Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
File: Dv0crRIZAnVQiePKgLptfMxLm3E.mft (raw, json)
Hash identifier: DMfKqiv3+4okADrt3MjEQLEaJW1GlqkVqOAYU4v4fpU=
Subject key identifier: 9F:FB:30:BC:9D:6C:41:28:6D:84:22:43:B7:33:13:6B:83:38:66:90
Authority key identifier: 0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71
Certificate issuer: /CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71
Certificate serial: 019E2FCD82777584E05124A88457B323C3A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
Manifest number: 0F0B
Signing time: Sat 16 May 2026 08:00:57 +0000
Manifest this update: Sat 16 May 2026 08:00:57 +0000
Manifest next update: Sun 17 May 2026 08:00:57 +0000
Files and hashes: 1: Dv0crRIZAnVQiePKgLptfMxLm3E.crl (hash: J0e5QmfRAw480IM2QMWRhNav9e5zVctCI2651A5PCGA=)
2: Ync302nWoIDxqRaEpHli5zPb-l0.roa (hash: CuUUdJvVMWZ1G3401/kid+n0FU2EaOY59WBjrBRwy1o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 08:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:cd:82:77:75:84:e0:51:24:a8:84:57:b3:23:c3:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71
Validity
Not Before: May 16 08:00:57 2026 GMT
Not After : May 17 08:00:57 2026 GMT
Subject: CN=9ffb30bc9d6c41286d842243b733136b83386690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fd:31:4f:7a:f9:30:2f:28:e4:54:d5:14:6e:
d8:d8:22:1c:c4:38:3b:1e:99:6b:06:a8:e9:52:94:
1b:8d:ef:fc:97:07:54:5a:ef:b4:ae:19:3f:f5:f8:
92:09:50:d2:a7:89:b8:91:c7:7d:d8:05:45:3c:53:
64:61:b5:bb:c5:04:33:96:f6:26:b2:69:df:89:38:
61:6d:22:e3:1f:53:60:db:f2:1e:7f:3c:00:17:ff:
3a:d4:7f:a3:71:22:eb:d0:db:06:77:fd:e5:8c:e0:
ba:ac:6c:dd:41:ed:58:dd:3c:12:f7:6b:b9:e7:35:
71:b6:60:60:db:6c:3f:e4:ad:19:d6:6b:6b:8f:3e:
29:3b:a6:ca:0e:54:b2:78:94:39:40:0e:34:44:86:
46:49:1e:c9:82:c8:f8:53:04:cd:11:27:ac:c0:d9:
a5:7e:63:67:da:19:77:28:3c:30:f9:9e:4e:85:e3:
d7:11:5b:be:1c:7a:6a:e8:5d:14:c9:c2:d8:49:5e:
05:e0:18:58:92:6c:82:b6:e2:bf:60:94:6b:ef:0b:
1d:49:8f:98:3c:a2:20:a3:85:2a:75:77:a2:45:28:
1b:e3:d0:42:e0:d6:c3:06:29:b9:53:ac:d2:cb:7a:
83:dd:1d:3d:89:2a:85:46:1d:e9:d9:8a:ae:6a:57:
8e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:FB:30:BC:9D:6C:41:28:6D:84:22:43:B7:33:13:6B:83:38:66:90
X509v3 Authority Key Identifier:
keyid:0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:d1:3c:4a:f6:f7:ca:8d:7d:19:12:c1:81:9a:1a:49:ee:fa:
5a:59:57:e2:4f:bf:ad:d7:29:90:8b:33:4f:78:df:64:84:a6:
19:24:75:37:96:c6:10:28:dd:11:23:5c:fa:23:09:09:0f:c4:
66:c1:35:99:11:77:09:a7:86:d3:d9:01:2a:25:95:5d:49:e6:
ff:16:b1:fe:1c:c0:2f:e3:07:72:3a:18:8f:01:30:e4:8c:b8:
a9:7a:70:ac:42:80:59:95:b0:37:99:2b:7a:eb:5f:4d:f3:8b:
81:4f:ec:79:4e:8f:f8:bf:32:3f:34:df:5e:e9:4c:16:d3:ae:
56:42:c3:58:39:28:45:04:e2:87:72:b9:71:0b:b3:70:56:8b:
a2:b4:57:79:d1:25:19:ab:a3:56:73:d3:77:b5:0f:46:bd:b0:
c6:ba:7c:7c:6c:64:75:ce:34:2c:06:3e:03:bb:92:96:c0:a5:
82:20:7f:08:41:a7:9e:b5:fc:5a:e4:d6:b9:fd:1a:35:14:1d:
ee:d9:18:2f:1e:33:6b:06:18:12:3c:6f:e4:99:6b:c0:77:f8:
e8:22:db:c6:36:43:60:c6:fd:e5:b6:99:09:4c:7f:6e:84:ba:
54:d6:44:62:7f:33:3c:c5:fc:4d:d6:d9:71:9a:f7:7e:89:09:
b3:fc:32:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:27:09 2026 by rpki-client