Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
File: DoMf1wxr03oqddeg6sAxyS2o4YU.mft (raw, json)
Hash identifier: N9rNDV+eGzX3qlQnD+NYfUFGyr5lMUKfY/WS7OJOx+Y=
Subject key identifier: EC:A5:B5:EB:7D:A4:EB:C3:AC:65:26:12:7B:62:30:7D:B9:88:42:1E
Authority key identifier: 0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
Certificate issuer: /CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Certificate serial: 019E31F384810AAFCF083EFB2745374902C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
Manifest number: 1593
Signing time: Sat 16 May 2026 18:01:43 +0000
Manifest this update: Sat 16 May 2026 18:01:43 +0000
Manifest next update: Sun 17 May 2026 18:01:43 +0000
Files and hashes: 1: DoMf1wxr03oqddeg6sAxyS2o4YU.crl (hash: CknckGCZzOaLF6VJ66PkNWQgIXG/rLgpx4egQeN05WQ=)
2: E0z3igtUq_zoGuy11MZm46qUA0k.roa (hash: zMUnBno+JucV/paZ21Lh4Pgqfjfx+DUy9tc50u1XZBc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:f3:84:81:0a:af:cf:08:3e:fb:27:45:37:49:02:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Validity
Not Before: May 16 18:01:43 2026 GMT
Not After : May 17 18:01:43 2026 GMT
Subject: CN=eca5b5eb7da4ebc3ac6526127b62307db988421e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c3:27:b6:d4:fa:5d:e2:a8:64:d2:ae:43:82:
39:8b:4d:83:5a:0c:70:ae:72:cf:b4:06:83:c5:ae:
d6:33:5b:70:a9:6e:c5:a8:e7:30:fb:da:5b:05:7c:
a9:69:c1:17:ad:40:e8:86:eb:0b:ba:ff:3e:58:64:
58:5d:94:d9:70:18:1f:07:0d:a3:f7:0d:5e:ff:a4:
16:61:7b:f3:8e:96:91:6a:5c:25:cc:75:fe:11:86:
4f:87:e6:6f:11:38:36:0f:cc:0d:61:80:de:af:5f:
cb:bd:b0:25:ff:c2:6c:37:0e:2c:6d:46:2c:ab:49:
f4:d1:63:9f:5a:71:65:09:18:c7:3a:de:f6:d3:3d:
b3:40:8e:ef:e6:26:00:c2:bc:2a:c5:61:bc:b9:36:
57:3b:8d:4b:9b:d5:3d:12:c1:e4:80:ad:c4:9d:7b:
35:5c:e0:33:27:47:fe:33:46:35:2b:32:11:84:a0:
36:22:0d:88:5e:17:88:3c:69:e2:e4:15:2f:c7:77:
13:05:46:0c:41:71:e8:df:66:ed:1b:7a:08:b0:2c:
d2:a4:87:8b:18:b5:bf:ed:4d:e1:12:04:e3:20:66:
89:7f:07:02:99:a0:cc:ce:5d:3a:f1:fb:94:da:66:
0d:c4:25:7f:58:2b:2b:4a:1e:ba:3b:80:85:35:10:
ed:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:A5:B5:EB:7D:A4:EB:C3:AC:65:26:12:7B:62:30:7D:B9:88:42:1E
X509v3 Authority Key Identifier:
keyid:0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:0f:fe:b2:02:86:45:e2:82:c7:50:9a:b5:7e:b3:5e:d4:1b:
62:1e:e2:de:e9:01:97:a2:90:b5:f8:9c:8d:c8:e1:3a:24:03:
04:d0:ad:32:fd:5e:c1:39:ad:d7:7c:5d:dd:1e:44:8a:94:bb:
f9:5b:59:1a:9b:b2:7f:f4:49:34:d8:d3:ea:14:50:cb:0a:7d:
76:41:21:86:33:cd:d1:de:27:bc:fd:ff:65:91:03:91:8e:97:
f6:11:02:43:74:79:4f:90:b2:05:8a:b0:06:01:33:68:0b:db:
b5:5d:c8:99:8a:35:e5:67:23:9a:8a:eb:71:70:1e:87:af:d0:
30:d7:6a:c8:20:6d:b6:fa:52:86:0c:9a:27:91:53:3b:2f:a9:
45:f5:6a:46:91:4c:62:47:37:6e:67:f6:59:84:1e:39:fe:81:
25:77:c3:1d:07:a2:4a:be:68:cd:d3:0b:3f:c8:0e:b3:a0:13:
d8:e0:a0:31:de:b0:f0:cc:dc:65:70:24:c8:30:51:b5:d5:7a:
44:f7:33:a0:e4:d1:82:5e:a3:8c:d4:0b:d2:76:85:48:4e:6c:
d6:73:8f:df:4a:17:67:64:ad:a9:b0:0b:5c:6d:76:94:e5:f5:
af:40:51:e4:0e:d6:2a:d0:41:70:16:48:eb:42:63:53:12:fd:
4e:b7:16:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:21:00 2026 by rpki-client