Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
File: D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft (raw, json)
Hash identifier: JA+eZ4Oqc+23du3DVWx0IZYWygokMfCL4VBI0VKuZ/w=
Subject key identifier: 74:78:C2:68:ED:0A:B1:77:65:41:D6:E5:2F:AF:C0:4E:70:18:58:A4
Authority key identifier: 0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
Certificate issuer: /CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Certificate serial: 019F17F931A408717D43DBCE3FA6B3B5668C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
Manifest number: 1766
Signing time: Tue 30 Jun 2026 10:00:34 +0000
Manifest this update: Tue 30 Jun 2026 10:00:34 +0000
Manifest next update: Wed 01 Jul 2026 10:00:34 +0000
Files and hashes: 1: D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl (hash: kVHbQd9rb0PZDsBEDphCoVJyxCvSTTFcITJW+W3JbJw=)
2: FVoehWVHfRAM9Wax2PLEzeuzUcQ.roa (hash: jKrRrki3jFgX40lflCLx2Zym5UZldktVdjD6ypmdCdQ=)
3: _FcCRW97Oyy-701A8ky-qnc9PuQ.roa (hash: TPZyrFAeXnN7pauwjeZRrcEQ8uCeSHffzbaYPf3BfAQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 10:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:f9:31:a4:08:71:7d:43:db:ce:3f:a6:b3:b5:66:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Validity
Not Before: Jun 30 10:00:34 2026 GMT
Not After : Jul 1 10:00:34 2026 GMT
Subject: CN=7478c268ed0ab1776541d6e52fafc04e701858a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d7:6d:bf:9b:54:7f:59:fd:37:59:27:a5:34:
46:ee:ec:d7:3e:79:f6:bc:93:25:9d:e5:80:4c:55:
86:7c:35:fe:df:ab:95:54:97:f4:36:c3:01:20:d2:
3b:a8:0a:a7:30:43:ae:29:0d:8a:54:97:3c:a7:97:
e1:79:b4:b1:de:4d:fb:89:d4:af:22:d7:cd:00:28:
db:ba:01:b3:47:79:a0:82:d6:e9:0b:96:1b:0a:5f:
1e:a7:cf:5f:6b:83:a3:9c:95:c1:f6:1d:4e:3d:e3:
d0:91:49:eb:85:24:ed:b9:99:2c:c3:66:86:73:95:
ac:ff:18:24:6b:c6:59:b6:04:61:49:4d:69:04:86:
d1:67:03:2d:81:f4:af:0b:5b:d3:25:58:c2:40:4d:
e4:d5:16:19:98:5e:17:ef:be:f9:97:52:b8:8c:39:
33:de:a6:5a:e9:68:f1:dc:2d:38:b3:ad:02:ba:a8:
88:e9:3d:3c:52:84:80:26:4d:ba:e2:d9:bc:d4:ca:
60:49:f4:9c:96:da:ea:5d:9f:50:d6:8a:5b:e2:ae:
87:38:13:c4:35:19:da:02:95:39:04:2b:27:3b:a9:
38:30:3d:c1:9a:66:02:e5:10:39:d5:04:25:64:e9:
8d:7a:fe:34:86:da:2f:89:cf:8e:78:30:9b:85:ef:
75:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:78:C2:68:ED:0A:B1:77:65:41:D6:E5:2F:AF:C0:4E:70:18:58:A4
X509v3 Authority Key Identifier:
keyid:0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:40:38:ca:90:2b:f4:f7:f8:d1:87:3e:44:3c:29:8e:7f:87:
bd:d2:43:9c:5a:7b:fe:36:11:95:a6:25:b8:96:27:87:7d:e9:
15:62:6e:26:ff:3d:b9:ac:6a:3d:45:66:92:67:b8:c9:df:ef:
c7:eb:db:8c:d9:44:04:a8:c8:dc:ae:58:05:23:0c:b3:be:56:
26:e2:34:53:25:3e:c1:9b:b0:89:21:a3:6e:5e:3d:d7:28:00:
f5:e9:ec:cc:76:b9:35:c8:ec:b7:66:9d:34:f6:bc:c7:ef:24:
c6:6c:01:44:8a:8e:22:89:de:be:11:1d:ab:b4:19:a8:ae:ab:
3f:3b:fc:ed:de:a2:ab:9d:ad:a5:fa:be:1c:e4:6f:83:79:38:
dc:17:d7:1e:a5:d5:1e:9f:8e:34:8c:10:e1:09:04:6c:d6:b5:
fd:8a:29:29:52:55:20:1e:16:88:1b:f0:2e:17:db:e9:6c:de:
81:15:bd:ea:48:8e:66:1c:8c:fd:ba:db:64:dd:a7:90:ce:fa:
8a:7e:7e:8a:cb:9c:75:7f:6c:a4:bd:6c:64:e4:b9:7b:5b:70:
61:f5:f9:eb:55:d1:b9:4d:89:32:d6:d9:b6:1b:b3:14:ea:b7:
10:eb:ed:52:81:b0:2c:4d:93:a7:74:18:94:7b:2f:cf:c8:cd:
0f:8b:4a:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:23:56 2026 by rpki-client