Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
File: dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft (raw, json)
Hash identifier: g+rdv2Bo486Tg2VLBPbdu6D8wL1517PUedEk2lhxk9E=
Subject key identifier: 4C:09:38:42:6C:07:C2:C2:CD:E2:9C:AE:81:AF:50:C6:47:37:2F:36
Authority key identifier: 74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9
Certificate issuer: /CN=74d7da63929999603395877448ce50ac6e0213a9
Certificate serial: 019E9B170DBFB3EABCF63F70ECC77EC24CA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
Manifest number: 11AE
Signing time: Sat 06 Jun 2026 04:00:39 +0000
Manifest this update: Sat 06 Jun 2026 04:00:39 +0000
Manifest next update: Sun 07 Jun 2026 04:00:39 +0000
Files and hashes: 1: SwOC6LWRUnc-Ogb7u3vxF_0mea4.roa (hash: /q8N1XNG3IXyW6BA6haLHv1Ug3hcBfXRJEVoULv8zlE=)
2: dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl (hash: ivUTfA0i9r8dYLIXJj+RoW5XE1Pv3DgMvRwq34vd4rk=)
3: iGjEi-RetR317ng4nZLQERiyp5Y.roa (hash: VlJirjJKzaqO+FqHC1L2a0e5Ten97AODI8Xgtdno6FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9b:17:0d:bf:b3:ea:bc:f6:3f:70:ec:c7:7e:c2:4c:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74d7da63929999603395877448ce50ac6e0213a9
Validity
Not Before: Jun 6 04:00:39 2026 GMT
Not After : Jun 7 04:00:39 2026 GMT
Subject: CN=4c0938426c07c2c2cde29cae81af50c647372f36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6c:da:e5:4a:6d:2a:6b:28:34:97:7c:53:09:
4a:e7:07:82:15:6b:02:84:f8:38:24:5a:3a:83:1e:
d0:30:b2:f4:82:22:6b:fb:97:63:4f:e0:d2:df:09:
e1:0c:1e:6f:a5:e8:eb:64:ff:1e:6e:7a:a9:ee:af:
c3:c5:89:6a:51:69:b3:e4:58:30:50:ac:61:68:26:
d9:72:c0:06:ce:04:6b:ef:3a:2d:6b:17:e0:f1:ea:
12:be:bd:7c:c8:35:f4:7b:3c:51:d3:2e:19:88:ca:
47:e5:7f:85:52:3c:3e:e7:2e:7b:96:b6:42:a9:39:
57:39:68:ff:b2:80:94:79:96:76:c6:43:76:ba:e6:
ca:22:ac:f0:7d:55:74:b0:b3:42:a6:21:ec:da:d5:
52:6c:8d:5f:62:eb:d0:8e:e1:e4:9c:28:c5:1b:73:
41:20:93:ed:fa:18:ee:47:a6:7e:2d:af:29:6a:c7:
3a:7e:9f:ff:a7:16:c7:43:10:47:19:89:47:e7:d4:
d3:ff:5d:81:85:9e:67:7f:66:3d:3d:6d:e3:59:89:
65:32:ff:f1:ed:0b:f7:3a:b2:68:a1:6c:5d:d0:a5:
c3:1c:ca:83:85:1d:70:28:a3:d3:5e:8d:73:6b:7e:
30:1e:22:78:04:d0:cb:4b:e3:d4:2b:2d:8f:5c:e1:
aa:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:09:38:42:6C:07:C2:C2:CD:E2:9C:AE:81:AF:50:C6:47:37:2F:36
X509v3 Authority Key Identifier:
keyid:74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:6f:a5:0a:06:c2:74:66:9b:f2:15:3e:07:9c:e1:8f:07:69:
ba:3c:48:2a:53:e4:8f:39:3c:8e:e1:33:19:d8:03:42:82:e3:
e2:17:8e:fe:58:cd:d7:bd:0f:c3:d7:95:5a:13:76:9f:4f:57:
8e:bd:2e:9a:0e:ab:b0:d3:60:b0:67:20:c7:fa:a1:68:56:9c:
86:27:b9:35:bc:04:0b:c2:d1:dd:fd:21:28:25:a8:d2:8d:39:
ad:87:dd:25:3d:da:cc:81:03:58:19:08:25:8a:05:a7:78:c9:
5d:0c:39:65:14:19:59:97:0e:c1:58:8d:18:3d:c8:ad:f0:da:
da:81:9b:f4:8d:1c:b9:85:3a:d4:a5:97:98:4a:16:d0:2b:3a:
6f:78:c4:91:ba:a1:52:1d:20:66:2b:21:d7:31:ff:1a:d5:20:
9f:eb:99:a8:51:ba:65:e2:d6:9a:af:99:05:6f:d1:13:a1:5e:
59:bc:03:c8:44:5f:51:0c:a5:0e:b0:b2:38:bf:47:e8:c2:f6:
d0:97:ee:ce:6c:5c:7c:d5:dd:1a:e5:63:1c:f7:9d:0c:76:7f:
bc:57:16:a4:90:c1:b6:d4:93:17:15:3b:5d:57:b0:56:f9:53:
48:ee:c7:d2:07:1f:ee:19:97:84:a5:23:9a:b7:cb:23:50:45:
0f:8a:c0:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 13:37:07 2026 by rpki-client