Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
File: D5XJyafxmprXF-TapTDIXPmauXU.mft (raw, json)
Hash identifier: 7Dw6LNYLzB0/t9CYW68ootEgciBgV1l5Rply7TEA09s=
Subject key identifier: 8D:00:66:A2:B3:42:86:49:54:EA:4C:59:AB:ED:C1:8B:B3:66:3E:B6
Authority key identifier: 0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
Certificate issuer: /CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Certificate serial: 019D39AE762D3680277CB3BF59C258B42657
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
Manifest number: 08C0
Signing time: Sun 29 Mar 2026 13:00:27 +0000
Manifest this update: Sun 29 Mar 2026 13:00:27 +0000
Manifest next update: Mon 30 Mar 2026 13:00:27 +0000
Files and hashes: 1: D5XJyafxmprXF-TapTDIXPmauXU.crl (hash: Qnvzst37LUAwlBevyndxYAyt3pYe7zDaPHmkmTnHisk=)
2: IDbRzIjz9FoGej8HJqlL664b-8I.roa (hash: VRTrlkouQDtL6ZUrJRyEpfphRS5vZrTw/RpqnAvn+iU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:76:2d:36:80:27:7c:b3:bf:59:c2:58:b4:26:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Validity
Not Before: Mar 29 13:00:27 2026 GMT
Not After : Mar 30 13:00:27 2026 GMT
Subject: CN=8d0066a2b342864954ea4c59abedc18bb3663eb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b4:39:0b:c9:6c:5e:b8:4a:61:08:32:20:5a:
2f:f2:4c:cd:e4:21:4e:e0:80:98:10:f1:16:b3:51:
54:71:6f:cc:f2:79:7c:55:4a:18:65:b9:7b:41:99:
52:3a:16:35:f7:80:65:11:54:e0:1a:fd:88:01:98:
7a:07:bd:90:26:ba:7e:80:74:4e:7f:82:9e:0a:5c:
ed:98:ea:f7:e3:45:2e:5a:db:a0:0a:18:33:bf:6c:
7f:c2:44:07:78:dc:6f:3b:c9:3e:dc:4b:65:25:3f:
dd:e5:29:ce:ae:ab:be:0f:f1:a5:bc:2a:64:2f:d6:
e3:d9:5b:ae:c3:9e:2a:41:b9:4e:55:d3:4e:5d:c3:
48:3d:56:7a:c1:97:bd:77:6e:7e:44:26:10:9b:af:
51:d8:80:e7:7c:94:5b:2c:ec:30:65:fd:3b:94:d9:
30:16:53:b1:63:9e:02:26:6d:5d:9d:b3:d6:da:01:
36:66:15:92:52:a0:35:9f:e9:0d:74:34:52:ca:27:
d3:50:1e:de:e7:fb:d4:46:de:8b:bc:88:df:cd:11:
99:7d:4b:d3:29:be:04:aa:0f:53:67:7b:7e:ee:52:
c7:16:13:ce:b4:13:44:07:27:5b:a2:3a:c0:b8:27:
90:68:fb:cd:0e:17:42:18:67:2c:3e:1b:1a:32:7d:
a7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:00:66:A2:B3:42:86:49:54:EA:4C:59:AB:ED:C1:8B:B3:66:3E:B6
X509v3 Authority Key Identifier:
keyid:0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:6e:0e:46:43:28:8e:c9:a1:42:db:2c:29:95:81:e5:d1:6d:
15:19:87:22:db:25:f9:07:95:5e:48:c3:f6:5b:24:d8:ae:8f:
08:d4:01:31:3f:ac:50:4a:3a:d0:7a:d3:49:c3:35:06:e2:bd:
3d:5f:23:26:a7:1a:24:45:cd:3c:c6:9a:a4:24:6c:4b:1e:d4:
2a:02:44:6f:9c:13:5b:01:2f:61:97:9b:52:5e:75:3d:b6:bf:
3e:8c:c2:cb:29:9c:f5:a0:b2:2a:da:6c:77:ca:12:35:65:d4:
80:ba:38:ce:d4:1a:71:e2:b6:e3:47:40:b2:3d:6a:17:52:72:
01:6d:59:cf:21:cc:e8:23:dc:16:98:00:60:f3:c1:cf:fa:96:
f7:75:67:1e:ac:9e:33:63:c6:af:df:c5:6d:cf:3d:fe:29:53:
2f:15:dc:bc:a1:c6:2b:42:be:dc:02:20:dc:1e:fb:6d:28:c2:
34:dd:17:51:5a:14:f7:de:16:3b:51:a0:3f:fa:60:57:fb:f9:
fc:29:2d:0f:fa:ed:b8:b1:37:60:28:81:b7:67:46:95:3b:3d:
c8:8b:41:a2:d1:d9:56:be:18:e5:99:b6:79:18:e9:9b:be:b4:
f0:5c:1f:05:ba:80:a0:4f:29:42:c7:03:00:39:84:5a:6d:96:
63:a6:89:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:48:29 2026 by rpki-client