Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
File: 1DsiEwqpp3NCVHaewTv-Fx-h4os.mft (raw, json)
Hash identifier: GPn4yjBL1zAC6ehty+cfFEa9TooYPAgtksPb/UqGACE=
Subject key identifier: 03:BD:62:74:4F:46:FE:C5:16:9E:6F:37:10:2D:ED:FB:0F:10:F5:59
Authority key identifier: D4:3B:22:13:0A:A9:A7:73:42:54:76:9E:C1:3B:FE:17:1F:A1:E2:8B
Certificate issuer: /CN=d43b22130aa9a7734254769ec13bfe171fa1e28b
Certificate serial: 019E2F96DD10122EB9EA781543EE3950948F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
Manifest number: 0E1A
Signing time: Sat 16 May 2026 07:01:16 +0000
Manifest this update: Sat 16 May 2026 07:01:16 +0000
Manifest next update: Sun 17 May 2026 07:01:16 +0000
Files and hashes: 1: 1DsiEwqpp3NCVHaewTv-Fx-h4os.crl (hash: LR24+4DHxfe9Wj+a0EPzParseP9JNZ2XJysXQbpa5v4=)
2: LcZ01B8XER2_rfHNBUAgVCnzOW8.roa (hash: 0WZJeMvXyTID6Mtu4m//BfRpROZSkchZp8tEs1f8aqo=)
3: tTSKZ9SBm5TzwVGPFr99l5iaN7Y.roa (hash: 6iyRKX1ykzt8wMyhT1hUZtasJQSEcc9fv+Jwo+YKOD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 07:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:96:dd:10:12:2e:b9:ea:78:15:43:ee:39:50:94:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d43b22130aa9a7734254769ec13bfe171fa1e28b
Validity
Not Before: May 16 07:01:16 2026 GMT
Not After : May 17 07:01:16 2026 GMT
Subject: CN=03bd62744f46fec5169e6f37102dedfb0f10f559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3d:54:9f:8e:72:97:70:18:7a:3b:92:57:e6:
3e:b8:5a:dc:c7:03:5f:c0:11:0f:f6:33:fd:5b:a4:
89:36:32:11:89:9e:56:f8:fb:ea:e5:ca:2e:dc:46:
ef:bb:a3:a2:d9:f0:b9:41:31:54:62:d8:81:db:ed:
09:fe:61:f4:7f:7c:f8:b5:5f:1c:36:9a:33:ef:cf:
7b:53:07:3f:eb:b6:12:20:9b:62:66:74:1a:7d:c2:
23:db:0c:f5:0d:c0:51:74:c5:62:77:f8:4f:fb:3b:
c5:94:c9:52:cf:22:97:c4:48:2e:94:1d:dd:19:24:
a6:e6:fc:d9:32:19:bd:9c:db:3e:0c:18:35:b1:d7:
cc:db:57:91:ec:45:0e:9e:f5:b7:68:6a:b7:f1:ae:
3a:50:a7:69:57:55:cc:a9:f8:5b:6a:d5:04:c4:1b:
63:a3:29:be:6e:c2:42:b5:f5:50:a0:65:3a:8a:59:
90:5d:69:b5:34:d7:f8:c9:17:f6:88:42:be:10:8f:
3a:b3:6e:d6:84:3f:5a:c0:92:f7:b6:1f:b6:f4:eb:
2a:63:1a:6a:46:64:2d:61:3e:06:96:d8:d0:f4:0d:
07:6c:cf:52:d4:e0:c2:18:15:46:db:32:1c:50:b4:
e9:19:d4:68:5d:3c:30:c9:db:7e:63:32:74:ec:e1:
c2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:BD:62:74:4F:46:FE:C5:16:9E:6F:37:10:2D:ED:FB:0F:10:F5:59
X509v3 Authority Key Identifier:
keyid:D4:3B:22:13:0A:A9:A7:73:42:54:76:9E:C1:3B:FE:17:1F:A1:E2:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:ce:4c:d3:c9:c2:84:62:5c:63:e8:4c:70:c3:54:21:6a:95:
0e:bf:ef:8d:bf:28:5e:b5:74:b4:c5:81:dc:21:d2:dd:07:3e:
a8:b4:7a:9c:19:87:c0:08:5b:17:3c:b2:3d:32:b0:9c:d7:79:
22:b4:49:19:11:45:3a:a3:75:4d:39:c3:e7:d1:8e:7d:33:cc:
bf:f8:08:e2:03:a7:1b:36:07:99:b1:f2:49:e9:f3:52:cc:ad:
f7:d4:20:24:92:93:81:8c:da:99:7e:db:5d:d2:b7:a8:c7:ba:
ad:64:09:56:b5:ac:45:72:bf:66:93:58:6c:27:0d:5c:d9:5a:
d8:cd:bd:53:59:7a:47:61:92:ed:cb:e1:cb:48:64:27:f2:c9:
55:a8:cb:db:a5:08:8c:4c:4f:41:3a:20:f6:6b:05:82:e0:b3:
59:c0:9f:41:ca:fd:f3:e6:09:84:85:88:d8:9a:82:35:d0:c4:
6f:af:bc:f4:21:ff:df:c0:da:fb:d5:99:5e:f2:4b:23:8d:cf:
b5:01:0e:27:6e:4b:a8:b4:66:68:85:3a:68:b0:31:5f:26:e3:
43:c6:a6:5e:0b:74:60:89:7b:9f:7c:c9:c8:bd:b6:b7:8f:5e:
b3:9f:bb:57:d0:dc:ed:69:28:fd:d6:0e:73:be:32:fa:fc:c1:
9d:db:23:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:13:29 2026 by rpki-client