1:38:8a:
dd:62:f4:d5:63:ad:9e:08:57:4a:52:ad:12:65:4a:
36:b6:d9:8b:6c:e0:15:d7:5f:55:2d:c7:70:ae:f6:
83:db:d4:fd:de:14:f2:ac:66:90:f4:ab:84:88:bb:
3c:52:cb:b1:77:2a:be:ba:83:fd:b6:13:af:02:08:
86:51:31:d5:93:bb:11:fe:f5:92:6b:05:07:c7:ce:
2f:9e:83:bd:80:d1:b8:f1:5d:c3:94:34:16:97:90:
6c:54:7a:27:22:79:2b:db:1c:92:a7:be:e2:f4:f5:
da:83:84:af:43:0f:8c:c1:d8:31:a2:90:c3:23:df:
f5:06:e6:83:ca:60:78:93:56:0c:f3:44:f2:f0:bb:
8e:03:a4:dd:c0:d1:f6:c9:01:d0:6a:b3:b0:8d:73:
b2:38:9b:14:fb:c1:31:0e:0e:7c:d3:02:2b:ff:42:
38:be:01:8d:22:a8:60:3e:28:0e:ad:2d:5d:49:2c:
a6:37:da:ad:9c:01:0b:6d:df:3b:ef:ef:9d:cd:4a:
86:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:68:97:DA:A3:3E:3C:B0:31:CD:68:15:E3:15:1C:4B:15:66:85:A6
X509v3 Authority Key Identifier:
keyid:0A:D0:6D:D2:7B:D9:3A:38:0D:A4:C7:5D:1A:8B:F0:76:82:8F:D6:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:ca:8c:74:1e:4d:3b:23:35:36:0c:1f:98:e2:4a:d3:00:97:
7a:43:3f:f0:12:17:b9:ce:ee:7a:a4:1a:a0:21:c4:28:de:9a:
87:dc:57:d5:dc:96:81:03:d0:b1:b3:a8:5c:3e:b0:f9:9e:78:
96:f5:ce:10:40:e6:dd:ed:05:ab:c5:2f:af:f5:2b:ac:64:6f:
4d:87:77:7a:c0:19:a2:7a:c6:65:3d:e6:d2:39:d2:21:b0:f1:
44:c1:5f:b3:32:91:13:e8:b3:2e:81:fa:9e:e1:02:45:b6:45:
77:9d:40:40:0d:b9:04:8c:0d:77:c0:f1:58:84:70:e1:04:28:
58:35:cd:50:5f:11:23:4c:43:dc:9a:ab:c9:7f:d7:d2:a5:12:
40:d1:da:88:64:63:a6:30:cf:3f:40:33:ca:26:23:a6:98:51:
8b:14:ae:a1:4e:cf:7a:9b:36:df:ad:06:45:cf:d7:a1:93:53:
3b:c7:2a:6c:b0:78:04:5e:6c:7c:22:ac:e2:8c:6a:d6:cb:90:
bc:91:32:44:72:f8:a7:2d:3b:b9:11:7b:68:bf:4a:d6:61:85:
cc:ec:0f:fb:a4:bc:00:cf:a0:9b:84:90:52:b7:26:2c:67:2c:
3b:e9:1e:e3:bb:3f:57:aa:13:3c:75:19:95:a3:66:e9:b7:81:
81:8e:7c:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 19:20:11 2026 by rpki-client