Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
File: D97nlErE2jERKV2B4p3roAwWOpY.mft (raw, json)
Hash identifier: QMj3vQJuY1ectJ2CHt1OL68XBF7nlxxK2mc4Cag8Y+M=
Subject key identifier: 19:42:8E:44:2B:21:A7:43:47:F8:A5:7B:25:A7:11:A9:F9:20:91:9F
Authority key identifier: 0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96
Certificate issuer: /CN=0fdee7944ac4da3111295d81e29deba00c163a96
Certificate serial: 019F1755681019C8A92EC91C07FB15378028
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
Manifest number: 1382
Signing time: Tue 30 Jun 2026 07:01:40 +0000
Manifest this update: Tue 30 Jun 2026 07:01:40 +0000
Manifest next update: Wed 01 Jul 2026 07:01:40 +0000
Files and hashes: 1: D97nlErE2jERKV2B4p3roAwWOpY.crl (hash: 83y+yRURMa3XVXJGhl3GMjlPgBkBXqWAOvPde3dJn7g=)
2: WgNv7-eEqKwSW95Nva_O1MQX1iY.roa (hash: 9ipqetu8ePvj0pp7eCO9cwEQqK0gXGR/o2mUfaHu77U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 07:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:55:68:10:19:c8:a9:2e:c9:1c:07:fb:15:37:80:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fdee7944ac4da3111295d81e29deba00c163a96
Validity
Not Before: Jun 30 07:01:40 2026 GMT
Not After : Jul 1 07:01:40 2026 GMT
Subject: CN=19428e442b21a74347f8a57b25a711a9f920919f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e1:2b:dd:d2:28:89:71:ca:f6:ad:da:a2:7e:
9b:b6:50:dd:ce:5b:a7:a5:0d:97:1b:e7:87:8c:17:
25:95:0c:12:f5:ba:54:59:1d:f4:b7:f3:0a:81:ab:
40:89:b2:9a:ef:de:82:3e:49:b9:ae:56:ba:13:05:
8e:12:4e:0f:3f:3d:0a:a3:7e:95:7f:7c:36:3e:b3:
64:a8:0d:67:eb:b0:1b:cf:f4:50:1a:96:b3:17:69:
9c:d7:c0:65:6f:93:2d:5d:72:94:65:3c:7a:6b:49:
b1:fb:b9:71:8b:67:55:bb:c7:cd:b3:19:92:49:55:
ba:3f:52:77:d0:c0:f8:31:3a:35:14:62:ad:85:6c:
79:b4:98:f1:12:7c:b0:53:84:99:59:0c:42:50:a6:
98:f9:e8:1f:2c:43:d3:14:09:6c:91:74:eb:6c:f1:
36:93:4e:aa:e0:e3:dd:6c:32:0b:58:84:d4:22:2d:
87:72:18:e2:24:8f:3b:e5:e8:00:89:55:47:a1:c2:
91:de:bb:c2:68:32:89:63:d6:f5:88:80:ca:6b:a1:
81:3d:49:0c:e4:59:ea:2f:29:59:5d:82:ac:e2:c8:
9c:83:80:07:23:f7:1e:cb:ef:ea:92:b5:83:67:80:
eb:61:61:53:12:4a:03:0a:70:2b:22:38:d9:2a:69:
dd:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:42:8E:44:2B:21:A7:43:47:F8:A5:7B:25:A7:11:A9:F9:20:91:9F
X509v3 Authority Key Identifier:
keyid:0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:d4:89:55:4b:ee:c0:95:b5:8e:60:cf:3a:21:bf:15:9f:0f:
f3:44:7f:2d:2f:a0:3e:32:a2:05:14:bd:85:be:cc:b9:ba:f1:
d0:33:14:03:c7:1f:5b:0d:91:87:7d:8b:4d:b4:b4:5b:38:2d:
7b:9d:46:e3:c1:b2:86:37:5d:17:55:77:92:9c:f1:82:57:cd:
43:5d:5d:6c:0b:ff:94:eb:62:74:cc:9e:a9:9b:af:50:3c:71:
e8:c2:f8:d1:fd:4f:99:67:28:24:61:26:cd:6d:9c:f0:f3:4a:
15:50:87:d7:88:f8:6e:0d:1c:14:67:af:00:c4:ab:20:d7:68:
20:5b:09:09:1c:f9:2a:58:3c:74:e2:21:05:ae:3c:f0:bf:96:
12:08:b7:fe:97:3e:15:5d:ae:18:cb:bd:9c:46:47:05:25:c9:
64:c7:88:75:07:83:c7:8c:66:f1:ee:96:c0:4d:71:40:f9:ae:
39:1f:84:26:30:50:7b:61:1c:73:47:fe:3c:55:34:28:a0:ea:
52:0b:f7:73:04:5e:75:ad:09:59:bd:b3:43:fc:d3:6b:84:77:
fa:15:a6:7c:72:88:5f:06:34:77:68:24:ff:4f:f7:2d:b3:66:
3b:1b:a6:ed:f4:1f:03:9a:1e:2f:f7:1d:8d:9c:08:4a:ad:dd:
f0:aa:2b:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:07 2026 by rpki-client