Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft
File: oTRxtQAqTrZJYSXPWHN_Deutrns.mft (raw, json)
Hash identifier: UvCjDR+O/OWIJalBsD6l7BulXACWpSqPyPhhSai6kzo=
Subject key identifier: 7B:78:6C:38:74:24:89:1A:36:1E:48:CC:41:4A:8B:42:08:30:FB:BE
Authority key identifier: A1:34:71:B5:00:2A:4E:B6:49:61:25:CF:58:73:7F:0D:EB:AD:AE:7B
Certificate issuer: /CN=a13471b5002a4eb6496125cf58737f0debadae7b
Certificate serial: 019E28B8B2521EA5D2220430E19925481AAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oTRxtQAqTrZJYSXPWHN_Deutrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft
Manifest number: 0892
Signing time: Thu 14 May 2026 23:00:53 +0000
Manifest this update: Thu 14 May 2026 23:00:53 +0000
Manifest next update: Fri 15 May 2026 23:00:53 +0000
Files and hashes: 1: YMlojSojXsI2HBIediVAZQR53Uw.roa (hash: JmufbrfZpdywXGEriwFTpVhWPjQ10Wi0s4R9uPOJmgM=)
2: oTRxtQAqTrZJYSXPWHN_Deutrns.crl (hash: bHaf9JU4ozfJ3JjHL7YCcSUpT9f2XLfKrq6bZRlNwAM=)
3: ofNUkXwRdU2CygbCJb-JHa2iVxk.asa (hash: 2CgpH6bf+b3jg+rggjhpByWihzKk9amkpphMJMuERmU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft
rsync://rpki.ripe.net/repository/DEFAULT/oTRxtQAqTrZJYSXPWHN_Deutrns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 May 2026 23:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:b8:b2:52:1e:a5:d2:22:04:30:e1:99:25:48:1a:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a13471b5002a4eb6496125cf58737f0debadae7b
Validity
Not Before: May 14 23:00:53 2026 GMT
Not After : May 15 23:00:53 2026 GMT
Subject: CN=7b786c387424891a361e48cc414a8b420830fbbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:16:2a:34:52:b3:b3:bd:c5:8c:81:50:e5:84:
71:a4:9b:fd:6d:2f:82:ad:46:4f:5a:de:c9:8c:5d:
5c:1e:1e:17:11:0c:cc:d7:24:9e:c2:f9:21:26:bb:
84:c3:0e:b7:5c:57:dd:ce:a1:f7:07:4e:eb:b9:bb:
68:8c:fc:ad:64:f8:b6:bb:95:2b:53:68:7e:68:72:
e4:3f:c0:3c:da:f6:3b:53:5c:65:59:ca:49:8f:59:
76:4c:77:cb:26:c4:0f:b7:02:04:21:68:91:6a:ca:
66:f5:7a:95:f5:b0:14:24:8e:6a:af:00:ec:f1:4f:
2b:bc:fe:21:56:83:28:20:51:4c:34:37:5e:f4:35:
7b:e7:32:29:29:51:73:fa:b9:fa:0a:e6:5d:b5:11:
0b:d6:51:9e:e1:f0:e0:d3:cb:dc:a4:fa:3d:58:1a:
84:90:21:b3:50:e9:7a:ca:d8:f2:8d:38:1b:37:36:
a3:b8:32:ba:49:7b:65:44:c5:8a:a0:65:e4:20:4b:
d1:2a:f6:c7:ff:56:ca:6c:3d:b3:d4:83:7d:23:5c:
65:3f:d7:a9:56:c4:5c:68:71:9c:ff:b5:42:dd:45:
57:02:cf:92:de:39:d8:43:3e:0d:12:70:d6:e2:f5:
e6:e5:aa:d1:f8:c3:b0:ec:7b:ad:fa:40:b6:80:df:
43:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:78:6C:38:74:24:89:1A:36:1E:48:CC:41:4A:8B:42:08:30:FB:BE
X509v3 Authority Key Identifier:
keyid:A1:34:71:B5:00:2A:4E:B6:49:61:25:CF:58:73:7F:0D:EB:AD:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oTRxtQAqTrZJYSXPWHN_Deutrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:07:e3:71:03:93:5d:82:e2:c9:d8:88:b7:9f:02:00:e3:4c:
b2:d9:b2:06:21:7e:ea:21:17:4b:78:88:15:40:5f:85:35:65:
21:dd:25:94:dc:fa:de:ea:c1:0a:e7:26:76:86:ef:46:f6:c4:
cf:ed:a9:83:04:e7:dd:f6:51:c0:f5:24:ca:46:ce:9b:59:36:
28:ea:5c:e4:de:6c:f6:ae:ba:b3:5d:0b:e9:11:65:47:90:04:
1f:41:b0:9a:01:b5:4d:c8:6a:a0:e3:1a:ac:40:ec:83:95:73:
cf:a2:9d:95:0c:26:cf:ed:9d:00:7f:94:f6:49:e2:9c:e7:f3:
c4:d5:c1:43:5f:a5:a8:0b:35:15:e8:6a:b7:e7:ca:12:cf:94:
ad:08:30:07:32:7a:b1:e9:e9:0e:7b:a0:96:d2:0c:df:e6:59:
6e:bd:d1:a0:97:19:2a:c6:22:b7:e3:62:bc:e3:9a:9c:b8:7f:
b6:7a:b3:b4:f4:34:da:e7:df:db:5f:bc:b7:2a:13:7b:3a:68:
3d:7b:4e:39:e3:11:46:19:8a:fe:16:d4:bf:03:3c:03:6e:43:
a7:d0:fe:4c:16:b0:36:3b:c7:0e:51:63:61:4b:f0:3b:64:60:
47:b3:42:44:2a:cf:01:4c:76:2b:f6:a7:e7:b6:7d:fb:95:7d:
be:09:6f:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 07:02:08 2026 by rpki-client