Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
File: 0ffNDsTDvFTFlDEwfuw27wOCdzM.mft (raw, json)
Hash identifier: ET2WMRngqiwU0KunzqN5YNJDW8mgZLyiU8prMCerVEE=
Subject key identifier: 7C:60:14:33:20:5E:A1:19:1A:44:04:51:3B:47:AA:39:BC:17:1B:64
Authority key identifier: D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
Certificate issuer: /CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Certificate serial: 019E3185A39224B7A1FF02AE332C1165DFA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
Manifest number: 190F
Signing time: Sat 16 May 2026 16:01:41 +0000
Manifest this update: Sat 16 May 2026 16:01:41 +0000
Manifest next update: Sun 17 May 2026 16:01:41 +0000
Files and hashes: 1: 0ffNDsTDvFTFlDEwfuw27wOCdzM.crl (hash: cRVkVY7/iSxv/ue0DoFWbZT2VHTcR56Z30RK8fRW/lo=)
2: gZRVVjbr0VF9kLZepM4sAakfV64.roa (hash: OS+DVlQyVLtcNxKCYd+cy14Vh3Z+rz6mTy8GBtTKd0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:85:a3:92:24:b7:a1:ff:02:ae:33:2c:11:65:df:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Validity
Not Before: May 16 16:01:41 2026 GMT
Not After : May 17 16:01:41 2026 GMT
Subject: CN=7c601433205ea1191a4404513b47aa39bc171b64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:c9:cd:83:a9:b5:46:9a:f3:5f:03:66:9d:e6:
c3:f1:df:bb:93:26:c2:9b:90:f8:b1:f1:c1:3c:61:
55:cf:e3:b4:89:1a:aa:ff:eb:04:6e:33:0f:96:1b:
bd:8d:f3:e8:1a:74:3d:53:cd:4a:3b:74:35:b1:c2:
02:82:d1:8f:08:75:86:ce:83:91:59:0a:63:f7:00:
d2:4e:20:5e:43:b8:62:66:a9:05:bd:83:08:9f:e2:
ec:af:6f:6f:da:44:ca:1f:f3:b0:60:c0:b1:9e:c7:
47:21:e1:e2:be:85:81:c0:6b:fc:3d:d5:76:b2:f7:
d0:93:63:26:9a:69:49:0b:70:e3:29:a5:83:0c:60:
71:ec:64:ee:7f:99:ca:19:3f:1d:94:6c:a2:56:6e:
65:91:bc:96:5a:41:e8:2b:7a:2a:86:21:47:2a:1c:
f8:22:42:d5:86:21:97:1d:a0:77:82:78:e4:57:02:
57:a9:74:5e:6f:66:f0:c1:a5:f7:4d:8d:97:63:ef:
55:46:2c:33:3c:fa:23:1a:dd:67:e5:4a:88:56:06:
e4:f9:2d:41:42:57:42:fd:a0:75:b9:4d:7d:6d:a4:
0f:61:ae:41:c3:b5:11:47:c8:84:10:3b:99:1e:43:
88:3b:87:bf:16:cc:9b:8e:5b:ba:95:bc:c6:91:75:
a1:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:60:14:33:20:5E:A1:19:1A:44:04:51:3B:47:AA:39:BC:17:1B:64
X509v3 Authority Key Identifier:
keyid:D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:a8:cb:80:d1:5d:4e:ba:85:9c:ce:7b:1a:69:5e:54:5a:39:
7f:c6:e7:39:3d:26:4e:e6:64:84:87:63:8a:8a:f7:01:34:b7:
2f:57:6c:40:5d:78:d4:18:07:dd:97:f6:68:f5:43:d1:fd:07:
33:90:65:95:0b:78:e4:49:fb:33:fc:77:9c:91:b8:28:e8:bc:
ce:ae:43:bc:92:ea:2b:6c:04:9a:9d:de:85:a5:0d:0a:7d:c2:
8f:39:12:15:44:b9:49:bc:3f:28:61:d5:46:93:70:32:b3:6a:
54:5e:08:9d:49:8e:ad:34:60:4b:57:55:8c:e5:b1:ab:0c:09:
e5:0e:07:c7:29:1a:81:11:cc:04:45:81:42:02:b7:51:87:6d:
35:32:d3:f9:cd:66:28:6b:56:bc:b0:fe:fa:64:19:43:41:bc:
29:7f:58:cc:30:98:62:f7:4e:94:af:b2:67:75:27:97:e0:e5:
2b:99:d9:09:a4:a3:da:87:86:31:63:ae:84:90:a1:c9:9a:b4:
c2:77:61:d2:cc:f6:11:11:5e:32:6b:8d:05:9b:19:74:0b:ef:
01:b1:9b:0a:a1:0c:99:6d:62:52:ad:20:17:40:5b:00:c7:2a:
55:37:33:5d:88:76:29:6c:c9:d1:16:99:3f:22:5b:91:b8:f5:
83:45:d2:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 19:29:56 2026 by rpki-client