Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
File: 1DsiEwqpp3NCVHaewTv-Fx-h4os.mft (raw, json)
Hash identifier: VAQOejVegejZztDEfLI5+Q3Y7dR3HKerScAnlfkE/tg=
Subject key identifier: 5B:42:D7:AC:C7:FF:2D:3C:08:A2:F6:5E:35:09:81:EB:3B:01:03:EA
Authority key identifier: D4:3B:22:13:0A:A9:A7:73:42:54:76:9E:C1:3B:FE:17:1F:A1:E2:8B
Certificate issuer: /CN=d43b22130aa9a7734254769ec13bfe171fa1e28b
Certificate serial: 019F190D5EB4834588808F098DC6BE206E9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
Manifest number: 0E97
Signing time: Tue 30 Jun 2026 15:02:14 +0000
Manifest this update: Tue 30 Jun 2026 15:02:14 +0000
Manifest next update: Wed 01 Jul 2026 15:02:14 +0000
Files and hashes: 1: 1DsiEwqpp3NCVHaewTv-Fx-h4os.crl (hash: 23R7Rg7fiYnX2pJ4Tr7Qj1HR8OfO7r5tfC5kk50WCEY=)
2: 3SGaIwhtWysQLWn0sQ-j25aYWzk.roa (hash: 6nFcHI9+JyUVi2ufE9HEixwgDofNaQHxTSquSnDsJV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0d:5e:b4:83:45:88:80:8f:09:8d:c6:be:20:6e:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d43b22130aa9a7734254769ec13bfe171fa1e28b
Validity
Not Before: Jun 30 15:02:14 2026 GMT
Not After : Jul 1 15:02:14 2026 GMT
Subject: CN=5b42d7acc7ff2d3c08a2f65e350981eb3b0103ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7d:2d:de:08:ab:ed:fa:98:7f:b8:c5:2c:63:
04:46:ed:05:9b:b9:ce:2d:36:56:03:ce:87:01:73:
14:e5:f0:7a:0e:33:83:91:c2:f2:46:b3:68:32:ae:
0f:5c:70:c5:d7:68:f3:14:b2:59:a7:43:f9:78:00:
b0:15:56:88:41:0d:11:90:2a:3d:53:22:88:0d:b1:
9f:91:9f:ef:bf:90:fe:8b:58:f5:aa:84:41:56:84:
06:a7:d6:c6:5c:34:72:c0:01:62:df:3d:9b:f8:34:
18:2a:10:c6:89:6d:7d:52:e5:f8:42:a0:ec:ac:36:
14:7f:10:9d:ed:07:bc:f4:a0:4c:d2:cc:0a:a1:e8:
0a:a3:45:c2:34:3f:9c:95:1b:aa:94:33:36:92:8d:
90:83:1c:53:88:7e:eb:6e:74:f6:eb:97:6a:9b:25:
eb:ae:60:c9:37:a1:c8:95:c1:aa:30:02:68:fe:4b:
88:bd:25:b8:3c:91:b7:ca:b3:17:df:27:2b:f9:af:
0b:85:7b:3b:99:0f:b8:0e:25:94:33:3d:fe:62:b4:
99:02:27:e5:58:28:64:e0:3e:dd:c7:04:f8:5f:8e:
3f:79:ae:aa:e9:a6:ce:7b:11:9b:30:ac:31:22:b2:
93:1e:69:9c:50:1d:d1:88:e4:ba:d7:a0:92:bb:31:
6d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:42:D7:AC:C7:FF:2D:3C:08:A2:F6:5E:35:09:81:EB:3B:01:03:EA
X509v3 Authority Key Identifier:
keyid:D4:3B:22:13:0A:A9:A7:73:42:54:76:9E:C1:3B:FE:17:1F:A1:E2:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:1f:b9:17:01:f5:9d:34:66:9c:54:2f:b5:77:4c:0d:a3:8a:
17:19:82:a6:ec:4e:76:a2:ad:ec:11:0b:4e:c2:f7:d9:29:0b:
92:d9:a8:4a:6c:4f:bb:cc:bb:0e:75:9b:38:42:4b:e2:ce:a6:
b4:d8:84:70:bc:c8:c3:0d:28:7c:8b:93:3b:61:99:b7:06:d1:
42:f2:c8:89:02:c4:da:b3:d3:d5:1b:a5:18:e0:6b:87:7f:41:
7a:fd:55:ba:c3:15:7a:65:35:7b:bd:fc:8a:95:a9:d0:16:75:
b3:82:62:02:92:2b:c8:d0:64:a7:ee:9f:2a:d8:7a:a4:27:a1:
64:1d:07:e2:e4:e0:4a:f4:2e:d5:9b:32:6b:ff:03:28:05:2a:
87:30:7f:c2:82:6d:00:e6:ff:67:99:37:e3:6d:4a:5c:09:4f:
df:50:a4:f8:f5:05:83:e9:88:71:fb:d5:7f:bc:a5:2c:58:50:
56:ce:d4:ac:8f:aa:81:a5:06:78:2a:85:ca:99:2f:1c:ab:5a:
86:c0:4b:08:55:b0:fb:f0:18:38:5b:ee:8c:3e:d6:0d:a7:08:
db:fa:f5:35:a0:fc:3d:77:90:92:fc:51:a1:e9:1f:99:88:52:
7b:a4:67:7f:43:6b:95:2a:18:2a:99:7d:d8:1a:6a:ad:15:74:
9e:f0:7a:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:25:49 2026 by rpki-client