Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft
File: oTRxtQAqTrZJYSXPWHN_Deutrns.mft (raw, json)
Hash identifier: g0PEvMnUQ4uB1n+H9S6dh/X/BoGpcGggBfH+CsSEuT4=
Subject key identifier: 1F:48:E3:AB:06:0C:DC:DB:A5:2B:80:0D:EA:D3:4F:A1:D4:E8:75:9A
Authority key identifier: A1:34:71:B5:00:2A:4E:B6:49:61:25:CF:58:73:7F:0D:EB:AD:AE:7B
Certificate issuer: /CN=a13471b5002a4eb6496125cf58737f0debadae7b
Certificate serial: 019F1265D5BA001F88626CB6AA1C1EFD8AE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oTRxtQAqTrZJYSXPWHN_Deutrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft
Manifest number: 090B
Signing time: Mon 29 Jun 2026 08:01:31 +0000
Manifest this update: Mon 29 Jun 2026 08:01:31 +0000
Manifest next update: Tue 30 Jun 2026 08:01:31 +0000
Files and hashes: 1: YMlojSojXsI2HBIediVAZQR53Uw.roa (hash: JmufbrfZpdywXGEriwFTpVhWPjQ10Wi0s4R9uPOJmgM=)
2: oTRxtQAqTrZJYSXPWHN_Deutrns.crl (hash: Aj1HBZE9JjoPr8gbn+BX6sAEIZjrP+Mz/lsJkqVibpY=)
3: ofNUkXwRdU2CygbCJb-JHa2iVxk.asa (hash: 2CgpH6bf+b3jg+rggjhpByWihzKk9amkpphMJMuERmU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft
rsync://rpki.ripe.net/repository/DEFAULT/oTRxtQAqTrZJYSXPWHN_Deutrns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:65:d5:ba:00:1f:88:62:6c:b6:aa:1c:1e:fd:8a:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a13471b5002a4eb6496125cf58737f0debadae7b
Validity
Not Before: Jun 29 08:01:31 2026 GMT
Not After : Jun 30 08:01:31 2026 GMT
Subject: CN=1f48e3ab060cdcdba52b800dead34fa1d4e8759a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:91:33:94:60:c9:79:d0:52:35:5f:f4:ce:1d:
e0:da:a3:56:2e:2f:6f:39:51:7e:95:35:57:89:22:
87:a0:6e:08:08:25:98:d1:ad:c5:7c:5f:19:72:c1:
ad:51:c2:dd:a5:53:69:ed:9e:1c:d9:8a:64:c6:78:
69:16:74:24:48:d5:53:d0:a1:3b:df:88:ab:47:e8:
45:12:d5:bb:56:d6:c0:7f:05:59:a7:ec:a2:8c:8a:
c4:b6:82:10:87:7f:e8:1f:b8:84:23:14:b6:96:a0:
68:f7:33:dc:d8:cf:72:52:78:ad:c0:13:1b:25:4f:
8d:28:27:63:78:63:aa:a8:25:1e:9b:cb:f9:5c:c6:
2c:4d:c0:b4:4c:84:97:4f:c5:89:d3:fa:62:ff:25:
ee:0a:c1:19:73:cf:81:bd:8f:f8:39:22:46:1b:66:
ea:e0:d1:ec:8d:50:43:bc:bc:46:bf:80:03:8e:ec:
0b:3f:56:7c:18:d9:ef:2e:57:99:52:58:10:7e:e9:
9b:08:c4:1d:fd:70:60:4b:ec:0d:7a:da:9e:13:17:
c9:b0:3e:f9:47:c9:0e:3b:99:9b:3b:f5:35:48:75:
79:00:dd:4e:74:6c:c9:0e:81:09:f3:87:6e:95:94:
59:25:64:8e:04:b4:d6:f9:3c:06:a5:61:43:96:e4:
42:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:48:E3:AB:06:0C:DC:DB:A5:2B:80:0D:EA:D3:4F:A1:D4:E8:75:9A
X509v3 Authority Key Identifier:
