Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
File: D6j7U5miekMK5yfFMs0iSZnohk8.mft (raw, json)
Hash identifier: S1rYM8t6ghcOZ/QU0ApPv1ZH/Ir85BfbdkACvuFMd6g=
Subject key identifier: 2B:7A:0E:40:8E:04:F6:AF:39:B4:EA:4C:5F:0C:3C:8B:ED:EF:CA:3E
Authority key identifier: 0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
Certificate issuer: /CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Certificate serial: 019E30A9764C09CBDFC98D7738C9A91ED63C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
Manifest number: 059A
Signing time: Sat 16 May 2026 12:01:12 +0000
Manifest this update: Sat 16 May 2026 12:01:12 +0000
Manifest next update: Sun 17 May 2026 12:01:12 +0000
Files and hashes: 1: D6j7U5miekMK5yfFMs0iSZnohk8.crl (hash: JQ18c2xgiyntIAc3dT0FJH8CHJ3rQD/zmSFZlq8zFQU=)
2: N3bXffW8yKFqU5UMm7fvxG-jz6A.roa (hash: bdRoY8TZDQQa0PscQFcX1AU8tV8n2oKXvuQ9ADHxYzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:76:4c:09:cb:df:c9:8d:77:38:c9:a9:1e:d6:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Validity
Not Before: May 16 12:01:12 2026 GMT
Not After : May 17 12:01:12 2026 GMT
Subject: CN=2b7a0e408e04f6af39b4ea4c5f0c3c8bedefca3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6d:0b:af:04:2c:6e:cd:41:e2:b0:18:30:5a:
fe:79:2f:78:7a:55:48:61:bc:e7:71:2b:ca:ff:9c:
96:21:a6:80:08:cf:4d:be:fe:a2:24:fb:37:44:4a:
34:44:24:1b:78:69:50:a7:a6:cf:4d:e8:8e:20:1c:
6f:fe:e2:24:67:ff:31:d5:7a:53:25:31:3a:6a:8d:
21:85:84:67:7e:c6:f8:10:ea:7f:23:e1:e5:2a:61:
c3:9b:d3:e9:4d:cf:a6:ac:35:b8:c5:fe:d4:14:9f:
24:7b:58:79:46:3b:4b:14:d7:42:fd:5b:e8:b9:9d:
cf:fb:87:14:3c:45:55:2c:f4:b9:8d:e9:d0:2f:92:
b5:60:81:88:e9:18:28:18:47:82:13:2f:52:78:35:
9d:18:47:7b:90:f6:d1:00:a3:20:58:2e:bf:fd:fb:
89:d9:73:0a:e9:68:ff:2f:6e:61:72:89:85:ff:e8:
be:0c:34:60:69:45:38:40:21:30:2f:8e:a8:7d:9e:
eb:c5:7d:e5:fd:24:63:04:47:e0:fb:99:ed:1f:a6:
e7:bd:eb:99:27:0e:23:3d:60:94:f4:97:ae:9e:d8:
c9:2a:8a:5b:73:7e:ab:3e:c3:27:8a:ad:62:0d:f5:
96:a2:df:83:7a:8d:78:c2:3c:85:86:ba:0d:10:0a:
fa:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:7A:0E:40:8E:04:F6:AF:39:B4:EA:4C:5F:0C:3C:8B:ED:EF:CA:3E
X509v3 Authority Key Identifier:
keyid:0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:96:3b:bb:72:7e:ca:b1:28:7e:3c:62:26:b5:6b:e8:97:b6:
7e:0a:59:70:f2:e0:6f:cd:f2:c1:ea:06:42:a6:b3:28:61:1f:
8c:c7:3d:0e:35:47:66:d9:73:6d:c2:f5:4e:68:63:63:51:b2:
a3:be:8f:d5:f5:e7:95:a3:b3:4a:b7:a1:3e:49:ae:b1:08:36:
b9:35:fa:cd:ba:37:81:6d:54:f4:0e:c6:53:96:4c:12:31:fe:
3d:45:eb:33:b3:e6:43:a0:92:03:ed:8f:47:05:e7:de:90:d4:
33:63:ab:f7:1f:ba:90:f9:d0:f2:8b:31:fb:4f:3a:34:42:c9:
dd:7d:51:38:45:8c:03:74:7c:58:80:9b:2f:aa:7f:5c:ef:6b:
b0:d4:58:91:80:b1:0c:74:0c:20:a4:75:6e:a4:8b:25:71:f1:
78:5e:e6:0b:04:40:d1:41:1c:ec:92:aa:c2:a2:9a:b4:be:f4:
c3:b3:bd:c3:c1:0d:7e:ca:fd:1b:22:8e:49:61:fc:74:25:fd:
11:0f:bd:92:b8:ea:db:e0:dd:df:3a:20:c4:7f:b2:77:53:99:
ad:dc:48:56:f4:48:33:d3:e6:5f:c9:7d:d7:83:d2:e9:ff:32:
fb:fa:72:68:e1:0a:51:0d:e6:27:2e:73:7c:13:61:f2:19:6a:
8a:c7:bd:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 19:31:45 2026 by rpki-client