Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/c9ccc9-c405-428f-b773-dd23dc4241fa/1/DNScoZAd8CCTDOlx9lzBgKP8voE.mft
File: DNScoZAd8CCTDOlx9lzBgKP8voE.mft (raw, json)
Hash identifier: /sc0eqlGMD80zG645meftosr+DbDkf0lWTnvRv2JCv0=
Subject key identifier: 1D:27:18:9B:BD:82:FA:85:7F:1F:BB:CF:5E:C4:AE:67:A1:A1:73:AB
Authority key identifier: 0C:D4:9C:A1:90:1D:F0:20:93:0C:E9:71:F6:5C:C1:80:A3:FC:BE:81
Certificate issuer: /CN=0cd49ca1901df020930ce971f65cc180a3fcbe81
Certificate serial: 019E2F972507D141F8409A4E8945E9DEFB1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DNScoZAd8CCTDOlx9lzBgKP8voE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/c9ccc9-c405-428f-b773-dd23dc4241fa/1/DNScoZAd8CCTDOlx9lzBgKP8voE.mft
Manifest number: 190F
Signing time: Sat 16 May 2026 07:01:34 +0000
Manifest this update: Sat 16 May 2026 07:01:34 +0000
Manifest next update: Sun 17 May 2026 07:01:34 +0000
Files and hashes: 1: DNScoZAd8CCTDOlx9lzBgKP8voE.crl (hash: SgsbxMudLbREQYTTSd2eYRDXBmP7KizeiOetXzlkE/A=)
2: R1HqNhBgcIe-3oW62MxdKjDKqQw.roa (hash: qEknwbkXeioT3cO8P3jelWto+d9dLLFAHoISR08x8Pc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/c9ccc9-c405-428f-b773-dd23dc4241fa/1/DNScoZAd8CCTDOlx9lzBgKP8voE.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/c9ccc9-c405-428f-b773-dd23dc4241fa/1/DNScoZAd8CCTDOlx9lzBgKP8voE.mft
rsync://rpki.ripe.net/repository/DEFAULT/DNScoZAd8CCTDOlx9lzBgKP8voE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:97:25:07:d1:41:f8:40:9a:4e:89:45:e9:de:fb:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cd49ca1901df020930ce971f65cc180a3fcbe81
Validity
Not Before: May 16 07:01:34 2026 GMT
Not After : May 17 07:01:34 2026 GMT
Subject: CN=1d27189bbd82fa857f1fbbcf5ec4ae67a1a173ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5a:ae:51:8f:f5:63:be:68:9d:96:94:a7:bc:
d3:a8:ce:ed:aa:61:3a:d1:28:f6:f8:2e:70:4e:7f:
7a:13:f2:c4:e2:e0:20:d4:a4:26:25:f3:af:dc:db:
4b:58:31:d3:62:dc:b3:dd:67:dd:72:d1:33:1e:b5:
4d:ae:d4:07:65:a2:b7:37:d1:45:f1:f2:2f:ee:5c:
67:d4:d8:e0:03:f0:08:7c:32:94:9b:2d:9a:00:b6:
e2:ff:8e:b3:d1:6b:c1:e4:1b:b3:bb:6c:8c:a7:e9:
18:f2:46:8e:e8:97:aa:74:84:72:45:e9:3f:51:f7:
e7:de:99:00:05:97:5f:ca:7b:cb:11:a4:27:19:65:
a5:b5:66:fb:36:a7:f4:d6:94:f4:ad:c1:77:ea:d5:
4a:ae:c4:6e:b1:64:9e:36:50:7e:7e:70:10:00:73:
23:64:54:07:c5:84:40:e9:80:7b:44:fc:ec:64:f7:
f5:94:08:06:4d:28:81:7a:1b:1e:c4:19:94:97:5f:
b0:4e:ee:82:73:13:c5:02:15:75:25:9b:5c:c1:2d:
d1:f7:a2:e1:5c:5b:e0:63:e9:d3:4f:22:58:e2:3c:
57:76:21:6d:f0:75:7f:9b:a1:0a:54:da:4e:28:54:
7e:8f:6d:76:0d:4c:02:38:ed:2b:bd:ce:12:45:9e:
19:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:27:18:9B:BD:82:FA:85:7F:1F:BB:CF:5E:C4:AE:67:A1:A1:73:AB
X509v3 Authority Key Identifier:
keyid:0C:D4:9C:A1:90:1D:F0:20:93:0C:E9:71:F6:5C:C1:80:A3:FC:BE:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DNScoZAd8CCTDOlx9lzBgKP8voE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/c9ccc9-c405-428f-b773-dd23dc4241fa/1/DNScoZAd8CCTDOlx9lzBgKP8voE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/c9ccc9-c405-428f-b773-dd23dc4241fa/1/DNScoZAd8CCTDOlx9lzBgKP8voE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:6f:04:fb:13:eb:3b:fd:6c:44:f1:45:b5:c8:47:17:70:05:
8a:48:52:91:19:65:77:c8:6d:90:7b:a6:f2:1b:6e:17:83:1f:
33:cb:be:ee:70:3e:be:c9:9f:51:d1:ae:7b:e8:42:9c:b7:36:
2d:b2:2d:7f:62:0d:2c:f7:ac:65:a1:12:ee:70:13:75:57:5b:
47:dc:36:a1:99:f0:4e:0d:de:ef:3d:d5:b7:c0:59:a1:1f:95:
fd:ca:82:75:60:2f:3e:47:e7:04:71:e2:9e:42:65:b1:8e:97:
ce:75:08:cc:b6:eb:41:f5:13:8c:11:a6:f7:08:de:30:80:bc:
e5:bb:8f:1b:2a:14:45:3d:61:69:5b:a0:85:b4:b1:65:16:d9:
13:ae:5e:4d:a7:83:08:db:f3:be:f0:6b:c8:26:7e:2c:53:36:
a8:90:da:db:c9:57:df:ff:6f:43:4d:9e:55:32:9f:63:27:19:
28:9f:9c:ae:32:ac:b5:39:74:06:16:78:3b:bb:64:b6:6e:c4:
4e:04:d9:73:c6:c7:7b:52:10:00:61:20:47:6f:73:8c:2f:21:
e4:6d:37:1a:56:73:b2:89:17:6b:06:70:81:aa:86:a6:c5:aa:
45:fb:44:44:b2:37:f9:4e:ef:7b:ec:37:ce:98:08:21:b3:0d:
5c:83:f0:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:40:16 2026 by rpki-client