Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
File: DkOg3wWaUlGkALWh8TIboA0xINI.mft (raw, json)
Hash identifier: no2Gj6XCaW08d7Me5m2OAaL1nW5YS64C0va5ulccOlI=
Subject key identifier: 5A:71:9A:39:84:8F:B6:54:DB:9D:DA:03:BE:DF:BA:35:38:C5:57:A9
Authority key identifier: 0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
Certificate issuer: /CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Certificate serial: 019F190D516BD2BF80F42CAC612E2C5D1F46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
Manifest number: 198A
Signing time: Tue 30 Jun 2026 15:02:10 +0000
Manifest this update: Tue 30 Jun 2026 15:02:10 +0000
Manifest next update: Wed 01 Jul 2026 15:02:10 +0000
Files and hashes: 1: 4dMXi4_OZ1hIYb5lfSEix8dXAV4.roa (hash: pso0l4AjjbTbnTQh+xQFS2oQ9IVZGMVy1LttU/eMjhU=)
2: DkOg3wWaUlGkALWh8TIboA0xINI.crl (hash: tVkNhIcv9WT5gNGj3ISNfkwzq5cs39W6Ap/zttprwkI=)
3: X5rHphgjA2Ovs-Yct52WJKfW_k8.roa (hash: fS9NXooFPX4VLQ4SoiMsokXMu0rmiVlmUkYsHNO+cLI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0d:51:6b:d2:bf:80:f4:2c:ac:61:2e:2c:5d:1f:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Validity
Not Before: Jun 30 15:02:10 2026 GMT
Not After : Jul 1 15:02:10 2026 GMT
Subject: CN=5a719a39848fb654db9dda03bedfba3538c557a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:5c:e4:53:bc:5a:59:14:34:83:21:dc:0f:fa:
f9:40:f2:77:b6:8b:36:14:eb:f6:bc:c4:54:b9:cc:
63:eb:74:3a:35:1c:12:78:a5:4d:d8:5b:d1:d6:04:
14:56:98:55:dc:b0:3c:60:43:8f:5b:7a:48:e2:eb:
a7:26:ed:d8:20:15:a2:ec:2d:64:a7:e3:b2:83:fe:
3e:cf:6a:df:bc:a8:61:3f:22:4e:1e:a3:7b:17:a7:
86:f9:7d:1a:cb:3f:1a:7d:c9:16:6a:48:76:ee:6e:
da:15:db:3c:60:d7:ad:e2:b8:25:5f:48:3a:fb:a2:
87:3f:42:a6:b7:cd:a5:fb:9d:89:37:08:65:42:b0:
c0:21:5c:b6:5c:86:68:d2:2e:cc:bb:eb:b5:c1:62:
aa:6f:09:54:40:fb:34:d6:48:bc:2f:51:41:3e:1e:
59:f4:4a:e7:d3:98:74:a3:31:f5:2a:f4:71:41:7b:
3c:de:eb:c3:31:2f:17:6d:f1:3f:f1:89:53:a9:d1:
2a:a8:ad:39:15:d2:ad:34:7a:e6:dd:07:50:1d:2f:
dc:6a:65:3d:31:a2:2c:45:7c:d4:c1:8d:48:03:d0:
01:fd:6f:2f:6e:32:c3:ce:f9:f6:00:b4:23:d3:6c:
d9:ec:d5:0d:55:d1:4a:e6:d7:84:6a:1e:69:85:4b:
eb:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:71:9A:39:84:8F:B6:54:DB:9D:DA:03:BE:DF:BA:35:38:C5:57:A9
X509v3 Authority Key Identifier:
keyid:0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:30:19:e5:14:a7:26:27:c4:7e:9d:44:3e:32:8f:bc:27:03:
7c:f0:a7:f7:7d:ec:aa:2a:f1:72:87:c3:39:a1:e6:cc:44:09:
11:73:b6:5c:0f:35:41:1e:64:fb:44:c4:a2:df:56:38:38:81:
29:52:c8:94:7a:05:34:64:b1:be:38:3f:5a:4a:82:1c:43:96:
d9:4a:45:21:cd:f9:09:c2:21:94:84:37:9d:51:a2:42:c1:ca:
04:d2:6f:26:38:a8:f5:04:e4:01:e0:3b:95:a8:83:34:46:71:
98:18:af:ef:71:d2:ea:e7:cb:63:57:c4:6c:89:c1:ba:19:02:
b7:cd:d3:36:80:7d:3a:5c:6c:bc:ca:14:22:56:cd:70:ad:55:
9b:5f:97:8b:72:2e:dd:36:b7:29:0a:22:4b:eb:3a:82:8a:a2:
84:04:f8:de:2b:09:3c:08:25:10:8d:76:0e:34:14:c9:e1:41:
84:d3:e0:bf:0c:be:cd:a4:97:ce:58:8d:a8:ef:c1:6d:d1:18:
85:5c:e4:43:14:97:71:51:53:f6:3f:ff:73:83:f0:1d:38:7d:
3f:14:d0:98:78:1d:ff:53:2d:e6:37:c0:be:0e:52:46:33:f7:
98:a0:1f:c2:47:cd:9f:a2:a1:14:00:c6:a8:2d:da:d7:cb:1c:
04:c2:79:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:22 2026 by rpki-client