Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
File: 1dzeISXwQFitT0eOF4iEFCzy2tA.mft (raw, json)
Hash identifier: IpPJIokGBwtvM/qIbq9A69t7B88ZEQ9n0Axwn6Mi9No=
Subject key identifier: 15:80:6A:5B:7D:B4:E2:B2:B6:05:15:FD:45:B7:8A:2A:BB:8F:B0:AC
Authority key identifier: D5:DC:DE:21:25:F0:40:58:AD:4F:47:8E:17:88:84:14:2C:F2:DA:D0
Certificate issuer: /CN=d5dcde2125f04058ad4f478e178884142cf2dad0
Certificate serial: 019E303BC663F6BCBBA0DD216191EBA58DDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
Manifest number: 12D8
Signing time: Sat 16 May 2026 10:01:24 +0000
Manifest this update: Sat 16 May 2026 10:01:24 +0000
Manifest next update: Sun 17 May 2026 10:01:24 +0000
Files and hashes: 1: 1dzeISXwQFitT0eOF4iEFCzy2tA.crl (hash: tQ65BlM/BEVkD0FAnKryZcxhd22ALBJyo/ApFIFv+hU=)
2: 8BYDJuaf2CuIte9znhQTMnQNfzY.roa (hash: /nJhQIQ9VVW/Qtz2O6f+WJOXBH0IlvQwIRyYeoC0B4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 10:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:c6:63:f6:bc:bb:a0:dd:21:61:91:eb:a5:8d:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5dcde2125f04058ad4f478e178884142cf2dad0
Validity
Not Before: May 16 10:01:24 2026 GMT
Not After : May 17 10:01:24 2026 GMT
Subject: CN=15806a5b7db4e2b2b60515fd45b78a2abb8fb0ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6a:58:15:9b:db:c6:a7:4b:ae:25:24:51:0a:
44:4e:48:06:23:11:a3:09:6b:8d:ec:fa:fe:b3:d4:
f9:00:b8:63:32:20:85:b3:55:cd:e4:b3:2e:66:8a:
cc:22:e2:7c:24:04:e1:ca:10:d3:c2:57:5d:00:a8:
d1:9d:29:2c:03:48:6b:21:d2:ab:b4:45:0f:dd:98:
f1:85:92:ad:72:b6:25:2a:a4:51:4c:c7:c8:ad:61:
4c:42:12:9a:49:36:d7:4b:b0:39:be:62:ff:1f:93:
6d:6c:2c:4c:97:64:f2:0e:bb:a4:43:94:5e:31:5b:
20:e5:14:4b:ab:6f:0a:05:85:4c:45:e3:96:95:64:
17:0c:72:cd:01:6d:d5:c8:58:46:bb:9f:1f:28:4e:
e2:18:68:b8:2b:f8:dd:9f:1c:fc:55:ca:c7:cb:40:
8d:53:70:92:20:07:82:fb:c7:66:b3:d5:dc:ce:15:
85:df:8d:d3:50:17:79:48:ee:36:0f:50:f5:9e:8a:
98:d1:eb:2b:c2:42:b9:cb:57:c6:0c:5a:1a:e9:c6:
c5:b7:7f:92:c5:6e:8b:47:cf:a7:d4:f6:fe:56:e2:
08:64:98:0a:a7:c6:e4:27:32:6f:d6:5d:2b:66:c2:
e8:8c:df:a7:81:15:27:04:a4:59:62:83:2b:c8:21:
c3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:80:6A:5B:7D:B4:E2:B2:B6:05:15:FD:45:B7:8A:2A:BB:8F:B0:AC
X509v3 Authority Key Identifier:
keyid:D5:DC:DE:21:25:F0:40:58:AD:4F:47:8E:17:88:84:14:2C:F2:DA:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:d8:92:f1:86:8d:79:c1:11:c4:3d:4a:e4:d2:43:c9:ee:e9:
99:9b:42:86:c3:2a:43:3c:17:b4:41:a2:a9:ac:ae:dc:0c:b3:
e1:be:80:d1:b4:88:cc:92:ea:1a:91:45:ea:8a:5f:ab:e7:51:
62:8e:20:e2:b8:86:ce:d4:df:e1:8a:db:26:6a:cc:e3:36:54:
e2:ca:7e:fe:ca:72:57:0e:94:12:be:1a:8a:e1:17:0f:82:d7:
91:e9:0f:02:8b:aa:93:10:11:8b:30:2f:32:6c:ee:99:0d:d3:
fc:b9:69:d7:dd:1d:62:e5:38:df:37:a7:f7:b5:68:d6:0d:b7:
3c:f7:8c:53:8a:e1:ad:06:c4:2e:5d:65:29:13:2e:56:13:80:
91:36:41:93:ae:38:ed:58:65:5c:00:15:bc:08:b1:e7:d2:35:
08:03:c8:de:b3:9d:c2:74:ab:7d:4e:0c:68:9a:49:26:70:f2:
c9:95:21:bf:4a:6f:a6:d9:3f:53:87:9f:6f:18:c5:8d:b4:15:
a9:1d:7d:2f:5a:32:33:2a:b0:e3:c3:4c:8b:9d:ef:04:57:84:
5e:28:71:a4:7f:80:a9:b9:f9:32:b0:bc:31:f7:28:ce:34:44:
79:ce:98:2f:9e:50:d3:5b:15:a5:4a:45:4f:12:77:cf:b4:6f:
a3:0b:08:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:11:01 2026 by rpki-client