Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.mft
File: DloI_DRpD1LbDCt-R-jlOIMUWpg.mft (raw, json)
Hash identifier: acl0/1BPYl+tC4JGOx6AC0nS5wgz75WHNt7gemfn4Lk=
Subject key identifier: D5:67:33:23:68:F3:26:93:C1:73:C4:E9:B9:A4:3A:14:7D:1E:97:0C
Authority key identifier: 0E:5A:08:FC:34:69:0F:52:DB:0C:2B:7E:47:E8:E5:38:83:14:5A:98
Certificate issuer: /CN=0e5a08fc34690f52db0c2b7e47e8e53883145a98
Certificate serial: 019E284BCE77CC6FC2EFF4B77DE1292F1E0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DloI_DRpD1LbDCt-R-jlOIMUWpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.mft
Manifest number: 041D
Signing time: Thu 14 May 2026 21:01:57 +0000
Manifest this update: Thu 14 May 2026 21:01:57 +0000
Manifest next update: Fri 15 May 2026 21:01:57 +0000
Files and hashes: 1: DloI_DRpD1LbDCt-R-jlOIMUWpg.crl (hash: 2rmkLYFGKUzEksdqm/OZNf2roFB3m5SVuCH4xRj4wh4=)
2: LOtYNSOIJLqn8y7bAA6r24saOkk.asa (hash: jnFWZlKsQlmviLgHTcWDoVumAZhReG7QINLCGxqwiGo=)
3: ZHi1ZhCdWfH9BoGN5VcU78t29bk.roa (hash: SRJcc4sRWkIGgmHfVj6UPyJviHaRkjxeQWqok2u9PGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/DloI_DRpD1LbDCt-R-jlOIMUWpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 May 2026 21:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:4b:ce:77:cc:6f:c2:ef:f4:b7:7d:e1:29:2f:1e:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e5a08fc34690f52db0c2b7e47e8e53883145a98
Validity
Not Before: May 14 21:01:57 2026 GMT
Not After : May 15 21:01:57 2026 GMT
Subject: CN=d567332368f32693c173c4e9b9a43a147d1e970c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cd:8c:18:73:13:92:db:e1:1c:bb:56:23:f6:
92:98:c4:43:c8:1d:6a:88:c0:d5:47:c1:95:aa:09:
b4:da:a2:56:91:d2:05:4f:2b:56:c5:17:69:14:0e:
fe:56:b8:83:ed:96:d4:65:4c:7d:59:2a:55:ba:32:
2a:9e:7d:18:05:2a:8b:9c:cb:56:02:1f:26:d0:28:
c0:0f:d2:cb:3a:5b:72:4e:ac:d8:b1:18:73:a7:4f:
e5:bb:8f:ee:42:53:8b:62:77:69:fc:fd:72:09:aa:
bb:18:21:79:cf:1e:2d:c8:10:f3:16:cf:97:c6:5a:
f4:c5:86:ea:98:a6:72:90:7e:98:2b:4e:fe:bc:8e:
23:85:b3:06:5f:15:10:4c:9e:9a:4b:67:b1:e7:9e:
01:e8:dd:eb:b5:61:a1:89:24:63:fd:8d:f2:d7:37:
bb:4e:9e:6e:fe:a1:fd:0d:37:46:56:76:00:0f:20:
ad:9e:f8:4f:fb:1b:b5:ba:64:36:3c:e7:d1:3c:b0:
c3:be:35:14:09:97:e6:b9:21:88:22:5c:a2:2b:55:
4a:b0:ee:c6:3a:47:32:ed:70:7e:f2:15:98:60:04:
3b:5e:7e:67:b9:7d:7b:32:2b:b2:10:65:49:24:48:
c9:ba:ef:8a:3c:a7:2c:2b:36:6c:ff:35:fc:c0:38:
f9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:67:33:23:68:F3:26:93:C1:73:C4:E9:B9:A4:3A:14:7D:1E:97:0C
X509v3 Authority Key Identifier:
keyid:0E:5A:08:FC:34:69:0F:52:DB:0C:2B:7E:47:E8:E5:38:83:14:5A:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DloI_DRpD1LbDCt-R-jlOIMUWpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:58:9b:5a:75:e9:c3:c5:c5:84:f6:c2:14:29:ed:00:cb:7d:
79:9c:11:aa:52:0c:74:54:5c:7d:d1:e8:c3:5f:02:8e:55:3b:
d7:ae:e2:10:97:03:c1:09:ce:0d:be:df:4e:7c:30:9e:4e:d6:
e4:cb:fe:e7:2a:0a:2c:4f:57:c5:eb:01:64:15:9f:aa:f9:58:
c2:7c:90:ad:a7:63:7b:31:fb:9f:ac:b6:6d:fa:83:47:d8:c5:
2f:7d:83:3f:a5:ea:03:0d:06:86:ff:4f:1f:83:fa:48:dd:9d:
92:89:32:64:72:48:33:8a:3e:08:36:fb:bd:4b:7c:6e:7d:bf:
7b:ad:d0:4b:28:7d:d4:f3:d1:1c:d8:ab:ff:78:c2:0c:24:2d:
27:13:a9:1c:7c:51:ba:48:61:8e:b6:58:f3:3c:cf:c4:2a:5a:
e0:d1:1a:2f:63:25:3d:35:dd:87:ac:81:5c:02:7e:f1:01:6e:
43:7f:96:31:6c:11:99:b9:19:93:78:cf:82:d8:19:71:3f:97:
67:44:6b:d4:4e:5d:96:ed:5d:b6:06:79:ac:41:30:65:d9:ea:
e8:75:02:49:0c:39:2f:77:9d:9f:8a:79:53:21:0e:6c:30:e4:
c9:d6:06:d0:92:e1:2c:0b:31:e7:39:23:68:0d:cd:69:b8:c9:
a3:56:31:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:15:35 2026 by rpki-client