Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
File: cDbgTlO505Z8-dQY54tgu60HWDE.mft (raw, json)
Hash identifier: IJgdYvm61+ZEwYlcJBfbuW5fmFrMzVWLv7UPJvlzDyk=
Subject key identifier: 39:E5:0B:46:75:59:74:D1:EB:C4:84:C6:83:9A:6E:F6:DB:DE:F7:BD
Authority key identifier: 70:36:E0:4E:53:B9:D3:96:7C:F9:D4:18:E7:8B:60:BB:AD:07:58:31
Certificate issuer: /CN=7036e04e53b9d3967cf9d418e78b60bbad075831
Certificate serial: 019EB7A169A85B8D6E48158E40F3AA9178A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cDbgTlO505Z8-dQY54tgu60HWDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
Manifest number: 04F9
Signing time: Thu 11 Jun 2026 17:01:09 +0000
Manifest this update: Thu 11 Jun 2026 17:01:09 +0000
Manifest next update: Fri 12 Jun 2026 17:01:09 +0000
Files and hashes: 1: S00d78TItkDHq888CPL8snBiq8U.roa (hash: xbbWOfkY4EBmGgNTfua9nJ1QvCvgAkZPsqc/WKzPEio=)
2: cDbgTlO505Z8-dQY54tgu60HWDE.crl (hash: zSpNltRDaI06ydxS5c3ApyWKsmiCw4uzf5c+Oav36iY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cDbgTlO505Z8-dQY54tgu60HWDE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:a1:69:a8:5b:8d:6e:48:15:8e:40:f3:aa:91:78:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7036e04e53b9d3967cf9d418e78b60bbad075831
Validity
Not Before: Jun 11 17:01:09 2026 GMT
Not After : Jun 12 17:01:09 2026 GMT
Subject: CN=39e50b46755974d1ebc484c6839a6ef6dbdef7bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:56:84:c3:1a:30:05:5f:8e:ca:0e:9c:f8:8e:
24:20:79:b8:3a:32:53:a2:54:a8:6d:0b:ad:b5:a1:
8f:b6:c7:6d:4e:2f:12:95:fc:ed:2c:2f:89:bc:51:
05:ec:96:b7:e8:05:36:75:6d:9f:e3:b0:46:c7:21:
8b:aa:c5:54:26:0e:02:2a:75:0e:c9:35:ac:28:f3:
a3:9c:87:08:a0:6c:18:fe:c9:db:b7:90:1d:ce:1b:
f5:76:a6:6a:cc:65:fd:45:d7:f7:68:b4:3d:0b:68:
03:1c:1a:8d:9f:bc:86:40:73:3a:e1:9d:8a:ee:1d:
ae:70:12:b3:c2:a8:79:b9:ef:6e:88:c0:29:7a:f4:
02:6d:5f:3b:1a:d9:e5:9f:8b:41:52:d9:b8:67:ec:
08:19:8e:9b:b3:4b:f0:8f:29:6b:d7:03:7b:e9:57:
fb:0d:fe:5f:5c:49:63:d4:fc:7d:71:6a:41:3f:e1:
cd:d9:83:b4:af:43:b1:21:2a:ae:14:a7:ac:93:93:
69:f4:f2:7b:56:18:98:d7:86:b2:96:09:ab:f9:4d:
ca:33:4e:43:96:16:46:b0:d6:c1:bb:f0:9b:74:e2:
be:81:ea:21:5a:0e:e2:4f:95:fe:81:98:aa:cf:cd:
1c:be:de:b8:fc:ca:e1:d8:65:6e:51:d5:a6:27:1e:
e4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:E5:0B:46:75:59:74:D1:EB:C4:84:C6:83:9A:6E:F6:DB:DE:F7:BD
X509v3 Authority Key Identifier:
keyid:70:36:E0:4E:53:B9:D3:96:7C:F9:D4:18:E7:8B:60:BB:AD:07:58:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cDbgTlO505Z8-dQY54tgu60HWDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:57:82:8f:7d:d1:64:cb:9b:58:33:54:73:24:10:1b:40:09:
81:68:95:90:5b:58:bf:2b:cf:60:6e:d7:e7:86:59:de:5c:ce:
1a:88:e1:7a:93:69:59:3f:db:b5:e0:43:19:d9:94:77:2b:54:
02:a9:bf:51:6d:88:6f:a8:6d:28:58:55:c2:90:70:14:3e:08:
be:bf:53:b5:d9:7a:8d:72:66:47:38:f3:21:c4:3f:82:e9:be:
47:ae:04:5e:cb:91:fd:5c:ba:27:5b:69:4a:08:da:d6:1f:5a:
92:82:86:6e:d4:55:12:dd:3c:b1:14:0c:44:a3:12:c1:4d:09:
3d:fc:32:bb:bf:f7:ef:4b:43:97:e9:10:0b:68:27:69:b3:e9:
80:c0:87:2e:15:7f:78:b5:a6:12:32:ac:72:c3:9e:3f:46:eb:
87:ed:78:fa:3d:a2:6a:31:2d:70:99:40:6c:62:58:98:dc:04:
03:d9:e6:95:a8:a6:7f:74:04:0e:a8:83:f0:00:2c:e2:30:be:
02:00:65:54:4b:92:6d:d7:ef:53:86:6b:65:21:1d:2e:d6:64:
92:d2:7d:63:04:a9:51:40:c7:91:56:68:1c:7a:53:3e:fc:86:
62:44:6a:f5:f2:1f:7c:eb:97:af:8d:6c:a8:7f:a7:e2:e4:e1:
6f:1f:b9:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 19:03:04 2026 by rpki-client