keyid:A1:34:71:B5:00:2A:4E:B6:49:61:25:CF:58:73:7F:0D:EB:AD:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oTRxtQAqTrZJYSXPWHN_Deutrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:3f:e4:3b:6e:10:3d:fa:d7:a0:d5:05:e9:7f:a7:0e:64:b3:
fc:ab:39:db:45:c1:9e:16:97:bc:1b:7c:d5:51:16:ed:9d:85:
1b:04:cb:30:44:8d:c6:5f:1c:26:03:5b:76:8c:54:9d:dc:0c:
f4:80:a7:85:dd:dc:3e:dc:10:d2:72:48:ad:05:90:be:9c:90:
ee:1d:e4:66:d1:ac:62:57:a7:18:fe:d5:e0:18:2f:cc:89:78:
ca:e6:6c:7a:dd:90:de:63:9b:d9:9e:92:d7:31:da:7a:0d:4f:
e7:e0:b0:23:03:b1:2d:01:b3:b1:aa:7c:42:c5:b9:6e:cc:da:
78:6a:85:7b:0b:6f:47:6b:e1:fb:7f:9f:a5:7d:6c:1f:6a:5d:
08:98:c4:7b:47:ab:61:62:4b:23:1c:73:21:bd:33:d4:ac:05:
a5:4b:a0:35:cb:08:4b:b6:e5:84:02:3d:e3:69:d9:be:65:b5:
ed:71:98:46:03:5c:27:4d:7a:78:07:d6:b1:35:9d:56:6e:01:
a3:84:af:2a:a0:da:7d:98:2b:79:ec:9d:9c:34:c8:63:55:b6:
b0:9a:16:5c:fc:ce:28:95:0a:ef:18:fa:08:24:c0:5a:a8:b9:
8d:bd:a6:14:3b:2a:1a:8e:19:d7:c4:cf:66:14:6d:c4:23:ef:
af:23:50:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8SZdW6AB+IYmy2qhwe/YrpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExMzQ3MWI1MDAyYTRlYjY0OTYxMjVjZjU4NzM3ZjBkZWJh
ZGFlN2IwHhcNMjYwNjI5MDgwMTMxWhcNMjYwNjMwMDgwMTMxWjAzMTEwLwYDVQQD
EygxZjQ4ZTNhYjA2MGNkY2RiYTUyYjgwMGRlYWQzNGZhMWQ0ZTg3NTlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA15EzlGDJedBSNV/0zh3g2qNWLi9v
OVF+lTVXiSKHoG4ICCWY0a3FfF8ZcsGtUcLdpVNp7Z4c2YpkxnhpFnQkSNVT0KE7
34irR+hFEtW7VtbAfwVZp+yijIrEtoIQh3/oH7iEIxS2lqBo9zPc2M9yUnitwBMb
JU+NKCdjeGOqqCUem8v5XMYsTcC0TISXT8WJ0/pi/yXuCsEZc8+BvY/4OSJGG2bq
4NHsjVBDvLxGv4ADjuwLP1Z8GNnvLleZUlgQfumbCMQd/XBgS+wNetqeExfJsD75
R8kOO5mbO/U1SHV5AN1OdGzJDoEJ84dulZRZJWSOBLTW+TwGpWFDluRC0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB9I46sGDNzbpSuADerTT6HU6HWaMB8GA1UdIwQY
MBaAFKE0cbUAKk62SWElz1hzfw3rra57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1RSeHRRQXFUclpKWVNYUFdITl9EZXV0cm5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9kOWU4N2ItNDUwYS00MTUyLWEyNDIt
ZDY5MTBiMjFhYjQyLzEvb1RSeHRRQXFUclpKWVNYUFdITl9EZXV0cm5zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC9kOWU4N2ItNDUwYS00MTUyLWEyNDItZDY5MTBiMjFhYjQy
LzEvb1RSeHRRQXFUclpKWVNYUFdITl9EZXV0cm5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlz/kO24Q
PfrXoNUF6X+nDmSz/Ks520XBnhaXvBt81VEW7Z2FGwTLMESNxl8cJgNbdoxUndwM
9ICnhd3cPtwQ0nJIrQWQvpyQ7h3kZtGsYlenGP7V4BgvzIl4yuZset2Q3mOb2Z6S
1zHaeg1P5+CwIwOxLQGzsap8QsW5bszaeGqFewtvR2vh+3+fpX1sH2pdCJjEe0er
YWJLIxxzIb0z1KwFpUugNcsIS7blhAI942nZvmW17XGYRgNcJ016eAfWsTWdVm4B
o4SvKqDafZgreeydnDTIY1W2sJoWXPzOKJUK7xj6CCTAWqi5jb2mFDsqGo4Z18TP
ZhRtxCPvryNQSQ==
-----END CERTIFICATE-----
Generated at Mon Jun 29 11:42:39 2026 by rpki-client