Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft
File: DlNS2UQbZcIBbtjrfi8jWVRDT10.mft (raw, json)
Hash identifier: KvnNDcCOvvWwcBjHaFOqTJemSGBQf86mIJyNU1p5IQg=
Subject key identifier: A1:3F:18:B2:73:D5:17:FD:04:25:80:4C:0A:38:47:93:3F:6E:0E:5A
Authority key identifier: 0E:53:52:D9:44:1B:65:C2:01:6E:D8:EB:7E:2F:23:59:54:43:4F:5D
Certificate issuer: /CN=0e5352d9441b65c2016ed8eb7e2f235954434f5d
Certificate serial: 019E3260E219F4459CBDC25A630C8CA66EB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DlNS2UQbZcIBbtjrfi8jWVRDT10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft
Manifest number: 04B8
Signing time: Sat 16 May 2026 20:01:10 +0000
Manifest this update: Sat 16 May 2026 20:01:10 +0000
Manifest next update: Sun 17 May 2026 20:01:10 +0000
Files and hashes: 1: 7HIHyHGDiVhFywfB2aUFsNjko-M.roa (hash: Iv4sArJJwlkOrpiX31eTz3pS1dqhRbw3dXCKTSlvosg=)
2: DlNS2UQbZcIBbtjrfi8jWVRDT10.crl (hash: qB3a/yKVv7N9QALXsShFR+DvjNdAfeZlNLvivLXly+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft
rsync://rpki.ripe.net/repository/DEFAULT/DlNS2UQbZcIBbtjrfi8jWVRDT10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:60:e2:19:f4:45:9c:bd:c2:5a:63:0c:8c:a6:6e:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e5352d9441b65c2016ed8eb7e2f235954434f5d
Validity
Not Before: May 16 20:01:10 2026 GMT
Not After : May 17 20:01:10 2026 GMT
Subject: CN=a13f18b273d517fd0425804c0a3847933f6e0e5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e1:89:eb:1a:ec:60:45:bc:29:ae:79:0a:48:
d7:25:40:83:ff:d5:22:3e:b8:f6:52:e0:4b:0a:70:
94:61:ed:3e:49:c2:33:b3:e0:be:52:55:4d:97:cc:
b6:29:d8:7f:65:df:9a:bd:d0:1a:12:2c:29:d5:69:
2b:ba:1e:ec:c6:67:b7:80:c5:1b:53:5c:bd:cf:8b:
2a:86:f2:77:77:c6:b4:6c:71:68:91:21:02:3c:54:
b7:7e:44:70:f6:d7:bf:5d:fc:18:d0:4e:cf:38:84:
02:66:b6:4f:e9:b5:68:0d:62:e5:1e:fe:98:11:e4:
c9:93:a0:db:f5:c7:7d:0f:ae:0d:02:c9:4c:b3:9d:
a1:7a:bb:04:a2:e0:2a:25:b4:26:c4:77:71:0f:3b:
90:cb:00:72:0b:ab:4a:91:42:5b:b7:4d:74:21:0c:
fe:24:81:e5:61:d6:d7:6e:a0:17:5a:3f:33:d2:5b:
10:c6:53:21:88:09:d2:c6:f9:0e:48:44:cf:20:97:
e6:50:9e:ab:82:f6:15:74:13:9a:2a:c1:40:d8:04:
8f:2f:17:f5:30:71:e6:fb:82:44:ac:bf:eb:7a:14:
ab:80:2b:63:2f:a7:c3:13:49:39:a6:4c:a2:8a:5b:
37:ed:ef:70:d6:b4:37:ac:62:a6:ab:80:f2:90:67:
ed:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:3F:18:B2:73:D5:17:FD:04:25:80:4C:0A:38:47:93:3F:6E:0E:5A
X509v3 Authority Key Identifier:
keyid:0E:53:52:D9:44:1B:65:C2:01:6E:D8:EB:7E:2F:23:59:54:43:4F:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DlNS2UQbZcIBbtjrfi8jWVRDT10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:28:2f:7f:a9:2f:cb:4f:2d:d7:49:ac:59:07:f1:7d:3b:dd:
c3:a3:ed:9e:76:94:72:95:e9:fc:64:5a:a8:30:08:e2:c4:e2:
7a:53:5b:26:e9:dd:13:3a:6a:b9:f3:b6:85:56:f3:48:b7:a2:
af:07:02:3d:03:30:d7:01:78:a5:71:26:9b:ca:ab:48:d6:2a:
40:58:43:15:ea:11:89:ef:3d:e0:01:1b:51:e3:9b:8e:02:53:
1d:56:2f:67:e4:27:ee:0a:30:af:0f:9a:b2:d8:5b:c0:d4:9c:
22:be:5f:62:5e:a0:8e:39:70:b8:af:50:9f:da:5f:5c:ce:d0:
b6:82:48:1b:31:b3:3e:39:0a:79:72:70:ae:31:6a:65:2f:66:
94:43:66:63:cf:d6:45:44:bf:5b:aa:eb:d3:d8:f6:ad:32:e0:
e5:f7:85:6d:91:43:1b:03:d2:da:f1:a6:a1:a8:ab:98:fb:de:
22:58:b4:59:53:72:5a:f0:d9:6e:1d:c7:a0:84:5a:4e:10:13:
1f:3f:cb:47:39:39:e0:ed:0b:6f:78:15:6b:c7:79:53:73:18:
93:a5:b5:02:da:45:5b:51:78:40:7b:b8:3d:b8:4c:6c:52:ba:
22:86:4f:13:7b:42:28:88:dc:a8:2e:e8:2f:d2:18:dc:8e:77:
b2:06:12:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 23:29:52 2026 by rpki-client