Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
File: cDbgTlO505Z8-dQY54tgu60HWDE.mft (raw, json)
Hash identifier: S8dWjQYbEEocKBUr7XIgQznZ01eH9lnInnh6N/9wE88=
Subject key identifier: 27:2F:B3:88:F8:66:00:EA:F5:01:8F:C9:2E:93:AA:64:AC:12:86:1F
Authority key identifier: 70:36:E0:4E:53:B9:D3:96:7C:F9:D4:18:E7:8B:60:BB:AD:07:58:31
Certificate issuer: /CN=7036e04e53b9d3967cf9d418e78b60bbad075831
Certificate serial: 019EB5B27D09EC04B37334CFE7C3165D8CEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cDbgTlO505Z8-dQY54tgu60HWDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
Manifest number: 04F8
Signing time: Thu 11 Jun 2026 08:00:33 +0000
Manifest this update: Thu 11 Jun 2026 08:00:33 +0000
Manifest next update: Fri 12 Jun 2026 08:00:33 +0000
Files and hashes: 1: S00d78TItkDHq888CPL8snBiq8U.roa (hash: xbbWOfkY4EBmGgNTfua9nJ1QvCvgAkZPsqc/WKzPEio=)
2: cDbgTlO505Z8-dQY54tgu60HWDE.crl (hash: pWKF18JcnUkAKXY9jfxDD6dRR+1xqc3L4I00K564XiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cDbgTlO505Z8-dQY54tgu60HWDE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 08:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:b2:7d:09:ec:04:b3:73:34:cf:e7:c3:16:5d:8c:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7036e04e53b9d3967cf9d418e78b60bbad075831
Validity
Not Before: Jun 11 08:00:33 2026 GMT
Not After : Jun 12 08:00:33 2026 GMT
Subject: CN=272fb388f86600eaf5018fc92e93aa64ac12861f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b3:26:db:09:29:e6:88:f8:c0:e1:92:0f:f0:
6e:5b:15:53:2e:11:86:14:0d:c5:68:14:54:90:14:
f9:fa:b6:2f:8a:75:6a:f7:6a:83:ad:13:ec:ce:a7:
c9:84:91:e7:6d:1b:a6:cb:b2:36:a4:25:bc:c9:f8:
3a:3c:53:9f:8b:ec:0d:fa:f9:aa:d7:f2:26:7c:52:
58:f7:55:f8:b2:74:f9:72:70:5c:0c:24:a7:65:94:
b3:f2:35:c0:b6:b2:5d:88:c6:3f:ba:59:3f:6a:bc:
b8:e6:53:f7:49:20:b2:56:53:3e:e3:40:24:7b:66:
db:75:e3:42:c5:88:fc:6f:df:b3:56:1a:2d:a1:73:
cb:02:10:02:0e:7b:c4:fd:35:b0:53:91:8c:13:46:
05:4b:b8:07:9e:66:c2:84:16:a7:9d:78:85:07:36:
8e:f2:37:f0:80:e1:4d:44:03:06:ab:1c:7b:cd:64:
17:64:e8:5a:2e:70:a7:9e:c1:9e:00:9a:84:71:4b:
fa:e7:e7:ed:c3:a8:2c:7b:d5:da:d7:c5:b1:d7:69:
23:0d:96:47:1b:da:58:2f:2d:f5:30:b8:fa:2a:ff:
c0:eb:6c:4f:68:93:76:d1:c0:eb:d9:3d:06:1f:66:
fb:8f:5f:d2:5a:f6:31:da:0a:1f:82:71:87:c2:79:
17:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:2F:B3:88:F8:66:00:EA:F5:01:8F:C9:2E:93:AA:64:AC:12:86:1F
X509v3 Authority Key Identifier:
keyid:70:36:E0:4E:53:B9:D3:96:7C:F9:D4:18:E7:8B:60:BB:AD:07:58:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cDbgTlO505Z8-dQY54tgu60HWDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:af:ec:dc:f2:1d:8b:ff:71:d3:2e:80:71:f2:8c:b3:16:d6:
a4:8c:87:61:a4:3a:9e:fd:b8:f6:c0:cb:12:cd:50:be:f1:48:
c9:4e:79:67:ba:cf:aa:13:d5:91:e6:fe:d9:43:35:75:88:64:
cd:c7:93:02:82:27:60:ba:e1:0d:ad:63:73:33:f4:43:90:c7:
d5:a7:b2:a0:7d:5a:60:85:00:7e:d5:ed:20:ba:e7:ad:c0:04:
49:fc:86:c6:d6:e3:7b:48:ed:01:f5:33:79:b4:a2:20:f9:e8:
d6:06:37:35:04:c0:74:2b:0d:de:d6:53:a8:b3:02:d3:11:b8:
58:33:d8:38:13:96:b0:ad:45:3a:7d:fc:fa:0c:7e:d5:24:e7:
f8:67:70:45:d7:57:e3:31:c8:7b:dd:f7:4d:e1:e4:54:4e:8e:
5f:bc:70:66:d3:3d:cd:9d:e0:1c:8d:b9:60:b2:53:f8:b6:ec:
96:4f:bc:79:19:57:b9:a4:a6:a8:a8:31:9b:bc:d5:ad:b3:12:
79:13:2b:1a:6e:55:5c:c7:d3:f5:f0:ad:83:f1:c9:5f:e1:d5:
86:49:7c:c6:30:37:de:71:fb:20:d5:f4:72:b9:16:74:f5:8a:
32:01:7b:27:4a:5d:c0:2f:11:bc:97:ba:6e:9d:2c:ef:21:d5:
f7:53:9a:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 17:53:49 2026 by rpki-client