Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
File: DKtCI5upRIWzELVRXczH_u2SIFw.mft (raw, json)
Hash identifier: 1h8aGQS4EavLZquFduxloysCAUzns21nKQG5TUH4RUM=
Subject key identifier: C1:0A:FF:27:CA:F6:D7:CC:20:96:34:10:DD:AA:85:E6:B4:48:91:5C
Authority key identifier: 0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
Certificate issuer: /CN=0cab42239ba94485b310b5515dccc7feed92205c
Certificate serial: 019E30053B32872376ADBE70158D4E060E49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
Manifest number: 184F
Signing time: Sat 16 May 2026 09:01:49 +0000
Manifest this update: Sat 16 May 2026 09:01:49 +0000
Manifest next update: Sun 17 May 2026 09:01:49 +0000
Files and hashes: 1: BT7pM6aA48OhQBOTNTxsIIj998o.roa (hash: KphTI+QWos8k5E5HwXib2t7YlXAqDNRWwkCn5ph3kyg=)
2: DKtCI5upRIWzELVRXczH_u2SIFw.crl (hash: WySL9KR6W0ctB9pnC1np4+U2+U25KxXCKH/7+VDGfds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:05:3b:32:87:23:76:ad:be:70:15:8d:4e:06:0e:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cab42239ba94485b310b5515dccc7feed92205c
Validity
Not Before: May 16 09:01:49 2026 GMT
Not After : May 17 09:01:49 2026 GMT
Subject: CN=c10aff27caf6d7cc20963410ddaa85e6b448915c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ac:7a:e3:19:12:c4:c3:b2:ce:d2:b3:30:c2:
98:5b:a3:0d:a1:a5:71:7d:cc:bf:37:a8:ad:7e:a8:
b1:7c:b4:51:94:65:7a:c5:bd:67:f7:a3:aa:81:54:
ee:a3:a2:fb:3d:c6:08:0a:ba:91:60:ab:9b:ee:22:
ba:19:f5:b0:9d:95:d6:fe:0d:38:3b:60:f7:ea:40:
e2:ea:90:0d:a8:bf:f5:af:5b:41:7d:c4:fc:da:e9:
3f:f9:10:f9:9d:c6:9d:c7:25:72:b0:5c:1e:c4:2c:
45:ae:3c:a7:c9:4f:bb:85:db:c3:de:f8:66:4b:cd:
f2:de:90:c4:7d:5d:a4:c0:fd:c1:54:12:44:aa:a5:
ce:96:11:b0:42:68:1e:43:4a:b2:4c:ce:d2:83:f3:
33:87:68:24:e0:7d:72:6e:1d:7f:bb:05:78:05:d3:
77:35:cf:65:33:b1:a7:6c:3c:a9:1c:9b:02:a8:32:
e0:fc:38:1c:91:5c:53:76:84:6a:77:47:96:54:a9:
e0:6d:30:f9:ab:f8:c0:23:d9:6b:89:cf:0b:ec:2d:
ff:5a:c5:17:0c:41:bc:ef:df:42:69:88:60:35:69:
6c:48:b0:91:6b:1c:05:95:ca:d4:9e:bd:74:a2:c6:
fd:a8:d6:ce:e8:10:c0:8a:1c:ce:4f:d2:99:0b:f8:
47:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:0A:FF:27:CA:F6:D7:CC:20:96:34:10:DD:AA:85:E6:B4:48:91:5C
X509v3 Authority Key Identifier:
keyid:0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:32:45:a3:d6:45:bc:3b:90:3b:c5:99:c8:66:aa:de:cf:0c:
cc:b3:26:fc:9b:9b:8f:61:7a:fd:50:f1:9a:29:4b:49:95:51:
63:75:17:d4:43:ce:87:bb:57:12:a2:7e:f3:36:96:3c:82:1d:
e7:47:ef:42:bc:85:53:18:9a:05:72:61:16:cf:2b:ec:78:92:
a5:15:b5:c1:2a:28:5e:a0:eb:75:03:d4:d1:aa:7b:a1:2a:74:
cf:9c:1e:64:4d:85:fd:96:97:90:34:41:de:61:d5:d0:e5:30:
9a:a5:3c:c0:8b:7b:0a:ed:08:04:72:4e:1f:b1:50:7f:5a:38:
cd:e3:41:b2:18:08:ff:93:96:1f:76:f8:1e:93:2e:75:50:e4:
07:35:71:a1:6e:09:16:c4:6f:32:ec:87:e9:39:0e:3c:05:59:
2a:92:af:aa:91:61:e1:e4:6f:23:0a:61:a7:47:bf:9e:f9:36:
f7:97:da:0f:7e:b3:4d:ea:c1:71:bd:56:79:cf:cc:89:3d:19:
c7:cb:5d:1d:03:b0:38:9e:8b:1d:41:a7:f7:c3:76:e0:3c:63:
5a:18:e0:c2:1f:ef:bc:fc:23:bb:12:99:c3:53:ee:7e:8c:51:
d0:be:18:13:0b:33:1b:1f:37:f6:e5:87:6d:8c:33:77:f9:f1:
20:b5:d1:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:55:36 2026 by rpki-client