Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
File: DKtCI5upRIWzELVRXczH_u2SIFw.mft (raw, json)
Hash identifier: 2U0pVZYuj587VdkakALwiJF6aLgAx24QeTqPQs8SkzE=
Subject key identifier: F9:33:A1:93:3E:CA:76:17:77:B9:B6:D6:53:F9:64:9C:2F:65:9F:5B
Authority key identifier: 0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
Certificate issuer: /CN=0cab42239ba94485b310b5515dccc7feed92205c
Certificate serial: 019D38D3779BA4BF5868C302A2D9DD7B10BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
Manifest number: 17CF
Signing time: Sun 29 Mar 2026 09:01:15 +0000
Manifest this update: Sun 29 Mar 2026 09:01:15 +0000
Manifest next update: Mon 30 Mar 2026 09:01:15 +0000
Files and hashes: 1: BT7pM6aA48OhQBOTNTxsIIj998o.roa (hash: KphTI+QWos8k5E5HwXib2t7YlXAqDNRWwkCn5ph3kyg=)
2: DKtCI5upRIWzELVRXczH_u2SIFw.crl (hash: Lhc5Muq5br7gH+kQled7fuZe1l3lhi+8NYqG9mW+4+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:77:9b:a4:bf:58:68:c3:02:a2:d9:dd:7b:10:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cab42239ba94485b310b5515dccc7feed92205c
Validity
Not Before: Mar 29 09:01:15 2026 GMT
Not After : Mar 30 09:01:15 2026 GMT
Subject: CN=f933a1933eca761777b9b6d653f9649c2f659f5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ee:ae:e7:91:09:71:8b:b9:33:ae:3c:83:47:
00:cb:6d:a5:8c:85:59:b9:94:3e:61:0b:54:c0:9e:
c0:d6:f9:01:1d:36:f6:fa:93:d4:f0:16:c9:f0:26:
27:8b:5f:2c:35:8d:63:6d:4e:a5:ab:63:8f:e3:26:
d2:90:06:60:2f:22:25:8a:28:45:5f:95:ad:23:7b:
b5:e1:df:58:c5:f2:92:3a:6a:8d:f2:eb:0b:c2:83:
f6:af:27:46:8b:89:85:d7:8a:7e:6a:e7:4f:16:50:
8f:c9:48:ea:11:a6:16:73:de:7b:57:bc:b2:a1:d1:
2b:8b:87:c5:e1:fc:6c:fb:14:68:a4:cc:6d:c9:91:
6f:66:ef:dd:84:49:f0:ee:95:6a:0c:48:58:90:a1:
20:f7:1c:d4:59:14:bf:7c:69:b9:e4:16:68:a0:2d:
08:bd:1b:f1:98:56:c7:a2:5b:cc:7b:ee:63:83:a4:
45:09:81:19:12:eb:96:07:3b:a3:57:63:ab:4c:cb:
b1:98:1e:5b:f1:88:7d:46:4d:42:54:c8:69:dd:c0:
99:92:ee:2a:1e:8f:1f:7d:05:a3:f9:86:58:1c:d1:
cb:66:bd:0c:71:1f:e5:29:40:ed:d3:a7:a7:82:0c:
49:bd:e4:b8:c3:92:d9:1f:61:51:f8:56:5d:16:82:
33:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:33:A1:93:3E:CA:76:17:77:B9:B6:D6:53:F9:64:9C:2F:65:9F:5B
X509v3 Authority Key Identifier:
keyid:0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:45:5c:48:a1:c1:98:f4:a8:14:dd:a2:d1:1b:09:c1:88:31:
4c:04:d0:b3:da:93:b6:2b:4f:9e:b6:be:03:59:62:59:ec:09:
59:da:9a:c8:c5:28:4e:11:f3:ec:ac:df:2a:6d:cb:6b:3a:e4:
a9:08:12:3f:2a:d5:e4:2b:fe:73:62:f5:5a:9c:75:94:21:e8:
0b:b4:8d:9e:f0:a4:8b:e1:d2:99:9b:b2:f2:f2:fd:a0:dc:79:
ad:c8:92:25:bc:01:5e:0a:34:e2:61:25:d3:12:2e:10:0c:65:
32:4c:c7:bd:e6:36:4c:c4:d0:e7:22:15:15:03:1b:58:ae:c3:
9d:17:66:9f:1e:93:32:48:e8:2e:5e:4a:e5:90:65:28:4b:f2:
bd:08:19:f2:e5:7e:d5:f0:60:a9:30:53:81:7a:64:2b:97:d2:
6e:10:d2:8f:b4:3b:e8:62:35:e2:32:10:59:f9:2b:c7:37:00:
24:ec:15:d2:9e:56:e7:07:9f:79:71:78:28:b0:fc:09:10:1d:
a5:12:9a:18:20:17:38:e5:2c:47:4b:e1:e8:72:de:c9:a6:55:
be:e5:fa:13:a2:43:e4:e2:e0:6c:54:3f:60:60:7d:42:bd:c9:
40:b8:b7:ec:64:1a:9f:1b:ad:7d:31:bc:97:aa:6d:ee:99:ed:
cb:cb:56:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:20 2026 by rpki-client