Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
File: dAThbzM9iWUMZhOsbJXTSNxLeVA.mft (raw, json)
Hash identifier: oJhqsVdFXpQ5VOBY4niZYg0tyvejP9RK1pI8s7OVfzE=
Subject key identifier: B2:C8:1A:A2:C1:83:25:8D:2E:27:82:7A:02:6B:2C:60:81:D1:84:B6
Authority key identifier: 74:04:E1:6F:33:3D:89:65:0C:66:13:AC:6C:95:D3:48:DC:4B:79:50
Certificate issuer: /CN=7404e16f333d89650c6613ac6c95d348dc4b7950
Certificate serial: 019E9B8518BE068DC2C1F28C525DDFAC4613
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
Manifest number: 04D1
Signing time: Sat 06 Jun 2026 06:00:51 +0000
Manifest this update: Sat 06 Jun 2026 06:00:51 +0000
Manifest next update: Sun 07 Jun 2026 06:00:51 +0000
Files and hashes: 1: aON68VTwskogSIwfK0by-nZp_Rg.roa (hash: dkh8/Wbv+HTgUBFM4ZbuS+fZuVAjLH6qIB6RVSRMT9M=)
2: dAThbzM9iWUMZhOsbJXTSNxLeVA.crl (hash: N3tcI0hyyoMzpCOa6YGlhSjtN5NFMuVuI6Nu+xNmiKk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9b:85:18:be:06:8d:c2:c1:f2:8c:52:5d:df:ac:46:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7404e16f333d89650c6613ac6c95d348dc4b7950
Validity
Not Before: Jun 6 06:00:51 2026 GMT
Not After : Jun 7 06:00:51 2026 GMT
Subject: CN=b2c81aa2c183258d2e27827a026b2c6081d184b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:19:f8:20:c3:94:61:43:63:f3:19:7c:55:e4:
db:82:8d:50:49:81:af:c7:6c:2b:d1:e3:c2:54:92:
e1:28:2c:c3:84:69:d3:2b:8c:9d:15:9f:c2:00:0d:
35:a0:db:51:1e:79:c2:05:0e:2e:4e:13:79:3b:5e:
cd:a4:b6:14:4e:d4:6d:24:d8:df:5d:91:8b:28:74:
4e:b5:95:cb:53:85:3c:60:ef:46:6d:55:f5:eb:2a:
39:b5:82:d4:0c:81:d4:c4:de:51:86:0b:0a:66:ee:
ba:6a:00:44:a5:83:9b:60:49:47:85:1d:4f:58:a9:
4a:3d:a8:7f:03:ff:95:13:b8:68:0b:6f:68:20:eb:
d0:85:7c:eb:9b:02:96:8b:dc:5b:19:e9:5f:4d:10:
f3:9d:cf:f4:b3:fa:86:bd:cb:62:13:82:91:cd:05:
f5:03:f5:c7:62:80:2d:6f:16:0f:47:65:6a:37:41:
b4:6b:3b:cb:f4:cf:1e:b7:db:00:9f:4c:cc:d2:b9:
73:72:45:22:55:4d:4f:23:59:b1:ee:5c:9f:05:76:
58:02:03:cf:b1:ea:e9:32:93:cd:78:35:5c:78:0f:
eb:48:b7:de:48:d6:1e:aa:2f:66:81:9a:ab:76:08:
ff:e2:9a:7c:77:9d:7b:9e:f9:0f:a2:75:e3:70:d5:
fb:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:C8:1A:A2:C1:83:25:8D:2E:27:82:7A:02:6B:2C:60:81:D1:84:B6
X509v3 Authority Key Identifier:
keyid:74:04:E1:6F:33:3D:89:65:0C:66:13:AC:6C:95:D3:48:DC:4B:79:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:ba:99:fb:da:23:d7:8a:c4:e1:95:07:67:dc:a4:a1:cc:c9:
71:21:c2:0b:11:3c:95:1e:ab:4b:02:1a:d6:46:71:9d:35:25:
a0:ab:46:30:87:29:43:73:79:5c:30:c7:68:44:5c:0e:bc:07:
db:64:50:16:56:24:20:7c:5c:7c:92:88:e1:07:15:e3:ad:d6:
f1:70:05:d2:10:c3:cd:fc:ec:48:0a:44:89:ad:cd:49:55:3f:
f8:56:a6:cd:d7:d0:ea:1d:27:10:d6:08:1d:14:d9:3d:32:93:
8f:91:18:8f:88:02:8d:72:d8:99:d1:4b:17:ee:fc:d7:7a:4a:
cf:3f:a7:0e:b1:a2:51:9c:c2:57:1c:b0:77:60:e2:0c:87:14:
d7:ea:ad:9e:ac:50:e1:e2:c8:d3:7e:cf:03:07:0d:e9:13:38:
4d:a1:24:12:fc:5a:1d:a1:c5:d1:7a:94:70:d8:f7:cb:7d:0c:
a6:9f:73:72:9a:48:e4:d6:20:33:78:8b:40:cd:e5:26:f9:b7:
99:cd:8d:8f:02:17:87:3c:ad:a1:d6:71:33:c5:e0:0b:89:17:
81:4d:7c:a4:08:fe:12:9f:63:6b:79:51:38:98:20:17:1d:e6:
89:b9:01:ab:75:a1:80:7d:53:96:e5:16:64:59:a7:31:cd:a3:
fc:78:f5:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 13:36:24 2026 by rpki-client