Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
File: tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft (raw, json)
Hash identifier: Qdu+tyWNqVYChfa4tVYZhWwIlMIFioxwCSjVdWqmpuE=
Subject key identifier: 4A:79:8A:D8:83:2D:D4:90:FA:17:14:F7:54:AD:76:DF:1D:F4:A7:B9
Authority key identifier: B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
Certificate issuer: /CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Certificate serial: 019E2C281F07502A5A9AC12DBCD17291A279
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
Manifest number: 063E
Signing time: Fri 15 May 2026 15:01:27 +0000
Manifest this update: Fri 15 May 2026 15:01:27 +0000
Manifest next update: Sat 16 May 2026 15:01:27 +0000
Files and hashes: 1: 0lwIzPsGn14owxvXy7_61u8zBPk.roa (hash: RHYNuusrfwoS7Vg7kp1EMywIH/hGj3OELuZX6uFgB7Q=)
2: tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl (hash: /NoTw60mbD3h1WBwTSLbbObJMnNTPXvwBiVz1MkOkjQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2c:28:1f:07:50:2a:5a:9a:c1:2d:bc:d1:72:91:a2:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Validity
Not Before: May 15 15:01:27 2026 GMT
Not After : May 16 15:01:27 2026 GMT
Subject: CN=4a798ad8832dd490fa1714f754ad76df1df4a7b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:2c:bb:f6:47:56:78:f8:83:21:cd:3b:2a:00:
15:76:a5:de:86:73:84:ab:88:a1:4e:66:02:b3:ca:
5e:6f:b9:41:57:d2:04:59:8a:de:cd:a4:98:00:20:
c9:5a:df:24:bc:6a:93:54:fc:47:17:37:47:99:7f:
82:1b:16:85:2c:b2:9c:8b:ff:ec:34:8c:60:8e:cb:
13:dd:80:c7:0b:bd:9c:30:08:ce:4f:b5:c2:30:f3:
85:f2:eb:b1:f5:5f:64:1a:05:e0:52:f0:87:a0:42:
e2:93:95:0a:12:cc:93:6c:94:ba:50:91:46:52:75:
1f:ea:b3:a8:d6:f8:f6:ff:cc:0e:f5:9a:02:d9:0b:
95:ca:a5:eb:f0:56:9e:fc:19:ec:62:42:71:58:87:
64:27:77:f8:00:1c:d5:15:16:f9:ed:06:a3:6c:c7:
94:0f:e8:51:37:98:f9:4e:d8:e1:56:6b:99:ca:d5:
90:f5:cf:a0:16:f4:17:f2:f4:ba:4c:d4:4b:68:97:
b0:db:fb:4f:c4:3a:c4:15:44:da:a7:21:c8:30:77:
29:3b:a2:9c:73:00:08:43:96:c2:0d:c3:0d:6b:bf:
d7:99:d6:4c:65:09:3d:78:b5:b4:43:a8:e2:0d:35:
7e:21:79:4f:fd:a0:16:01:d0:ed:d1:a3:09:09:fc:
12:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:79:8A:D8:83:2D:D4:90:FA:17:14:F7:54:AD:76:DF:1D:F4:A7:B9
X509v3 Authority Key Identifier:
keyid:B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:d5:90:f9:eb:8e:c6:5d:0b:96:47:e9:c5:ce:f8:6d:92:1f:
be:05:0c:e6:b5:5e:33:9c:b9:eb:8c:7b:49:2d:fc:8c:bd:17:
50:fa:46:6f:95:cf:67:df:1c:ce:1b:d2:96:2c:f8:fb:e3:22:
48:58:9d:02:33:3c:d1:42:e6:ab:01:99:d2:33:c1:68:ab:28:
d7:94:e2:2f:89:18:e0:e9:e3:fb:4d:74:48:08:5c:5e:11:58:
58:15:2f:e5:2d:d2:a9:b6:64:bb:bf:8e:20:29:84:90:85:47:
aa:d1:4f:7c:b8:79:04:c4:2c:be:6b:6d:63:b6:74:f5:6a:6b:
cc:bc:ce:87:8d:90:c3:b4:7b:b2:54:e5:4a:34:83:18:c3:65:
43:22:67:bd:a7:cb:9b:74:3a:bf:cb:80:34:d2:e9:fd:fd:e0:
2e:75:67:0f:34:f0:51:5b:af:e1:43:96:5e:83:98:98:47:7a:
46:30:f4:6a:42:17:b6:ef:04:8c:02:a7:40:70:c1:c5:46:a7:
93:78:15:ac:80:a8:a7:8f:0e:c8:61:48:ee:37:81:8a:05:4a:
80:5f:dc:7c:66:5e:15:ef:55:b3:70:fb:6d:56:65:24:83:28:
34:09:3c:fb:b9:45:36:df:0f:50:de:e1:83:54:89:4a:c1:65:
4d:91:51:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 17:54:05 2026 by rpki-client