Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
File: 23DOek5uSrOk6p8IH1kupfbSuao.mft (raw, json)
Hash identifier: z8iL74NQ0CGdKyUWIwytuSpyi+1HGs63OBwfYTgATVU=
Subject key identifier: 24:E6:BF:B0:AE:B4:62:9D:CF:1C:85:24:08:AD:B3:E8:9E:E6:84:F2
Authority key identifier: DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
Certificate issuer: /CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Certificate serial: 019E30731E16A552878480987B3F20FB0ED8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
Manifest number: 0953
Signing time: Sat 16 May 2026 11:01:51 +0000
Manifest this update: Sat 16 May 2026 11:01:51 +0000
Manifest next update: Sun 17 May 2026 11:01:51 +0000
Files and hashes: 1: 23DOek5uSrOk6p8IH1kupfbSuao.crl (hash: NjcxREp+cNTliIezTBopfg4/0+ewCIxuDsYHn/8XSh0=)
2: hhh3z06Bpe2m47ehC44Gk6XsxWY.roa (hash: D+hS8HY9ljD+1P/aopr0G/yuhchBVZY0zZMSPMrBOWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:73:1e:16:a5:52:87:84:80:98:7b:3f:20:fb:0e:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Validity
Not Before: May 16 11:01:51 2026 GMT
Not After : May 17 11:01:51 2026 GMT
Subject: CN=24e6bfb0aeb4629dcf1c852408adb3e89ee684f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d6:9e:4b:32:70:4d:43:33:ad:75:6f:37:f1:
b9:f9:28:ba:6f:ee:a1:69:6e:c3:34:d4:96:4b:e6:
80:5a:32:86:9b:9e:cf:5e:be:4b:c1:58:e2:c3:b1:
e9:8f:a6:56:a1:f8:85:8e:59:aa:7a:95:50:d1:b4:
41:d0:6f:93:68:19:6d:48:b9:45:2b:c7:cd:db:ae:
ce:16:62:ab:62:65:f5:19:46:af:e5:51:53:4a:30:
47:6e:db:5b:db:23:4d:21:90:3e:ad:f2:4a:d0:32:
68:1f:70:a7:03:a1:ef:d7:dd:c8:ef:57:5f:01:e3:
81:54:de:bd:00:53:8c:30:1b:19:58:72:e4:92:52:
7b:7d:d4:a9:11:27:71:44:76:35:7e:e6:b0:5e:56:
c6:c6:63:eb:7e:94:31:e2:2a:ed:79:c1:97:5c:94:
ee:0c:f6:f8:0a:e8:79:cc:c0:24:ca:8c:7a:66:3c:
ce:a5:7c:b3:37:ac:73:0a:32:1a:3c:e4:df:bd:dd:
0a:14:d4:b6:6d:43:50:58:bb:5b:0a:51:99:3f:d7:
4b:fa:77:e7:49:7f:76:07:71:84:96:1c:e5:04:1f:
c1:36:3f:0d:c0:f9:19:82:73:f2:10:33:f7:60:f6:
b2:ea:55:8f:ec:c4:61:c0:e7:a9:07:c0:e9:43:2e:
46:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E6:BF:B0:AE:B4:62:9D:CF:1C:85:24:08:AD:B3:E8:9E:E6:84:F2
X509v3 Authority Key Identifier:
keyid:DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:47:58:40:4d:39:eb:1f:b3:89:3f:e3:bd:1d:4e:7d:98:b4:
fb:2b:d8:72:c6:e4:38:6b:62:a0:da:a4:75:b3:26:f0:54:3e:
ff:fa:46:22:f3:97:90:90:92:5d:f7:4a:d1:2f:54:e7:78:6a:
5d:a9:c7:f4:c0:40:03:3a:1c:66:3c:dd:db:ba:2b:24:b7:92:
25:b5:b8:a0:8d:71:3e:5c:ad:ba:d2:b9:cd:8c:75:01:cf:ba:
50:e7:c6:ce:50:96:90:8e:71:b8:ee:b4:d2:cb:f7:45:1f:9b:
1b:cb:f9:24:1d:72:f9:20:49:b8:f5:c3:4f:be:fc:19:f2:d2:
4c:54:96:50:d9:c6:64:33:a6:ce:f3:cc:4a:d1:aa:05:45:7e:
23:73:c7:19:ce:41:06:e3:e6:50:e6:fc:64:7a:43:97:49:ec:
b2:97:9d:3f:c3:d4:8f:87:a9:c4:20:83:5e:dc:df:50:cf:54:
2a:0e:33:c7:9c:00:31:dc:30:12:00:50:42:66:c4:e8:eb:22:
4e:52:73:42:30:96:77:f7:a1:4d:bc:9b:2f:8d:4d:32:ed:94:
d7:fa:38:03:20:64:f4:35:f6:4b:d9:10:4b:d8:30:eb:e4:e2:
66:20:c7:22:ec:d1:6d:43:cc:16:dd:a4:65:b7:2e:89:07:6c:
60:62:86:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:40:10 2026 by rpki-client