Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft
File: Dj8xyerObwpezNuN8rAcc1FWhoY.mft (raw, json)
Hash identifier: Kv42LdslJe9aM4nS75mbWHbiUaa5WwQvwbbg12UdA1E=
Subject key identifier: 9F:86:31:19:6F:34:03:ED:30:20:A9:33:39:42:A5:4E:64:44:00:DF
Authority key identifier: 0E:3F:31:C9:EA:CE:6F:0A:5E:CC:DB:8D:F2:B0:1C:73:51:56:86:86
Certificate issuer: /CN=0e3f31c9eace6f0a5eccdb8df2b01c7351568686
Certificate serial: 019DCBCF51CC48386550F85DE92D9C017C2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft
Manifest number: 18A4
Signing time: Sun 26 Apr 2026 22:00:54 +0000
Manifest this update: Sun 26 Apr 2026 22:00:54 +0000
Manifest next update: Mon 27 Apr 2026 22:00:54 +0000
Files and hashes: 1: Dj8xyerObwpezNuN8rAcc1FWhoY.crl (hash: +7k1R90rOnBIxFXnIPS09cJT2qLoNJXmfjRdEI/XIQo=)
2: H_7ICe9bA6bKL6KxaXlnbRtE9DQ.roa (hash: myn2XXBsyfDvjK8OtF68llJ02gjDW6IloTyqRTy6l4w=)
3: HiYrKV9PWfW9VMwv69fUaqLEuLs.roa (hash: knibpBYB1VOhg3NmwQyS9JfIt1K5oIBjdfIcH/K2+Io=)
4: OLla4azvXvDVFfwRUwN-WTflF_s.roa (hash: 03MQq5dEo3oE8HaXDBpjZ1A6N/fjcCiZ35oFLaXfAU8=)
5: P36bForyKz3A1xYxUt5uRvnbjGo.roa (hash: CVAU2pcmHNPpR0Ea2g62GxYoWi/yJ4n8I1Gjfyzzm7o=)
6: kTAGdAP94XB_eZK0C7vAHDqzJI8.roa (hash: CuJkjxQNxfp3wO54mRyTZ1oYxOazwRwfQjI9X+1M5ho=)
7: oveUA1uBv2ehHsokfHtBlO5t1OM.roa (hash: qHYZMnXE/ptQNsblCotL5I56Q3u2k4i1sIRc61QdOc4=)
8: uZHn0r02l2agjVRMRfZ3xICbMLw.roa (hash: YR/6cl0OhmlwCiQwg5TQ7bSWNguLPLl/GP2GOc23T+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Apr 2026 22:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cb:cf:51:cc:48:38:65:50:f8:5d:e9:2d:9c:01:7c:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e3f31c9eace6f0a5eccdb8df2b01c7351568686
Validity
Not Before: Apr 26 22:00:54 2026 GMT
Not After : Apr 27 22:00:54 2026 GMT
Subject: CN=9f8631196f3403ed3020a9333942a54e644400df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f2:c7:fb:4b:44:81:cb:cd:c5:c9:c8:ff:1e:
23:38:ed:93:12:9d:d5:c9:42:93:c7:e7:b7:03:95:
b0:59:33:9f:02:81:a1:23:e1:3b:2a:e5:d3:64:f6:
09:66:b6:73:6f:39:4d:d9:fd:c7:d8:21:1b:e8:a1:
77:65:5b:e9:76:a7:aa:c5:46:13:a5:97:3a:1f:46:
d0:bf:c5:e4:fa:95:8e:eb:78:00:93:ce:2b:29:f6:
08:f6:3d:81:59:ba:38:67:5d:9a:a4:0a:a3:22:39:
3e:79:ec:8c:ac:65:87:30:24:b8:d9:35:65:e3:35:
63:f8:f9:9f:1b:18:c7:0a:d4:ed:b2:47:7f:e3:45:
b1:22:f4:a9:a2:8d:08:d8:6e:5f:16:ad:db:26:8a:
39:97:99:e8:ac:24:d2:78:18:25:ef:fb:12:52:d3:
7c:e2:65:7e:1c:6d:05:b2:30:d8:9c:75:80:cd:11:
02:ae:65:a0:80:58:cb:49:d5:31:37:53:1f:ab:be:
58:40:51:4d:26:f1:5c:c1:ac:d1:bc:10:48:73:f4:
05:20:f3:d5:36:43:fa:e6:7b:ad:55:b7:0f:b9:fd:
d8:15:90:af:76:b7:00:5d:b4:79:02:4d:4d:b7:dd:
00:93:31:69:57:5c:96:4b:ac:ce:f1:ed:6c:77:02:
a4:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:86:31:19:6F:34:03:ED:30:20:A9:33:39:42:A5:4E:64:44:00:DF
X509v3 Authority Key Identifier:
keyid:0E:3F:31:C9:EA:CE:6F:0A:5E:CC:DB:8D:F2:B0:1C:73:51:56:86:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:c2:0c:f1:03:9a:e4:59:75:d1:1b:16:06:a2:7e:da:79:4a:
b7:d2:a5:0c:36:a1:ca:33:1b:98:70:09:8c:09:3a:6e:ef:8e:
64:14:de:db:3d:c4:2e:ac:65:34:e3:f7:f6:13:2b:55:06:f6:
ff:4d:ed:e5:6f:7f:6c:45:f3:1f:68:d0:70:49:4c:de:58:df:
3f:09:ad:5d:64:49:76:9b:a0:fc:a3:cb:57:90:c9:90:e7:ed:
c3:7b:33:7c:87:eb:61:f7:3f:f4:c6:a1:51:5e:e6:7d:e2:96:
47:eb:75:34:94:93:6d:82:71:0b:6c:41:1e:17:17:37:d0:d0:
e8:ab:dd:b1:87:36:c7:92:7f:9f:61:6c:22:e2:7e:f1:9b:82:
47:cb:ec:7b:37:87:2a:a1:26:22:67:de:9f:ce:25:5f:97:a7:
4a:b4:f5:6b:4a:b7:9c:80:51:1e:c2:1a:b5:cb:ae:08:b9:c2:
c7:87:33:03:d9:cf:21:36:76:d7:f4:9c:15:c8:d7:5c:66:d7:
2a:08:81:68:51:3d:1c:71:f0:7b:04:2f:bd:d2:3e:96:77:69:
fe:55:39:60:94:39:40:69:73:84:63:cb:2c:a6:42:f5:03:15:
f2:00:9c:c8:37:72:86:16:ef:7d:05:a8:17:d5:fa:81:51:6d:
08:dc:8c:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 07:12:25 2026 by rpki-client