Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.mft
File: DloI_DRpD1LbDCt-R-jlOIMUWpg.mft (raw, json)
Hash identifier: MIxNehH8rpH7c0el9dwhpmt03Au72iuHnkyz6WqndTE=
Subject key identifier: 28:47:7E:21:3D:6A:4A:2E:9B:01:DD:43:F3:CB:7A:69:70:1C:72:AF
Authority key identifier: 0E:5A:08:FC:34:69:0F:52:DB:0C:2B:7E:47:E8:E5:38:83:14:5A:98
Certificate issuer: /CN=0e5a08fc34690f52db0c2b7e47e8e53883145a98
Certificate serial: 019F11F7C4215DBFCD9C442FE6D5AF5B6DEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DloI_DRpD1LbDCt-R-jlOIMUWpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.mft
Manifest number: 0496
Signing time: Mon 29 Jun 2026 06:01:18 +0000
Manifest this update: Mon 29 Jun 2026 06:01:18 +0000
Manifest next update: Tue 30 Jun 2026 06:01:18 +0000
Files and hashes: 1: DloI_DRpD1LbDCt-R-jlOIMUWpg.crl (hash: Run2tHV+0cQc8MxOELs90ylLiSI1oDjSG2eyX78wZHQ=)
2: LOtYNSOIJLqn8y7bAA6r24saOkk.asa (hash: jnFWZlKsQlmviLgHTcWDoVumAZhReG7QINLCGxqwiGo=)
3: ZHi1ZhCdWfH9BoGN5VcU78t29bk.roa (hash: SRJcc4sRWkIGgmHfVj6UPyJviHaRkjxeQWqok2u9PGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/DloI_DRpD1LbDCt-R-jlOIMUWpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:f7:c4:21:5d:bf:cd:9c:44:2f:e6:d5:af:5b:6d:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e5a08fc34690f52db0c2b7e47e8e53883145a98
Validity
Not Before: Jun 29 06:01:18 2026 GMT
Not After : Jun 30 06:01:18 2026 GMT
Subject: CN=28477e213d6a4a2e9b01dd43f3cb7a69701c72af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c1:0c:27:99:fd:d6:20:b3:d6:e7:42:8c:fb:
eb:c4:3e:f7:45:d0:cb:1f:7c:41:38:cd:f3:43:a2:
d6:44:48:e3:09:36:76:bc:e7:bb:25:f9:2e:4f:bf:
39:7b:df:a4:35:3c:f5:98:b2:e0:79:cc:3c:ad:60:
b2:2e:9f:71:6c:25:1b:93:cf:aa:17:5f:c4:17:f7:
0d:fc:48:da:1d:fb:8a:88:c1:28:b7:d8:61:0f:0a:
13:ec:52:9a:92:0e:9f:b1:ac:22:1d:4b:e2:be:ff:
03:52:d4:d2:39:eb:9d:4e:21:f9:be:46:59:f4:ea:
89:36:65:07:7e:9b:bb:9e:28:e2:f6:12:21:4d:aa:
df:69:e7:83:71:8c:02:1a:3f:5a:c1:dc:8e:79:3e:
c2:ea:a0:13:09:18:85:fe:62:58:16:3f:67:53:ad:
eb:1f:e7:c6:7e:48:09:bf:8c:76:27:43:45:7b:03:
f6:4d:9c:f6:60:81:3b:a7:c5:8d:87:b8:74:14:29:
9a:38:c8:c3:b6:75:be:66:59:55:7a:e3:b7:c6:37:
4e:ba:37:cc:7c:73:1c:88:5f:14:f1:7c:0b:77:78:
1d:b8:99:1c:e0:50:28:b5:3f:3a:9d:2e:dd:f1:1f:
38:41:41:f2:b4:de:c2:79:db:1d:7b:31:32:6e:ac:
a6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:47:7E:21:3D:6A:4A:2E:9B:01:DD:43:F3:CB:7A:69:70:1C:72:AF
X509v3 Authority Key Identifier:
