Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
File: D9zw7HuvNJ6JLVERXCLA29Q1C44.mft (raw, json)
Hash identifier: OIqbkx4UVwKWLUNHtpGzSFM2p4zjrj7MG/GhZnRAKMs=
Subject key identifier: D5:A1:3C:5D:62:0F:69:ED:32:97:18:E7:22:4F:AF:D2:41:0D:70:3B
Authority key identifier: 0F:DC:F0:EC:7B:AF:34:9E:89:2D:51:11:5C:22:C0:DB:D4:35:0B:8E
Certificate issuer: /CN=0fdcf0ec7baf349e892d51115c22c0dbd4350b8e
Certificate serial: 019E314DE2688C1E56BA9E660932FB94DBA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
Manifest number: 05C8
Signing time: Sat 16 May 2026 15:00:48 +0000
Manifest this update: Sat 16 May 2026 15:00:48 +0000
Manifest next update: Sun 17 May 2026 15:00:48 +0000
Files and hashes: 1: D9zw7HuvNJ6JLVERXCLA29Q1C44.crl (hash: rcucswagW0vkNklcGc5kUQfdtVkOFq95MJZ3RbGeAI0=)
2: Jv3FrbaSeXZke2UP27JZQguG_qc.roa (hash: dePpEEDTqP/enapSxKmHvz68yt/UQtEn5OCz1CdZVCI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:4d:e2:68:8c:1e:56:ba:9e:66:09:32:fb:94:db:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fdcf0ec7baf349e892d51115c22c0dbd4350b8e
Validity
Not Before: May 16 15:00:48 2026 GMT
Not After : May 17 15:00:48 2026 GMT
Subject: CN=d5a13c5d620f69ed329718e7224fafd2410d703b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:70:84:a0:7a:a8:66:a5:74:d1:83:ea:bf:f5:
66:c0:48:e3:f1:69:9c:ca:28:47:34:e7:e4:d5:66:
6a:85:d5:ca:75:a1:64:60:59:4c:8f:16:e9:06:32:
61:42:4c:ce:93:c8:c8:f9:50:80:d1:51:1d:2b:45:
ed:d1:aa:9d:ea:37:62:5a:9f:39:42:6b:cf:a6:30:
fa:6a:b6:f4:ec:1b:59:63:b9:19:be:b6:ab:f6:19:
3d:15:8c:d0:07:78:b8:1d:92:8b:6f:79:21:63:0e:
59:7f:23:a9:85:a5:69:e0:31:3c:0b:96:e1:c8:fe:
d1:aa:ac:b7:1f:da:0c:84:f2:a1:2d:fe:fb:27:2e:
00:93:ab:05:0e:ef:d3:29:98:28:43:cf:0c:07:69:
42:d1:48:14:ca:40:de:0d:e7:10:8e:09:4b:14:71:
f8:2b:62:13:1a:f7:43:f4:ae:d4:96:d6:4e:2d:b0:
e8:d7:97:c9:d8:6b:e6:25:14:6f:a4:3c:ab:e3:36:
76:28:df:1a:71:3d:72:e9:78:b1:33:45:ba:ad:b2:
0b:1e:f1:33:7b:f9:29:f2:65:3f:de:e1:e8:17:9d:
ad:cd:86:29:8e:a9:46:de:e1:64:b9:f4:b7:99:6b:
eb:f0:c1:99:86:27:3a:bb:46:c6:21:d1:df:46:1d:
e7:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:A1:3C:5D:62:0F:69:ED:32:97:18:E7:22:4F:AF:D2:41:0D:70:3B
X509v3 Authority Key Identifier:
keyid:0F:DC:F0:EC:7B:AF:34:9E:89:2D:51:11:5C:22:C0:DB:D4:35:0B:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:7d:c0:8f:ec:e3:02:96:15:92:8b:c4:a6:7d:61:5b:f4:1c:
5f:96:80:9c:7d:2b:15:9d:5d:d8:3f:de:04:65:c4:2e:3d:d4:
af:37:ca:f8:7f:4f:ba:27:69:31:35:d6:b8:57:81:8f:ab:fa:
b9:db:b2:be:c5:c3:f8:e6:07:e6:e2:a5:11:9f:3b:4f:f6:95:
31:68:22:1e:22:97:97:7f:ab:83:16:f4:0a:13:c2:05:3a:88:
05:33:c5:e3:e0:fd:2d:a3:5f:c6:22:db:34:f4:e3:04:25:a7:
49:3c:1b:fb:7a:07:cc:32:d9:82:80:fa:3b:78:26:66:df:dc:
10:6c:97:56:0b:6e:6b:eb:4a:cd:a7:1e:f6:b4:89:62:64:09:
fb:c4:cb:3f:23:f8:6f:42:6d:4b:47:c5:ac:44:f0:e2:6d:e6:
2e:86:32:eb:44:ea:2d:06:df:12:2c:43:c9:fd:49:2b:56:cf:
11:9d:e6:dc:e6:e2:4e:6d:6a:25:2f:3b:a0:54:67:e8:25:d2:
f3:a0:32:fa:8e:ef:90:b0:0d:7a:03:9d:a2:61:cf:58:00:be:
47:b7:27:98:61:33:d6:28:c7:d0:c9:34:dd:b3:50:14:01:52:
97:5f:01:86:4a:ee:98:f0:ef:36:e1:dd:50:ee:23:96:e6:87:
74:c3:e3:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:39:30 2026 by rpki-client