Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
File: 23uiovC_o6dvXJkaR82YaMbR674.mft (raw, json)
Hash identifier: XHXXJR5N33EAJHahGkAWkk5mEwh1Ixx+ER+NI0dlYS0=
Subject key identifier: 18:7A:71:A5:BF:85:D6:89:89:E0:5D:4B:37:AC:2D:65:31:D4:6D:02
Authority key identifier: DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE
Certificate issuer: /CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe
Certificate serial: 019E31176817C2949CC6572DEE98FE513E05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
Manifest number: 15C2
Signing time: Sat 16 May 2026 14:01:17 +0000
Manifest this update: Sat 16 May 2026 14:01:17 +0000
Manifest next update: Sun 17 May 2026 14:01:17 +0000
Files and hashes: 1: 23uiovC_o6dvXJkaR82YaMbR674.crl (hash: chvqkITANAZUGYclQ6BoI8GdXWxAyxjsdaK1sJN8ESs=)
2: NRwgJUwXk3BWkcpGjCMp97lO_U4.roa (hash: cqI/kILVJcAeJ0Tz95y2zzvYBTUTuf7X5Zw7I2eBtl8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:68:17:c2:94:9c:c6:57:2d:ee:98:fe:51:3e:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe
Validity
Not Before: May 16 14:01:17 2026 GMT
Not After : May 17 14:01:17 2026 GMT
Subject: CN=187a71a5bf85d68989e05d4b37ac2d6531d46d02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:0f:3f:0e:f2:9e:0b:56:6c:40:3d:cc:0e:68:
54:1e:7a:be:d6:d8:21:8d:65:47:6c:04:a7:28:10:
be:ed:f5:56:3f:29:80:e4:1e:38:f2:0c:6e:14:cf:
71:21:b6:79:60:eb:e1:3d:9d:fc:b8:83:ed:e1:e1:
90:23:55:95:d5:8e:02:74:7d:6f:11:4d:1d:4f:de:
b2:d1:59:76:8a:71:81:17:c5:53:4c:ac:7c:79:f0:
7f:3c:15:b3:ac:38:1d:66:22:1b:50:7c:53:09:d7:
66:35:c6:b2:31:da:eb:27:54:3c:a8:f9:e8:80:48:
5f:21:b7:e7:4e:8a:d3:7a:06:f3:71:8d:b7:f4:12:
b8:7e:97:9e:78:5e:1b:3d:36:71:37:4c:3e:87:39:
00:8b:f4:54:af:a7:01:ba:f7:ee:d4:33:34:c3:f5:
66:ec:dd:3b:ef:03:08:ab:60:72:f3:cf:06:7f:72:
8a:3d:80:bb:93:b4:cc:a2:22:dd:6d:63:b7:a0:f5:
fa:db:46:97:cd:65:2f:b7:df:2d:dd:b1:e5:84:ae:
bd:b3:15:a9:12:49:c4:80:d3:d9:f2:eb:50:d1:3f:
13:cb:dd:15:87:10:87:92:42:49:da:e0:9d:2d:dc:
02:cc:bc:74:f8:f0:10:19:60:88:0e:4c:43:83:50:
d2:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:7A:71:A5:BF:85:D6:89:89:E0:5D:4B:37:AC:2D:65:31:D4:6D:02
X509v3 Authority Key Identifier:
keyid:DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:ff:68:1f:97:f4:74:db:b5:79:52:95:07:3d:da:2b:11:b6:
62:af:dc:1c:ec:e4:26:24:3b:a7:35:48:fc:f7:15:f9:68:2d:
6a:6e:1b:28:69:57:e9:e5:24:54:cb:47:f1:6e:71:37:56:6d:
38:02:c3:89:5c:ed:29:f6:a6:2a:91:57:a5:57:29:e7:c6:91:
66:b0:68:bd:9e:09:ce:98:38:20:f5:69:a2:7d:48:c6:df:08:
71:3c:eb:91:53:43:32:c2:cb:c4:de:23:99:5b:f2:d9:55:2a:
45:54:c1:b9:8f:61:27:e1:e4:9c:58:90:f2:f9:ca:a9:4f:85:
3b:44:8d:07:04:27:2b:03:da:4c:50:c0:aa:5b:09:b6:73:a2:
35:46:a0:9e:8a:93:5a:c5:b6:74:d0:58:58:94:fa:47:fc:1a:
07:e6:39:43:c5:cc:7f:2b:9f:ac:ef:4d:d0:4c:e8:4d:4d:ab:
24:c4:0e:24:f1:8b:f0:98:e1:a3:52:c0:91:62:6f:01:30:4e:
f2:a3:1d:3c:80:85:4c:7f:05:ee:af:32:4a:95:56:60:db:26:
59:ee:ec:e8:09:4b:7c:61:c6:fd:95:e2:ce:aa:b9:fd:46:76:
7c:ba:89:73:86:4d:af:0f:09:65:5b:ca:09:ca:1d:98:ab:8a:
0b:88:78:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:25:40 2026 by rpki-client