Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
File: fD2KpDg1BKMa_0sAaBCga88DBa4.mft (raw, json)
Hash identifier: XqFZUU4jNN2+YVxyTF+RhqgnFC8PEXNDzuVpiuL+3uM=
Subject key identifier: 38:EB:89:02:B3:99:6E:E1:FE:E3:92:E7:66:7F:1E:96:27:58:6C:CA
Authority key identifier: 7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
Certificate issuer: /CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Certificate serial: 019E2C27EAEA459FCD7AD2801149852AB341
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
Manifest number: 14E9
Signing time: Fri 15 May 2026 15:01:13 +0000
Manifest this update: Fri 15 May 2026 15:01:13 +0000
Manifest next update: Sat 16 May 2026 15:01:13 +0000
Files and hashes: 1: fD2KpDg1BKMa_0sAaBCga88DBa4.crl (hash: yH0D8KWDgl8M6mzgGWrtF2omSG/LvP2S9k3mLB4IICY=)
2: ynivGHGV8Z6F2cby7L1fi45lXJI.roa (hash: p2d61mUjDisc5jYXXPmal+v44ksSKZ1nKZ0hR92ybdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2c:27:ea:ea:45:9f:cd:7a:d2:80:11:49:85:2a:b3:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Validity
Not Before: May 15 15:01:13 2026 GMT
Not After : May 16 15:01:13 2026 GMT
Subject: CN=38eb8902b3996ee1fee392e7667f1e9627586cca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:82:16:1c:41:31:96:98:37:12:9e:46:fe:ab:
a2:b7:2d:e9:6c:4f:cd:d3:28:8c:a1:9b:93:33:f5:
d4:60:1e:db:c5:e5:2e:c6:4a:29:72:e3:93:01:82:
cb:65:ac:58:7e:9e:e6:7f:a1:f4:dc:e9:cb:73:e3:
64:4b:1a:13:83:a3:b6:2e:e7:c9:a7:ef:66:41:67:
cb:c5:b2:ac:73:3d:e5:cc:2a:0d:d9:f2:91:72:61:
39:9f:33:6d:f3:85:12:a3:32:c8:09:75:8c:1f:8a:
a0:17:a9:7c:79:92:49:3a:e9:41:5b:56:43:c2:12:
8e:d2:74:c0:ce:6b:e8:7d:bf:05:81:a8:87:37:d7:
e3:17:e2:2c:38:de:b4:bb:a1:1f:6a:29:ca:29:82:
ef:32:ad:98:21:65:26:a8:75:0c:2d:e0:02:f1:0d:
d4:83:17:f4:c8:94:c3:20:c7:c7:7f:7d:ab:8c:80:
bf:ec:cb:52:46:8b:5f:31:24:e7:3c:ae:b0:d8:7c:
35:1a:3b:c2:8b:9c:eb:e3:a7:21:66:d1:38:ba:8f:
05:03:c4:84:6c:50:5c:2c:58:66:d6:a9:d7:53:ad:
b1:dc:3d:3b:ad:43:8e:95:6d:1b:47:d9:e0:31:17:
dd:91:01:2b:5e:96:74:bc:bf:8f:12:c1:fa:6d:40:
e6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:EB:89:02:B3:99:6E:E1:FE:E3:92:E7:66:7F:1E:96:27:58:6C:CA
X509v3 Authority Key Identifier:
keyid:7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:c3:b7:92:40:6c:03:ba:08:f1:20:b7:a9:d7:b7:26:e8:ac:
d0:b3:5a:64:c2:b3:77:32:98:ec:84:4a:2b:07:0d:5d:0a:2b:
c3:79:fe:7c:53:87:5d:56:73:74:d7:0c:d9:fd:2d:97:6a:e0:
84:26:98:39:4b:60:ee:60:8c:38:08:6b:92:63:30:f7:2d:ea:
55:da:16:dc:fe:4d:14:5e:b4:8e:f6:d3:e2:75:43:68:78:81:
7a:04:52:9e:62:10:61:3d:4d:7e:62:1b:19:1e:1b:04:87:d8:
15:6b:d4:87:81:63:de:3a:cc:a3:fa:11:61:17:a9:65:74:b6:
8a:c2:91:66:ec:0d:64:44:05:1b:87:8d:1b:2e:b6:8d:ff:d7:
dd:bb:8c:48:4d:db:fe:f2:26:39:e2:a8:38:07:59:15:66:4f:
a6:f8:94:25:21:7a:bd:4e:eb:51:21:bf:45:14:11:f9:91:c0:
1b:aa:fd:42:1f:31:24:01:bc:5b:8d:39:a4:df:ed:97:52:a5:
4d:cf:9c:b4:bb:7e:1b:c1:62:02:55:03:d5:21:cd:9e:e3:b1:
b8:92:9a:27:e5:af:07:ca:f5:30:02:2c:de:83:57:ef:39:13:
d7:ed:89:63:06:39:72:0d:7b:c4:3c:d1:f4:b0:68:7d:66:ae:
6e:29:4e:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 17:53:16 2026 by rpki-client