Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
File: D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft (raw, json)
Hash identifier: 9/01yg9r9DnNde+kc+6/h2QRT6pIn80G+NDTMe51CZA=
Subject key identifier: 83:40:08:8A:A7:57:6E:11:C0:D5:09:7F:FB:8A:47:3C:FA:CE:BB:D8
Authority key identifier: 0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
Certificate issuer: /CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Certificate serial: 019E303B7991FF5BDCF1698EA6F2C8406F9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
Manifest number: 16EE
Signing time: Sat 16 May 2026 10:01:04 +0000
Manifest this update: Sat 16 May 2026 10:01:04 +0000
Manifest next update: Sun 17 May 2026 10:01:04 +0000
Files and hashes: 1: D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl (hash: O6JICYPtleBUctMQ8PTtO/RY/KeqfoYT7l4NINmVvHk=)
2: FVoehWVHfRAM9Wax2PLEzeuzUcQ.roa (hash: jKrRrki3jFgX40lflCLx2Zym5UZldktVdjD6ypmdCdQ=)
3: _FcCRW97Oyy-701A8ky-qnc9PuQ.roa (hash: TPZyrFAeXnN7pauwjeZRrcEQ8uCeSHffzbaYPf3BfAQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:79:91:ff:5b:dc:f1:69:8e:a6:f2:c8:40:6f:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Validity
Not Before: May 16 10:01:04 2026 GMT
Not After : May 17 10:01:04 2026 GMT
Subject: CN=8340088aa7576e11c0d5097ffb8a473cfacebbd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5b:c3:20:db:50:79:b7:d6:22:c9:57:54:c7:
4a:22:d6:a6:c5:28:62:68:f4:f8:73:4d:73:13:a9:
b6:f5:76:c8:b5:85:70:11:0a:9d:bd:d5:04:0a:77:
cc:a1:a9:96:21:f1:63:0a:5e:ab:ce:10:2c:d4:8d:
fa:85:4b:e4:77:e2:1b:25:36:d6:cb:22:29:5a:57:
ce:50:de:82:9b:2d:fa:81:13:7f:9e:49:0c:0d:8b:
fa:d3:e0:fe:bc:0c:37:53:71:3b:88:fa:02:26:74:
f2:d2:b1:bf:43:53:83:b0:a7:c4:5b:bd:c4:ff:e9:
04:8a:22:69:c7:93:53:f5:32:0a:fb:df:09:c7:b9:
ac:d6:f6:de:ad:c1:6b:12:a9:1a:6f:8b:97:bd:82:
c5:78:40:c6:df:6a:62:9c:05:bf:15:2b:25:df:5c:
b2:07:a8:a0:60:32:35:9d:c8:d0:07:cc:27:e8:3e:
8a:8b:ad:e3:4a:4c:5f:9f:fa:d4:3a:a3:29:1c:4f:
a7:67:84:44:5c:b8:41:8d:86:97:49:3f:01:15:e8:
75:96:f0:ea:f3:da:22:bf:da:8e:a0:8d:e0:a6:c6:
83:8e:2f:21:ad:01:f3:57:c1:6a:11:b9:83:b8:74:
8e:3c:08:69:71:8e:5c:f0:d3:95:4f:06:9e:25:9d:
1e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:40:08:8A:A7:57:6E:11:C0:D5:09:7F:FB:8A:47:3C:FA:CE:BB:D8
X509v3 Authority Key Identifier:
keyid:0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:9e:d4:18:33:b6:4f:8c:73:8b:10:e3:4c:2f:18:85:1f:f2:
f9:7c:67:6b:fb:63:48:55:d1:d8:1a:f3:b9:fb:ee:fd:77:f1:
36:0b:bd:3f:98:7d:f3:87:29:44:33:0f:ac:1a:82:fd:4c:f4:
c2:a9:b5:94:fa:6c:a4:34:76:05:8a:a1:6f:c4:4e:65:f6:e8:
1e:c7:77:9e:61:d4:f2:d4:09:1f:d2:99:88:5c:fc:90:7d:e1:
93:8a:7c:a4:49:7f:87:7a:77:e7:07:f2:38:ec:cd:7d:82:93:
63:d7:38:82:54:ce:22:96:c9:8d:9c:f2:bd:88:33:12:37:f7:
91:62:47:e8:9c:67:80:38:4f:a8:23:58:09:b2:d6:45:d3:59:
43:15:c8:b7:f8:29:24:d0:84:e8:b4:f5:3b:c6:a3:06:07:d6:
ed:01:7d:05:24:4a:ad:25:d8:ce:e7:91:de:c4:71:08:6f:88:
c8:a7:85:7c:e6:59:bc:b6:c2:5b:fa:b7:d2:11:84:4b:8d:99:
dd:52:0a:5e:01:55:47:ee:3f:4c:64:21:af:0c:8b:a2:0f:f1:
16:b9:04:69:99:1f:cc:92:5f:c7:5e:19:af:98:94:97:97:88:
78:52:bd:38:f9:41:f9:a9:58:35:3c:ec:4d:d6:e5:8f:2f:66:
7d:25:8c:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:00 2026 by rpki-client