Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
File: D97nlErE2jERKV2B4p3roAwWOpY.mft (raw, json)
Hash identifier: d9/QPx5W4NcBbEY3xmeExx151nyPy6GNwv2sj181Nu4=
Subject key identifier: 8F:C9:03:16:A4:65:C2:B7:40:67:5C:B6:AD:02:78:F1:4B:0C:90:DC
Authority key identifier: 0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96
Certificate issuer: /CN=0fdee7944ac4da3111295d81e29deba00c163a96
Certificate serial: 019E2F969EC5D609A6F1BB5EFA7E57D908BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
Manifest number: 130A
Signing time: Sat 16 May 2026 07:01:00 +0000
Manifest this update: Sat 16 May 2026 07:01:00 +0000
Manifest next update: Sun 17 May 2026 07:01:00 +0000
Files and hashes: 1: D97nlErE2jERKV2B4p3roAwWOpY.crl (hash: S/UdtQI1TlpWYwxlw4b7ut8WWs/bl7SL/H+CzM2Nz7Y=)
2: WgNv7-eEqKwSW95Nva_O1MQX1iY.roa (hash: 9ipqetu8ePvj0pp7eCO9cwEQqK0gXGR/o2mUfaHu77U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:96:9e:c5:d6:09:a6:f1:bb:5e:fa:7e:57:d9:08:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fdee7944ac4da3111295d81e29deba00c163a96
Validity
Not Before: May 16 07:01:00 2026 GMT
Not After : May 17 07:01:00 2026 GMT
Subject: CN=8fc90316a465c2b740675cb6ad0278f14b0c90dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:99:19:e3:f6:07:dd:9d:01:75:73:21:7f:f2:
e4:38:f4:68:d5:da:d1:35:a3:37:5a:c7:e8:e6:64:
b3:3e:f3:15:0b:04:a9:2d:dd:d5:2e:34:39:56:3b:
94:0b:fe:1a:7c:4d:f3:86:37:cc:70:36:e1:f0:78:
ae:43:de:c7:60:72:83:76:9f:5a:f5:2a:e9:9a:dd:
43:a4:0f:87:f3:92:30:95:83:65:d9:76:33:d4:8d:
ba:cc:0d:a3:b6:45:b0:df:32:2f:c2:73:08:50:7c:
4f:bd:f6:76:87:dd:46:ad:f0:8e:02:19:2b:39:cb:
ef:29:de:88:77:8d:55:60:f7:f8:95:97:ac:8b:73:
67:ab:76:a7:9c:56:01:2d:2a:52:aa:16:da:5a:f2:
69:12:96:5d:ce:1c:6d:73:ff:b9:8e:2a:d1:22:04:
e3:b3:f1:9e:6a:6b:65:e6:df:4d:1f:89:90:06:c9:
fb:e4:d8:1c:4e:3b:b4:3c:ce:2c:c3:52:fe:f8:69:
47:ba:8f:43:03:11:8f:27:26:48:57:8a:ed:b7:34:
39:91:59:9d:3a:54:5b:da:07:96:90:43:5b:38:45:
06:2a:25:2b:c8:83:58:d2:09:63:2d:56:8f:2f:cc:
80:6e:50:c5:e4:66:97:ab:8c:06:2b:2c:cc:62:02:
44:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:C9:03:16:A4:65:C2:B7:40:67:5C:B6:AD:02:78:F1:4B:0C:90:DC
X509v3 Authority Key Identifier:
keyid:0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:2e:40:fb:59:19:a4:0e:4e:2f:06:21:6a:77:e7:ff:ca:f6:
e6:29:fd:5e:49:79:73:2a:63:a6:d9:f9:c9:2f:7c:59:fa:d4:
1f:82:dc:0a:70:46:6a:72:63:85:40:61:a0:f3:5f:cc:6d:0e:
50:7e:2a:39:de:7d:4c:85:48:ba:eb:d7:03:8b:17:28:54:80:
10:7a:12:6c:b0:66:de:39:f1:55:45:da:e9:9e:10:a5:8a:7c:
b8:3e:fd:23:52:7d:d7:29:db:87:47:2d:34:88:60:07:ec:d6:
3c:43:a5:da:32:b5:54:26:da:40:6e:19:1e:62:f8:2b:7a:9f:
43:6e:b8:3b:69:ff:11:10:42:db:b1:e6:8a:2c:8b:b5:1d:f5:
d6:c9:50:13:17:15:b1:a9:6e:0d:52:08:5d:ca:1f:5f:f3:3d:
c6:20:4d:29:74:0b:b9:c8:21:6e:d0:bb:a7:aa:5f:2e:26:7b:
4c:c7:12:d8:d9:a0:9b:58:27:e4:1c:d2:5b:92:24:19:bd:4d:
88:bc:6f:82:7c:3d:50:be:3e:58:b8:c2:cd:c5:b3:93:79:ba:
ee:2c:7c:98:64:85:e7:c2:66:13:cf:b0:01:bd:7f:09:8a:08:
f9:55:b2:42:a9:18:cb:ed:bb:dd:ca:a5:7f:13:74:cc:3a:cc:
a9:12:60:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:39:02 2026 by rpki-client