Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
File: DA96BN1ySaXRS33gVCpBlzgABsw.mft (raw, json)
Hash identifier: /SKpBDPw+TydjbjZf6T/50hoojTYW2lvIn+YHHkKUZI=
Subject key identifier: B8:2F:7A:EB:A0:CF:15:AE:7A:9E:5F:10:F9:31:6C:85:57:5E:EF:EF
Authority key identifier: 0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
Certificate issuer: /CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Certificate serial: 019F148A553862860FFBF74B8058C116EA3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
Manifest number: 1529
Signing time: Mon 29 Jun 2026 18:00:37 +0000
Manifest this update: Mon 29 Jun 2026 18:00:37 +0000
Manifest next update: Tue 30 Jun 2026 18:00:37 +0000
Files and hashes: 1: DA96BN1ySaXRS33gVCpBlzgABsw.crl (hash: 9n7N0t/Ee3vi0amMh7yV1ed45eVCxq9g7pFvNMPYxfo=)
2: MGxIjp6odA89mKCCoAoK4gOBECQ.roa (hash: WV1c3KgNpfTE3JHTiidL4UKk6xN2JAg5ninbZPlQg+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 14:12:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:14:8a:55:38:62:86:0f:fb:f7:4b:80:58:c1:16:ea:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Validity
Not Before: Jun 29 18:00:37 2026 GMT
Not After : Jun 30 18:00:37 2026 GMT
Subject: CN=b82f7aeba0cf15ae7a9e5f10f9316c85575eefef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:af:5e:8e:94:27:07:fe:14:1f:09:5d:1f:db:
c4:ec:0f:49:86:35:d2:f2:86:79:7d:aa:6a:ab:48:
1f:7a:1f:3c:5a:14:a5:90:c3:cd:81:60:a2:07:c4:
11:56:c1:d9:d0:8f:2f:9f:b0:df:d0:42:94:23:29:
cf:5f:8f:27:83:75:46:06:0a:ff:dc:85:c4:62:b3:
22:87:a4:fd:e8:be:81:e7:8b:5e:aa:b2:d8:1c:ab:
cd:89:8a:86:af:1c:b8:37:52:6c:68:2b:24:5d:56:
34:a7:7c:26:97:0f:cf:b8:0a:bd:d8:28:e4:c8:ff:
e8:6c:77:36:6c:82:b6:0d:0a:4d:7e:ae:62:d7:b5:
cf:01:44:de:b1:2f:5b:81:b7:2e:91:e3:52:3f:c8:
d6:8c:31:65:59:3a:0f:d3:ff:70:7f:46:ec:e0:e1:
c1:f5:60:0c:85:76:31:7f:7c:24:0a:94:8f:d8:b5:
3f:af:c1:49:64:36:f6:8b:8a:ce:0a:39:23:3f:2c:
49:b4:52:c3:f3:1c:85:2b:3e:f6:ce:dd:3a:21:71:
14:c4:4b:3b:63:69:7b:58:b3:13:5b:5f:e9:91:cb:
32:9b:4e:81:86:ce:27:5b:72:5c:90:25:ee:4e:3f:
e3:7f:98:f1:69:db:aa:8a:41:d1:24:fb:4f:29:57:
b7:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:2F:7A:EB:A0:CF:15:AE:7A:9E:5F:10:F9:31:6C:85:57:5E:EF:EF
X509v3 Authority Key Identifier:
keyid:0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:63:cc:b7:b5:cd:ab:4e:b6:b1:0d:88:a9:cd:86:db:32:40:
ae:8a:c0:05:bd:f2:fd:e2:4e:09:b2:b7:60:a5:37:7c:3f:64:
b9:33:d8:fa:a3:6d:85:e4:00:ac:53:89:1e:b9:5b:48:7a:32:
28:bd:c7:6a:0d:f7:1f:fe:5b:a7:d0:60:c2:c8:f6:9b:4b:1d:
b5:f4:f3:48:b1:c8:6a:27:f0:06:4b:19:c6:b8:a8:dd:4b:23:
06:0d:97:0c:4d:5d:a3:1f:b3:76:2f:15:b9:06:b7:7c:9a:36:
cb:1d:79:03:8e:34:90:3c:53:78:91:e6:e5:68:40:90:17:b6:
1c:c7:88:56:72:9d:20:67:50:84:9a:d1:a0:4b:f3:4b:6d:3c:
e0:38:cc:33:69:db:a7:8b:08:3d:e8:a6:b3:89:ff:88:d4:e6:
78:cb:b7:28:3b:6f:d0:12:a0:c7:19:a3:52:bc:72:09:17:f3:
00:81:01:bc:0c:c9:cb:94:aa:c0:8b:c9:0d:0c:2e:a9:f6:79:
dd:92:a9:6f:88:05:46:6b:97:cb:63:1f:2c:8b:7e:60:8e:ee:
8f:a0:d5:95:cf:62:c0:d3:8f:94:16:65:b9:1c:3b:06:4a:7a:
06:06:ba:92:10:81:61:6e:ec:b7:0c:e2:c2:5f:b7:ef:b0:c4:
2e:8c:08:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 22:01:08 2026 by rpki-client