Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
File: Dri8RONvrhbTcQL9DVGfKE1mPZA.mft (raw, json)
Hash identifier: pCGZoXsHSspjflqvKD13IS6BO1uX3lClGf87+YnWvQ4=
Subject key identifier: F2:D1:C1:14:69:E9:D9:9D:47:EB:9A:F6:A7:E9:84:C3:84:15:D5:4E
Authority key identifier: 0E:B8:BC:44:E3:6F:AE:16:D3:71:02:FD:0D:51:9F:28:4D:66:3D:90
Certificate issuer: /CN=0eb8bc44e36fae16d37102fd0d519f284d663d90
Certificate serial: 019E2F96D3E50CA71554953FF02832E3F2F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dri8RONvrhbTcQL9DVGfKE1mPZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
Manifest number: 185A
Signing time: Sat 16 May 2026 07:01:14 +0000
Manifest this update: Sat 16 May 2026 07:01:14 +0000
Manifest next update: Sun 17 May 2026 07:01:14 +0000
Files and hashes: 1: 9xaM71e9BMRFYv27V5xbMjdqOgI.roa (hash: D9u9E0DcXMocRKo5Wg6KGFp6zb0+RH3c9pC/yeH8pSY=)
2: Dri8RONvrhbTcQL9DVGfKE1mPZA.crl (hash: l9ARiYCUJHXv+Wm0G83b+XjrgEBvdUeRPBD7Ov27i7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dri8RONvrhbTcQL9DVGfKE1mPZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 07:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:96:d3:e5:0c:a7:15:54:95:3f:f0:28:32:e3:f2:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0eb8bc44e36fae16d37102fd0d519f284d663d90
Validity
Not Before: May 16 07:01:14 2026 GMT
Not After : May 17 07:01:14 2026 GMT
Subject: CN=f2d1c11469e9d99d47eb9af6a7e984c38415d54e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:29:a4:34:c4:49:80:ba:96:42:d4:25:aa:0f:
dd:de:9c:b7:86:0c:03:87:f1:73:10:0c:9a:b6:7b:
a1:33:2d:68:c9:f0:a5:c6:02:28:85:9e:1c:26:f5:
10:b5:a4:94:54:17:6c:ec:b7:d1:a7:92:8a:b4:66:
63:aa:d6:e8:c3:fd:17:c4:1e:6b:42:ac:98:45:59:
ac:3f:e8:30:b0:f9:7c:d1:d2:2a:8d:6d:0a:0e:d4:
c2:59:75:6f:f0:78:2e:85:d6:22:21:0c:60:fb:bd:
52:00:11:75:76:d1:b3:ee:77:2a:1f:56:3b:65:41:
3b:dc:9a:af:39:95:17:39:d3:19:58:19:c8:7e:75:
91:fe:ea:78:01:a3:8c:3a:f6:82:b0:f2:d1:ea:82:
c6:23:11:c8:36:b1:42:ae:56:81:12:fd:79:93:44:
82:3f:02:6a:ae:6c:c2:79:18:89:28:21:f2:8d:c1:
5c:0b:fd:3d:2f:a8:26:ed:9e:03:07:bf:0f:9f:92:
5d:03:dd:d1:b3:59:0e:f5:d4:e4:e7:91:56:be:90:
fb:6e:fc:b4:da:62:8a:08:f3:05:f9:d1:53:cb:a8:
aa:04:1e:21:28:6c:4e:bc:0a:69:4f:94:79:24:f6:
7a:de:56:85:ee:b3:57:bb:16:21:64:63:f8:b9:26:
46:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:D1:C1:14:69:E9:D9:9D:47:EB:9A:F6:A7:E9:84:C3:84:15:D5:4E
X509v3 Authority Key Identifier:
keyid:0E:B8:BC:44:E3:6F:AE:16:D3:71:02:FD:0D:51:9F:28:4D:66:3D:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dri8RONvrhbTcQL9DVGfKE1mPZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:30:e0:e8:bd:c7:1c:a4:99:b2:25:28:b3:b7:6d:50:48:8c:
e8:da:ca:73:2f:2a:01:a4:34:df:d6:ab:b1:20:10:80:c1:9e:
aa:96:4b:58:ec:6c:79:04:86:f2:29:31:f7:0e:7c:3d:20:6f:
ec:31:fc:84:fe:5a:97:fe:4f:25:95:cc:17:3d:f6:27:95:9c:
28:74:de:ce:f0:94:6e:6e:f5:9a:c1:43:a6:33:49:e9:b0:0a:
9a:44:37:9f:78:c2:fc:9c:4c:12:13:95:9a:4f:97:a3:ed:74:
a8:55:2f:a3:72:f6:cb:e2:fe:9f:db:92:44:2b:02:43:1f:aa:
66:ac:cb:00:2d:f0:78:a9:bd:43:ee:fd:0d:88:8f:1e:a4:c0:
9e:71:68:18:d5:c9:19:e0:34:1a:20:7b:1a:65:82:74:44:d2:
6d:5b:83:95:24:f6:dd:85:40:86:ca:75:ee:22:bd:3c:40:74:
9a:59:a9:52:91:92:12:75:d8:b8:5a:be:a8:d4:a7:ff:f4:44:
6c:be:7a:60:bc:3c:0a:51:49:19:76:fe:af:c6:a7:9e:20:5c:
1e:b9:24:ba:76:8e:af:7e:22:1d:d4:5c:39:4c:90:e2:67:60:
b4:97:c5:24:3e:bb:7b:07:b5:a9:bc:e4:bb:26:17:60:b7:8d:
59:61:f3:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:36:47 2026 by rpki-client