Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
File: DkOg3wWaUlGkALWh8TIboA0xINI.mft (raw, json)
Hash identifier: E8dDdny6cFcNMNVVMcWNmYCCAbk6WdE/Ze2Oc8yPoTc=
Subject key identifier: 94:06:F4:CE:E4:6D:EF:D9:80:DE:0C:DF:4E:94:F9:82:AC:DD:A2:29
Authority key identifier: 0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
Certificate issuer: /CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Certificate serial: 019E2F601787A0FE621A311E85EAE273EEA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 06:01:27 +0000
Manifest this update: Sat 16 May 2026 06:01:27 +0000
Manifest next update: Sun 17 May 2026 06:01:27 +0000
Files and hashes: 1: 4dMXi4_OZ1hIYb5lfSEix8dXAV4.roa (hash: pso0l4AjjbTbnTQh+xQFS2oQ9IVZGMVy1LttU/eMjhU=)
2: DkOg3wWaUlGkALWh8TIboA0xINI.crl (hash: hO07Cf5fJzFYKs/dUZVenSfOPBOFEz4/3hFTXtZAPI4=)
3: X5rHphgjA2Ovs-Yct52WJKfW_k8.roa (hash: fS9NXooFPX4VLQ4SoiMsokXMu0rmiVlmUkYsHNO+cLI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 06:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:60:17:87:a0:fe:62:1a:31:1e:85:ea:e2:73:ee:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Validity
Not Before: May 16 06:01:27 2026 GMT
Not After : May 17 06:01:27 2026 GMT
Subject: CN=9406f4cee46defd980de0cdf4e94f982acdda229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:98:ed:bd:ab:70:10:de:19:71:b5:5f:77:16:
a8:60:f3:a0:a2:62:2e:b3:32:7e:8c:57:47:3b:2a:
45:c1:3e:5e:1c:b2:9a:65:c1:36:22:a2:af:a1:47:
40:ca:66:46:4e:9f:86:ae:e6:ab:93:f8:e3:74:fc:
b6:dc:3c:bf:94:bb:4e:b2:21:b0:55:0a:23:34:c1:
5a:c7:aa:45:5c:5f:a5:ae:a5:88:4a:44:5b:86:b2:
59:f8:fc:52:b5:4f:09:f7:cb:94:f9:a5:63:17:7b:
77:86:fd:e9:31:26:79:8c:f0:09:b9:44:65:e4:56:
73:2a:ec:a3:cd:e7:71:f6:27:89:73:ab:f5:7a:17:
4f:19:ad:0c:9c:8f:ac:45:9c:b6:9b:b1:1f:1b:9d:
85:75:45:53:54:a9:2a:95:c8:d3:97:94:71:57:cb:
d0:ee:56:97:25:19:77:7e:95:be:5f:6d:5c:ed:ab:
b9:e0:bb:a0:42:e7:f3:8f:1c:1b:a5:a4:4d:29:d7:
5e:7c:15:e5:b5:bb:9a:0d:76:96:7c:5d:59:29:4f:
3c:dd:ab:a9:63:cb:43:09:d8:73:8d:3f:5f:67:72:
57:3e:ca:a8:9e:5c:c5:0f:8f:6f:5a:28:dd:27:be:
89:98:dc:09:66:d7:76:e5:89:82:fe:83:6e:b6:f1:
00:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:06:F4:CE:E4:6D:EF:D9:80:DE:0C:DF:4E:94:F9:82:AC:DD:A2:29
X509v3 Authority Key Identifier:
keyid:0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:95:41:21:37:3a:5c:38:f1:0d:79:31:cb:89:de:2a:02:7d:
a1:13:4b:df:50:c6:0a:ce:b1:8a:b8:89:68:ad:03:b0:65:94:
f9:af:90:50:04:89:07:03:23:a3:e7:22:47:ec:ff:59:a4:61:
7b:b2:bc:f1:f5:79:41:52:2c:fe:e4:24:bb:ab:cb:d7:00:03:
12:dd:eb:43:6e:6a:db:31:16:9c:cf:6c:77:99:01:ae:a2:83:
4d:c1:b6:7e:56:62:c9:b7:43:35:b8:66:24:ba:27:7d:40:98:
74:58:ce:17:bd:51:b7:19:11:c2:50:c1:f1:b7:51:c0:a9:77:
e1:77:3b:7e:ac:39:b6:d4:34:be:55:05:49:9e:8e:b6:bd:24:
7e:b0:be:d4:a9:7a:f5:b2:89:7d:d3:8c:44:64:e7:21:40:c5:
c8:75:18:3e:5c:8d:f2:7e:f5:0e:ab:de:4f:eb:4c:d4:39:62:
af:8a:bb:8e:b9:cb:bb:35:13:04:49:ad:d4:a3:e7:72:0d:d3:
02:c1:15:c2:2f:ed:a0:81:1b:c5:60:76:6a:2f:87:93:87:a6:
73:21:58:78:ec:6c:0b:b0:d4:0b:7a:67:a8:b2:a4:8d:60:b9:
29:64:cc:fa:f0:7a:c6:28:f5:20:6d:ab:56:52:1a:d5:6e:b7:
4b:07:9f:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:39:36 2026 by rpki-client