Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.mft
File: DyKg7jvG4y2JLt3iV8u3mRefLNY.mft (raw, json)
Hash identifier: ZRCBAT1zAkiHF2aIBSBTXoc8ZpBjnIxWzyTGS0F7Pak=
Subject key identifier: A8:6E:A0:C6:9E:DF:7E:47:B9:56:DA:3D:89:8C:E6:5A:8A:5C:3B:4C
Authority key identifier: 0F:22:A0:EE:3B:C6:E3:2D:89:2E:DD:E2:57:CB:B7:99:17:9F:2C:D6
Certificate issuer: /CN=0f22a0ee3bc6e32d892edde257cbb799179f2cd6
Certificate serial: 019E3117D8E511FC37D77346B6EA9B15DAC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DyKg7jvG4y2JLt3iV8u3mRefLNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.mft
Manifest number: 0A7B
Signing time: Sat 16 May 2026 14:01:46 +0000
Manifest this update: Sat 16 May 2026 14:01:46 +0000
Manifest next update: Sun 17 May 2026 14:01:46 +0000
Files and hashes: 1: 6anxR7oWcscDd04QL41XaD9H2mI.roa (hash: HOaKAJ+9l8ZBJN2kLFM0Go13VYLLmXxM5vLOU8G4dHg=)
2: DyKg7jvG4y2JLt3iV8u3mRefLNY.crl (hash: naxIS9UsWw4UIpZh2O+DUAm6VX/fFgFkvhb9Y79WVf8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.mft
rsync://rpki.ripe.net/repository/DEFAULT/DyKg7jvG4y2JLt3iV8u3mRefLNY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:d8:e5:11:fc:37:d7:73:46:b6:ea:9b:15:da:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f22a0ee3bc6e32d892edde257cbb799179f2cd6
Validity
Not Before: May 16 14:01:46 2026 GMT
Not After : May 17 14:01:46 2026 GMT
Subject: CN=a86ea0c69edf7e47b956da3d898ce65a8a5c3b4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:86:6d:b9:f1:b6:ac:46:66:eb:bd:b5:20:e1:
81:55:07:cb:f0:e8:de:f2:ef:2c:4c:be:e0:21:d0:
3a:e9:86:4c:a6:5c:f7:b9:d5:f7:e2:49:83:4f:de:
9b:ee:ee:ea:51:c2:38:89:38:3b:32:a4:69:d3:35:
7b:b1:61:f5:01:db:9d:3d:d4:d7:c7:14:43:04:7d:
80:7e:46:55:2f:9d:61:87:2d:5f:84:bf:2e:e3:df:
09:ed:5c:27:12:44:d4:29:d1:e9:0a:47:a7:41:e5:
3e:df:1a:e2:09:3d:d1:6d:90:ae:3c:68:1e:b9:5b:
01:4d:68:f1:89:d5:bb:1b:19:cd:72:84:05:8c:22:
bd:92:a5:51:7f:17:3f:40:53:c3:3d:82:a1:51:b6:
b1:58:b7:22:5c:c8:e9:dd:8e:7d:96:fa:21:66:bd:
46:34:df:67:d4:f1:d6:d9:bf:57:13:4d:d2:5b:bd:
6e:56:c8:32:7c:35:f5:65:91:20:76:ba:8c:b8:f4:
eb:16:ca:99:6d:b1:13:3d:be:46:49:27:a7:e6:fc:
9d:a1:10:c8:26:5c:3f:7e:72:42:4b:0c:0b:db:e7:
af:26:97:b8:80:08:e2:d0:e9:b7:0c:04:8c:3e:52:
9d:f9:a1:63:2a:e5:ea:67:6e:ab:16:22:99:ab:14:
40:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:6E:A0:C6:9E:DF:7E:47:B9:56:DA:3D:89:8C:E6:5A:8A:5C:3B:4C
X509v3 Authority Key Identifier:
keyid:0F:22:A0:EE:3B:C6:E3:2D:89:2E:DD:E2:57:CB:B7:99:17:9F:2C:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DyKg7jvG4y2JLt3iV8u3mRefLNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:c6:4b:73:5e:46:ca:14:2e:7b:59:a9:92:ca:d2:cb:01:5c:
83:16:ac:f7:49:3e:39:11:36:86:0e:99:22:87:6d:48:65:1b:
fc:04:e7:f1:ab:d4:96:59:93:66:2d:e1:55:7f:4b:4f:a1:1c:
d1:2c:2f:a9:0e:de:f0:f7:ac:09:9a:13:f7:b4:a4:e8:e7:94:
58:33:35:88:ef:41:45:ac:37:51:82:d7:0b:3b:aa:fb:36:a0:
50:3f:25:ed:c0:db:e3:d7:46:96:39:60:10:74:7c:5d:5c:8f:
a0:04:6a:d6:39:47:99:1d:fc:92:23:99:43:ac:bf:ad:1c:8a:
08:ad:3a:c2:7e:b2:dc:c9:4b:c8:c5:47:83:22:60:93:6a:e4:
59:6f:28:a9:5e:3f:65:18:f3:e2:ef:31:aa:9b:85:68:08:d0:
15:89:38:d2:0c:23:0e:b8:e3:07:4c:45:5f:eb:6a:f6:4a:d1:
ac:9b:4b:05:1c:ac:6b:ef:55:29:da:11:76:69:76:70:af:d0:
0b:33:11:32:af:bc:c0:3f:85:df:50:0e:1f:bf:42:e4:b1:d8:
48:db:8f:33:ce:92:93:08:ac:2a:5b:e9:88:8e:1d:a2:eb:5b:
6a:d1:5e:70:b3:5c:f3:fe:35:2a:e1:ac:60:81:a6:1e:a0:67:
de:31:a7:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:46 2026 by rpki-client