Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
File: dBmPcCK5VgUB20SK9gMB-ihekjY.mft (raw, json)
Hash identifier: bEpYmBrNfxnIshCuAlZnm8d8lBRsy6HQdXn0PK8VSck=
Subject key identifier: EE:37:89:CF:AA:66:4F:B8:E1:82:C7:7F:C7:BD:99:32:D7:B3:17:7F
Authority key identifier: 74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36
Certificate issuer: /CN=74198f7022b9560501db448af60301fa285e9236
Certificate serial: 019EBB1067D043BA40EB3579CA7ADB996633
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
Manifest number: 195C
Signing time: Fri 12 Jun 2026 09:01:14 +0000
Manifest this update: Fri 12 Jun 2026 09:01:14 +0000
Manifest next update: Sat 13 Jun 2026 09:01:14 +0000
Files and hashes: 1: dBmPcCK5VgUB20SK9gMB-ihekjY.crl (hash: ETayCne8vzEHGPAZY3kFiQChCZtennBgX6cI+LyLuCs=)
2: x-8swSoHWXn2gEZTtgRDy-vs_DM.roa (hash: ylAYgviMfyC3A9eoEgIb+VgNLg1iORRgtmKdI3QPLJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 09:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bb:10:67:d0:43:ba:40:eb:35:79:ca:7a:db:99:66:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74198f7022b9560501db448af60301fa285e9236
Validity
Not Before: Jun 12 09:01:14 2026 GMT
Not After : Jun 13 09:01:14 2026 GMT
Subject: CN=ee3789cfaa664fb8e182c77fc7bd9932d7b3177f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:db:17:d5:19:a2:7f:6c:1f:63:40:89:1a:b1:
7d:1a:35:45:75:38:c2:02:4f:a1:c6:be:77:2d:4c:
f1:1a:6b:1d:6f:fe:e2:23:f0:36:4b:8d:b9:2a:28:
ca:0c:a8:03:57:7a:dc:99:05:e7:46:57:b3:b2:fd:
13:68:21:7b:e8:0d:18:a2:83:ff:4b:2c:e3:b0:e5:
91:d0:59:9f:d8:8a:ea:67:0c:f4:7d:5d:bf:b3:39:
17:0c:9c:60:9a:f2:27:9a:ec:e8:36:dd:63:44:e5:
7b:e5:f3:aa:aa:db:65:af:b7:c0:a2:76:31:8e:6d:
28:58:2b:22:90:08:46:35:9b:87:f2:b2:ce:4e:73:
5e:0e:40:58:d1:9e:75:84:60:b1:96:68:d9:6e:73:
77:51:6c:f6:86:bc:ee:c4:49:4f:13:93:16:6d:a4:
e2:8f:00:a2:66:bd:f9:38:6b:e7:8b:6d:d1:27:07:
29:d8:e8:53:3f:9d:d2:aa:4e:70:96:c4:de:c5:ff:
77:fa:06:e7:d9:f0:2e:73:1c:90:07:fd:05:4c:95:
ad:3c:c1:64:6c:e9:ee:1c:93:bf:b8:77:5a:f5:43:
d0:ef:f4:d8:ac:5a:fb:85:ff:f6:cb:e4:6d:3f:e9:
d2:5f:91:38:69:86:80:b8:8e:3f:33:4a:82:b3:c1:
f7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:37:89:CF:AA:66:4F:B8:E1:82:C7:7F:C7:BD:99:32:D7:B3:17:7F
X509v3 Authority Key Identifier:
keyid:74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:8b:f3:d8:67:4c:d7:b5:0a:cd:71:16:1a:1a:a7:b9:bf:4d:
c9:84:e3:82:df:02:35:23:6d:b6:31:cc:50:34:b4:1f:a8:73:
d1:0f:35:1a:bc:4f:90:19:18:85:18:7f:c5:2d:2c:c2:05:66:
85:e7:cf:75:ec:11:5b:ad:18:ae:14:20:1a:3e:92:ef:06:87:
76:b8:22:97:46:ac:ff:68:c1:8e:ec:71:f6:d4:22:13:99:64:
33:de:f3:9e:ba:3b:7f:17:6c:af:59:af:60:29:06:35:64:b8:
95:b5:d7:5d:25:8f:91:8b:72:86:88:db:e7:21:4f:c8:67:2e:
bb:17:62:ec:de:6f:a0:64:23:d6:32:d5:52:7d:48:cd:57:dd:
4e:b7:09:c7:2c:e8:db:e7:f7:62:d0:cb:ef:22:08:4e:c9:9d:
ed:ad:96:92:61:9f:f7:a1:3c:96:ba:2a:8b:51:d6:23:f4:72:
d3:2f:82:f3:ba:99:a3:76:97:68:dd:f4:fb:d5:ce:eb:2c:e7:
28:9f:ff:3f:c1:a3:a2:97:27:c5:49:ab:0c:f8:d6:ed:ec:a9:
8e:87:87:43:24:23:0e:9f:bd:03:c0:01:25:a3:71:8c:29:e5:
0c:8f:f7:31:fb:dd:05:fc:fd:0c:44:22:76:1a:7e:19:b7:9e:
e3:65:d0:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 19:38:20 2026 by rpki-client