Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.mft
File: D48Gw1SUYI2azOsHCkzRarlf9qY.mft (raw, json)
Hash identifier: 8hooidIu1syCALaDjkqW2qce8gomDcX3wj/BTxQIO+I=
Subject key identifier: 24:49:6E:27:D0:D7:82:EB:C1:43:12:8A:C0:0F:4A:A5:4C:35:B2:5F
Authority key identifier: 0F:8F:06:C3:54:94:60:8D:9A:CC:EB:07:0A:4C:D1:6A:B9:5F:F6:A6
Certificate issuer: /CN=0f8f06c35494608d9acceb070a4cd16ab95ff6a6
Certificate serial: 019E2FCD807AD80ED7553FDA864F68EC7E1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D48Gw1SUYI2azOsHCkzRarlf9qY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.mft
Manifest number: 0515
Signing time: Sat 16 May 2026 08:00:57 +0000
Manifest this update: Sat 16 May 2026 08:00:57 +0000
Manifest next update: Sun 17 May 2026 08:00:57 +0000
Files and hashes: 1: D48Gw1SUYI2azOsHCkzRarlf9qY.crl (hash: Q52cFfUicYjcHuIJSWG/TbmfK/O1VP3MjtRFMkA0ddM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D48Gw1SUYI2azOsHCkzRarlf9qY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 08:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:cd:80:7a:d8:0e:d7:55:3f:da:86:4f:68:ec:7e:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f8f06c35494608d9acceb070a4cd16ab95ff6a6
Validity
Not Before: May 16 08:00:57 2026 GMT
Not After : May 17 08:00:57 2026 GMT
Subject: CN=24496e27d0d782ebc143128ac00f4aa54c35b25f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:58:13:80:64:83:3c:fb:2f:ad:66:85:9c:9f:
be:e4:7b:5e:ee:f7:1a:31:ce:64:24:7a:d8:b6:45:
93:8d:a9:63:c6:7e:98:7e:91:4f:b3:50:b1:34:99:
bf:40:42:ed:94:5d:46:3c:fe:be:c2:9f:14:f8:a3:
e1:49:0b:97:75:05:e2:10:a0:3b:27:ab:2a:2b:95:
46:53:ac:f9:3f:02:bf:40:97:4b:f7:4a:3d:15:19:
88:e9:17:53:76:93:6e:5b:81:69:a6:7b:6d:86:61:
c1:9e:25:98:02:ea:cc:ae:97:d1:1c:74:78:55:60:
84:7b:0a:06:c6:00:45:23:15:d4:0c:16:da:8d:bb:
f4:f6:3a:cf:80:57:46:d3:7c:76:c0:d6:84:96:d9:
f1:97:bc:2b:e4:a0:f9:26:d6:08:2d:e2:75:49:e4:
9a:68:40:35:31:14:02:d9:f1:96:4c:e5:07:4f:f1:
01:9c:a2:ad:f5:2a:bb:60:63:57:3f:60:7b:45:9d:
f2:b6:8c:ea:e7:54:6e:c3:33:ae:06:67:eb:cf:fb:
c4:01:20:05:9d:e9:a8:80:50:1c:49:09:8b:25:7b:
b7:1c:e8:8e:21:67:a9:c2:65:ad:82:09:a1:17:3d:
97:9f:51:e3:db:11:cd:e6:41:b0:5a:3b:fb:14:c4:
e5:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:49:6E:27:D0:D7:82:EB:C1:43:12:8A:C0:0F:4A:A5:4C:35:B2:5F
X509v3 Authority Key Identifier:
keyid:0F:8F:06:C3:54:94:60:8D:9A:CC:EB:07:0A:4C:D1:6A:B9:5F:F6:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D48Gw1SUYI2azOsHCkzRarlf9qY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:15:80:10:f5:ad:53:0e:d6:dd:1a:a4:68:a3:b0:d3:31:61:
3a:9b:20:f2:7d:96:19:db:b0:1b:a8:df:9f:08:a1:70:4c:53:
74:09:e8:d9:eb:c5:5b:58:01:03:b9:6d:19:da:77:10:44:fa:
43:8f:81:54:99:af:38:34:d2:e9:88:65:ed:8c:2a:29:93:ab:
79:4f:e5:8c:2d:bf:d8:e3:3a:f6:08:81:70:f6:19:5e:e0:9f:
4d:ea:be:eb:4d:29:e1:48:f8:dd:0b:0a:15:4b:1b:10:4e:23:
51:58:24:2d:13:2d:e9:4b:4f:f8:9c:6a:b3:31:7e:65:fa:79:
50:91:13:ee:54:95:b4:51:87:3f:5d:9b:ce:1b:d2:9d:70:69:
b0:c2:a2:2a:60:0b:4f:69:f7:a7:4c:2b:89:58:99:1f:7a:1d:
1c:32:ed:36:ab:72:af:77:2d:b0:01:a2:e3:6e:82:4a:cb:89:
6b:f4:18:f8:05:fe:bf:0d:b3:41:09:fe:d3:4c:cb:d4:f3:62:
ae:53:17:10:7a:28:e6:e2:ba:e9:cc:bc:2b:fa:72:1f:d9:67:
10:5f:d6:88:ec:1b:b4:80:0d:c7:b8:b0:4c:6e:96:a6:6d:26:
8d:af:50:23:c2:11:7d:7a:b9:a9:1e:cc:21:8d:1a:70:87:97:
70:0c:0e:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:39:51 2026 by rpki-client