keyid:0E:5A:08:FC:34:69:0F:52:DB:0C:2B:7E:47:E8:E5:38:83:14:5A:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DloI_DRpD1LbDCt-R-jlOIMUWpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:75:21:3d:1c:8d:51:25:fa:cb:4e:86:86:35:dd:25:a8:60:
d9:f5:7c:f9:9e:cb:46:aa:9f:3f:4c:b5:90:4c:8e:7f:5c:c6:
47:63:18:41:43:45:0d:da:c2:6c:7f:d6:b7:ef:ac:59:1c:17:
c6:9a:22:f9:06:51:83:e0:de:e2:8c:04:f3:86:3c:9c:ba:b3:
b9:d8:4e:1e:b1:f6:1f:44:4d:36:a6:5d:10:56:e7:64:e8:25:
e2:3b:13:23:ee:5a:24:4d:88:66:96:23:79:b7:aa:3a:7f:fa:
3f:07:72:90:d4:a3:26:ce:ff:26:13:d6:2b:06:e9:bb:10:cc:
de:5d:4c:ac:12:64:7e:b3:2f:49:7f:ef:81:72:ec:f0:a0:12:
12:7f:0f:b4:88:fe:4f:11:08:59:77:e6:75:d8:b9:c1:56:a7:
f8:3d:9e:09:b4:38:c5:52:80:72:bb:af:c7:5d:7f:e0:ec:a6:
31:76:93:3b:40:72:4e:4f:64:35:c4:10:be:a7:ca:05:e3:d3:
d0:f7:a3:a9:3c:ec:0e:47:43:fa:14:59:9d:4b:d1:a5:92:4c:
26:73:c4:ee:a2:e4:d8:28:f7:20:f8:bc:8e:b0:ba:ad:f9:38:
09:98:f5:2c:87:2e:2b:b9:b2:50:91:35:24:53:9a:04:59:e2:
3a:00:f0:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8R98QhXb/NnEQv5tWvW23uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlNWEwOGZjMzQ2OTBmNTJkYjBjMmI3ZTQ3ZThlNTM4ODMx
NDVhOTgwHhcNMjYwNjI5MDYwMTE4WhcNMjYwNjMwMDYwMTE4WjAzMTEwLwYDVQQD
EygyODQ3N2UyMTNkNmE0YTJlOWIwMWRkNDNmM2NiN2E2OTcwMWM3MmFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnMEMJ5n91iCz1udCjPvrxD73RdDL
H3xBOM3zQ6LWREjjCTZ2vOe7JfkuT785e9+kNTz1mLLgecw8rWCyLp9xbCUbk8+q
F1/EF/cN/EjaHfuKiMEot9hhDwoT7FKakg6fsawiHUvivv8DUtTSOeudTiH5vkZZ
9OqJNmUHfpu7niji9hIhTarfaeeDcYwCGj9awdyOeT7C6qATCRiF/mJYFj9nU63r
H+fGfkgJv4x2J0NFewP2TZz2YIE7p8WNh7h0FCmaOMjDtnW+ZllVeuO3xjdOujfM
fHMciF8U8XwLd3gduJkc4FAotT86nS7d8R84QUHytN7CedsdezEybqymRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFChHfiE9akoumwHdQ/PLemlwHHKvMB8GA1UdIwQY
MBaAFA5aCPw0aQ9S2wwrfkfo5TiDFFqYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGxvSV9EUnBEMUxiREN0LVItamxPSU1VV3BnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMTc4NDktN2NjZi00ODE1LWJjNjkt
YTc3ZjBiMzIxNDRlLzEvRGxvSV9EUnBEMUxiREN0LVItamxPSU1VV3BnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMTc4NDktN2NjZi00ODE1LWJjNjktYTc3ZjBiMzIxNDRl
LzEvRGxvSV9EUnBEMUxiREN0LVItamxPSU1VV3BnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyHUhPRyN
USX6y06GhjXdJahg2fV8+Z7LRqqfP0y1kEyOf1zGR2MYQUNFDdrCbH/Wt++sWRwX
xpoi+QZRg+De4owE84Y8nLqzudhOHrH2H0RNNqZdEFbnZOgl4jsTI+5aJE2IZpYj
ebeqOn/6PwdykNSjJs7/JhPWKwbpuxDM3l1MrBJkfrMvSX/vgXLs8KASEn8PtIj+
TxEIWXfmddi5wVan+D2eCbQ4xVKAcruvx11/4OymMXaTO0ByTk9kNcQQvqfKBePT
0PejqTzsDkdD+hRZnUvRpZJMJnPE7qLk2Cj3IPi8jrC6rfk4CZj1LIcuK7myUJE1
JFOaBFniOgDw3A==
-----END CERTIFICATE-----
Generated at Mon Jun 29 10:37:13 2026 by rpki-client