Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
File: 23DOek5uSrOk6p8IH1kupfbSuao.mft (raw, json)
Hash identifier: gH4lTRBpAvsQtFcwE5fk1pQJOtgkazPbD+eUTiyd144=
Subject key identifier: 14:97:74:15:F8:90:6E:6C:FB:D8:A1:C9:B3:9B:9B:E1:F7:9E:75:88
Authority key identifier: DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
Certificate issuer: /CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Certificate serial: 019F1830E2DE73D29E2C76D83066A3EF3A94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
Manifest number: 09CB
Signing time: Tue 30 Jun 2026 11:01:24 +0000
Manifest this update: Tue 30 Jun 2026 11:01:24 +0000
Manifest next update: Wed 01 Jul 2026 11:01:24 +0000
Files and hashes: 1: 23DOek5uSrOk6p8IH1kupfbSuao.crl (hash: vj0kfoX1K7A+XNFPAwsSNJsCM4BmXj8TxBi5Hg8hMGI=)
2: hhh3z06Bpe2m47ehC44Gk6XsxWY.roa (hash: D+hS8HY9ljD+1P/aopr0G/yuhchBVZY0zZMSPMrBOWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:30:e2:de:73:d2:9e:2c:76:d8:30:66:a3:ef:3a:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Validity
Not Before: Jun 30 11:01:24 2026 GMT
Not After : Jul 1 11:01:24 2026 GMT
Subject: CN=14977415f8906e6cfbd8a1c9b39b9be1f79e7588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cc:b5:64:a9:2b:c6:d8:b3:be:c5:45:2f:12:
bd:05:cb:d7:73:d1:2d:e6:6c:b0:b5:ce:15:04:27:
bb:07:8e:26:53:52:60:4c:d4:c4:4e:f0:1d:bf:ee:
7e:85:98:ba:a2:64:f4:34:ff:db:c0:cb:f1:fd:84:
65:49:79:e8:32:52:35:8a:87:fa:be:ab:a6:7d:67:
01:25:84:49:f6:88:85:16:31:79:a7:e9:82:98:f6:
0f:48:48:8e:a8:2e:07:0f:6f:c3:c0:b6:92:1e:5f:
b3:ca:08:e8:1d:17:fc:c9:43:78:d2:46:84:11:9a:
8b:b0:7c:94:76:d9:c1:d8:da:90:a8:3d:35:30:75:
d0:ca:fa:3e:6a:bc:09:7a:48:f5:a4:53:b5:fc:0c:
9d:e4:3c:bf:f6:75:85:52:53:c5:0e:91:a3:b3:7b:
8a:69:c0:78:bf:a9:cd:fa:e6:d4:96:70:fb:a4:2d:
bc:31:15:5b:94:25:f7:0b:ea:a3:e5:19:71:c1:92:
de:16:f8:0d:85:aa:d2:fc:0b:2a:bc:07:d7:95:f5:
08:e0:31:6b:5b:14:8d:4c:40:e7:24:df:1b:cc:78:
c0:1e:57:6d:74:da:6b:36:7b:b0:cd:94:c6:dc:2d:
d3:cf:59:7f:6f:60:23:72:99:e2:cb:96:2b:88:4b:
00:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:97:74:15:F8:90:6E:6C:FB:D8:A1:C9:B3:9B:9B:E1:F7:9E:75:88
X509v3 Authority Key Identifier:
keyid:DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:18:a0:d7:09:3b:c5:1a:68:34:3b:73:c7:75:88:e7:47:5c:
6e:80:8f:ac:13:49:d9:af:9c:bd:bd:9c:42:51:ea:9b:eb:c5:
6e:2c:c4:6a:40:63:17:de:fb:f2:6f:12:f7:da:b5:cd:71:71:
83:96:d0:ca:17:92:4b:ec:6c:0c:59:8c:03:99:fb:ae:ce:d2:
04:fe:86:95:26:ca:17:dd:e9:38:2e:d0:ef:14:9c:5e:8e:b9:
42:9f:8a:ab:6a:a2:34:8b:98:e1:52:a9:a1:66:03:c4:3c:14:
b7:61:df:46:ba:da:9c:fd:17:c4:00:19:a3:29:8f:3e:8b:f2:
ea:69:aa:c8:a8:6a:2d:b0:0e:87:cc:6a:07:35:52:32:5f:02:
e4:63:45:88:f9:c8:17:e3:65:2a:7a:68:2f:04:da:72:4e:98:
f4:66:74:2b:61:ac:6b:8b:0c:4f:5b:e2:f4:62:60:58:0e:a7:
b4:e1:ee:25:a0:60:7a:b1:73:f8:88:70:12:aa:61:f2:09:4e:
81:b4:e4:78:d1:7b:fe:63:7b:a1:68:70:f9:4e:fc:91:0d:41:
2a:05:f4:ba:a5:d7:38:aa:51:f0:57:f1:ca:52:e3:40:01:fa:
7a:c4:59:4c:2f:6a:ff:1b:93:b9:c5:24:6c:4c:fb:81:32:5d:
27:27:40:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:25:02 2026 by rpki-client