Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/37cd50-5769-4cdd-95ea-cf89be5a5fea/1/D1pCPdyX3TDeyLhnPCSWjic3JnY.mft
File: D1pCPdyX3TDeyLhnPCSWjic3JnY.mft (raw, json)
Hash identifier: pYRraVDexDe9zCM32zN1U0LkzBZE6dB4bbm9vYgI3K0=
Subject key identifier: 2E:2B:53:20:96:F4:11:D3:BA:10:DC:46:9A:3F:0D:ED:DE:9E:0A:EA
Authority key identifier: 0F:5A:42:3D:DC:97:DD:30:DE:C8:B8:67:3C:24:96:8E:27:37:26:76
Certificate issuer: /CN=0f5a423ddc97dd30dec8b8673c24968e27372676
Certificate serial: 019F11F77F898F9FBF0D05B822AB8E71BD90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D1pCPdyX3TDeyLhnPCSWjic3JnY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/37cd50-5769-4cdd-95ea-cf89be5a5fea/1/D1pCPdyX3TDeyLhnPCSWjic3JnY.mft
Manifest number: 0449
Signing time: Mon 29 Jun 2026 06:01:00 +0000
Manifest this update: Mon 29 Jun 2026 06:01:00 +0000
Manifest next update: Tue 30 Jun 2026 06:01:00 +0000
Files and hashes: 1: D1pCPdyX3TDeyLhnPCSWjic3JnY.crl (hash: /9wtIZpmuDGkXERfu6XbJjCezjcGVePxGjZ2vkd5iIE=)
2: yOrKQ7MJyIV7x473bRDSyqGxk3M.asa (hash: RT2JBxL5LFYXoAORUjDuOF/GcHeKiXEXJ3d8DuggJSU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/37cd50-5769-4cdd-95ea-cf89be5a5fea/1/D1pCPdyX3TDeyLhnPCSWjic3JnY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/37cd50-5769-4cdd-95ea-cf89be5a5fea/1/D1pCPdyX3TDeyLhnPCSWjic3JnY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D1pCPdyX3TDeyLhnPCSWjic3JnY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:f7:7f:89:8f:9f:bf:0d:05:b8:22:ab:8e:71:bd:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f5a423ddc97dd30dec8b8673c24968e27372676
Validity
Not Before: Jun 29 06:01:00 2026 GMT
Not After : Jun 30 06:01:00 2026 GMT
Subject: CN=2e2b532096f411d3ba10dc469a3f0dedde9e0aea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c6:63:28:c0:e6:ca:be:4c:6b:51:fd:eb:e0:
77:d8:9f:94:03:4f:d7:2a:d9:6e:6a:09:e4:62:b3:
19:57:2f:3a:4f:12:77:a0:36:eb:d7:86:12:d6:8c:
f2:0f:25:71:97:d0:0e:f8:d2:53:65:0f:de:d8:ef:
50:66:e1:9f:73:4a:fc:54:2c:7a:90:de:f1:75:ef:
e6:53:c1:45:fa:5a:06:99:d4:cd:74:73:b4:97:d5:
fa:ec:34:51:2c:ce:02:5a:b3:7b:6f:29:55:71:63:
68:ce:2a:82:ab:37:3c:43:f1:f8:d3:d9:13:1f:1f:
88:27:5d:e9:61:62:11:c0:81:e2:d8:5d:51:e4:18:
2d:0e:4e:fb:de:1d:53:db:70:68:1e:11:8a:cf:2b:
ad:0e:3e:f5:40:73:73:eb:85:9a:9b:ed:68:38:e5:
e2:02:8a:a7:6e:d0:10:fb:4a:c0:93:99:2a:b6:07:
cf:d5:01:6a:4d:f6:5a:c4:64:ea:dc:3f:ff:22:3e:
0c:2e:cd:65:3e:ff:f7:d7:a5:82:60:35:a2:da:86:
86:66:8e:cc:89:73:02:c3:c2:b9:9a:0a:cc:10:39:
32:c2:3c:aa:00:ac:d9:07:81:0a:98:58:0f:91:25:
6e:68:60:a4:48:ff:9d:d9:57:82:25:ad:57:45:fc:
99:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:2B:53:20:96:F4:11:D3:BA:10:DC:46:9A:3F:0D:ED:DE:9E:0A:EA
X509v3 Authority Key Identifier:
keyid:0F:5A:42:3D:DC:97:DD:30:DE:C8:B8:67:3C:24:96:8E:27:37:26:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D1pCPdyX3TDeyLhnPCSWjic3JnY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/37cd50-5769-4cdd-95ea-cf89be5a5fea/1/D1pCPdyX3TDeyLhnPCSWjic3JnY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/37cd50-5769-4cdd-95ea-cf89be5a5fea/1/D1pCPdyX3TDeyLhnPCSWjic3JnY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:0c:1e:8a:18:ba:27:4c:d0:0a:0c:f9:28:a8:60:b8:9a:04:
07:a3:87:d6:d4:24:b0:44:cd:a9:f8:9f:d0:15:8f:54:05:b1:
29:75:11:00:a9:94:56:34:e1:b6:39:e5:6e:9e:e2:ad:ab:08:
47:34:b6:64:43:ca:27:f2:ce:c0:30:b8:c9:30:09:0e:cd:4b:
29:ac:3f:ae:21:88:3f:9b:15:cd:4e:fa:4e:dc:47:1e:64:05:
73:9c:6e:7c:27:bd:b3:a5:e9:56:00:65:3d:25:df:f3:ab:31:
18:c9:8f:03:44:d3:03:e1:e8:27:98:68:e5:dc:aa:d7:1b:92:
13:fe:3c:55:08:3d:d6:fa:90:ab:16:9d:1f:d9:62:88:6c:c5:
91:89:3d:11:23:a3:0f:3e:87:65:46:41:be:9b:c5:ab:05:83:
ce:24:eb:5e:e2:f9:b7:17:28:29:1c:09:c4:8f:2c:46:69:4d:
f7:41:86:b1:ea:f8:f3:46:4b:37:42:d4:94:b6:15:31:9f:ff:
c5:36:01:86:56:d0:d5:53:4a:06:61:40:ee:0a:0d:f7:e8:b4:
ef:3e:74:58:5f:a4:92:f1:fd:7b:b7:88:5a:36:96:f5:65:33:
2c:53:58:90:9c:26:ae:01:cf:42:84:55:51:2a:28:66:97:48:
ab:db:03:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:35:21 2026 by rpki-client