Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
File: DA96BN1ySaXRS33gVCpBlzgABsw.mft (raw, json)
Hash identifier: AqkC6LyvlJcSBQDO7ZYGk9vI5RosKZInTKiWwY3l/c8=
Subject key identifier: 67:80:4B:4E:4C:B4:5D:A2:04:85:FF:2A:1D:6C:30:45:1A:48:6E:FC
Authority key identifier: 0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
Certificate issuer: /CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Certificate serial: 019E2ADE3C53A0E1F9435AE29DE6C753CAA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
Manifest number: 14B0
Signing time: Fri 15 May 2026 09:01:07 +0000
Manifest this update: Fri 15 May 2026 09:01:07 +0000
Manifest next update: Sat 16 May 2026 09:01:07 +0000
Files and hashes: 1: DA96BN1ySaXRS33gVCpBlzgABsw.crl (hash: PienL6be/paIKPLX7AZlVdGM4kNIZh/HG1MfOUOL3gw=)
2: MGxIjp6odA89mKCCoAoK4gOBECQ.roa (hash: WV1c3KgNpfTE3JHTiidL4UKk6xN2JAg5ninbZPlQg+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 09:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:de:3c:53:a0:e1:f9:43:5a:e2:9d:e6:c7:53:ca:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Validity
Not Before: May 15 09:01:07 2026 GMT
Not After : May 16 09:01:07 2026 GMT
Subject: CN=67804b4e4cb45da20485ff2a1d6c30451a486efc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:25:30:87:75:fc:fe:31:be:7c:b5:fb:8f:6d:
22:f1:35:f1:e6:69:6a:a7:b1:30:82:57:29:ba:10:
bf:b0:52:e2:70:05:5e:33:9f:4c:29:26:ed:4d:3d:
8e:2d:09:e8:b2:6e:ce:92:99:97:67:5a:db:17:44:
48:d4:c7:70:e4:49:3f:cd:37:d3:78:7a:7d:cd:ef:
97:21:c2:03:9f:58:e2:ef:5a:51:c1:a2:69:72:ee:
e9:50:9e:db:53:c9:ac:ac:26:ea:17:2e:ab:c6:25:
9f:27:f1:b6:b1:6b:8b:c2:16:a0:50:e3:f5:ca:c8:
c1:f7:9f:b8:38:1b:a5:88:6d:4d:30:1d:19:9d:de:
3a:d7:18:c6:08:8c:e8:16:d9:0f:dd:77:3f:c9:30:
bc:62:d4:97:0b:b5:9f:a6:5a:bb:ee:8d:00:7a:a9:
fa:af:e8:66:fc:e9:0d:43:71:1d:ee:c6:b2:0d:47:
f0:ac:d2:6a:2c:e9:33:c4:20:b4:d0:3d:48:8b:96:
ae:43:cc:b2:29:8a:d3:ef:8f:47:ab:8a:5a:c1:5d:
21:73:12:99:dc:12:a2:47:8a:44:de:83:60:18:1e:
1f:3c:61:b9:67:df:c3:03:9f:c5:e9:1d:45:26:03:
71:12:89:fe:fb:78:b6:74:12:98:15:9e:14:a8:9d:
d8:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:80:4B:4E:4C:B4:5D:A2:04:85:FF:2A:1D:6C:30:45:1A:48:6E:FC
X509v3 Authority Key Identifier:
keyid:0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:dd:a4:27:3d:f0:82:f8:97:1a:f9:42:e3:5a:fc:32:81:0a:
6e:d2:16:27:0c:70:1c:ef:4c:0e:40:c7:2f:fa:97:92:7f:f2:
23:70:01:aa:0f:86:b8:12:59:b6:ae:03:3d:f7:87:7f:ce:95:
24:5e:74:98:97:b1:59:dc:c0:39:b9:03:81:d9:d4:e5:3b:1e:
4a:bb:36:a8:10:48:6a:12:55:e7:b9:8c:05:6b:8d:66:78:58:
1f:b2:22:55:3d:3e:49:4a:75:e3:64:7c:4a:f0:08:d6:a3:81:
54:15:20:82:2f:2f:d9:61:c8:5d:6f:0b:21:52:11:44:6e:93:
8f:15:ca:7a:3a:2a:b9:79:e0:82:27:28:50:b0:6b:d0:cb:5a:
ac:be:19:bb:d6:6c:5f:d0:d5:14:43:d7:20:dc:12:2f:f0:db:
05:2c:ee:cb:36:09:59:e1:73:a2:49:b5:5c:90:12:19:49:5e:
6f:17:2f:50:5e:68:1f:58:bb:bc:3b:90:9f:ff:ff:23:ff:31:
6f:1b:5a:01:a6:2e:51:c1:ac:b0:d0:79:72:29:5e:73:50:36:
eb:4d:bd:41:80:0d:c5:d3:f6:c6:0a:0d:24:77:de:07:21:10:
4b:00:e8:d0:5d:b5:2f:5a:41:e8:8c:a7:c4:3a:73:18:e0:6f:
61:96:d0:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 15:59:17 2026 by rpki-client