Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft
File: DkGjlotidBs200i-DSyRxdSxM6I.mft (raw, json)
Hash identifier: Su21k0u7Pogz0RZlqlT3lw4FshLirC4T6O42kFkvSB8=
Subject key identifier: A8:E6:3C:20:13:42:43:EB:12:94:CE:78:A8:9C:5A:62:CF:D1:12:D0
Authority key identifier: 0E:41:A3:96:8B:62:74:1B:36:D3:48:BE:0D:2C:91:C5:D4:B1:33:A2
Certificate issuer: /CN=0e41a3968b62741b36d348be0d2c91c5d4b133a2
Certificate serial: 019D9BF50D337CDF6F7AA02C873A9EFA73B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 15:00:21 +0000
Manifest this update: Fri 17 Apr 2026 15:00:21 +0000
Manifest next update: Sat 18 Apr 2026 15:00:21 +0000
Files and hashes: 1: 8zauiXBaFMH5VLxzsSvMEUumaxQ.roa (hash: sJvy2vx8n7/hTOLyUNRFHLLiMRYWbPfkI+7/KsQidiw=)
2: DkGjlotidBs200i-DSyRxdSxM6I.crl (hash: edD6UqL5qOhYsoU35JRNrGQy5Wi7dfaH576OGEEDP/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft
rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 15:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:0d:33:7c:df:6f:7a:a0:2c:87:3a:9e:fa:73:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e41a3968b62741b36d348be0d2c91c5d4b133a2
Validity
Not Before: Apr 17 15:00:21 2026 GMT
Not After : Apr 18 15:00:21 2026 GMT
Subject: CN=a8e63c20134243eb1294ce78a89c5a62cfd112d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:44:22:2f:bb:ea:e8:34:89:ab:72:9b:65:e0:
88:dd:4d:cc:58:7e:ca:08:87:04:31:49:cd:16:d0:
77:6d:ee:0d:8a:ba:8a:db:d4:c0:fb:b7:7b:80:19:
c6:57:e9:4f:f7:9a:46:38:de:fc:49:4e:d0:5e:b7:
5a:66:44:87:50:51:01:86:9d:87:88:d5:5c:bb:68:
19:37:bb:e5:d2:a5:3e:37:9a:ed:f9:58:c8:f3:d1:
66:25:87:62:af:b6:64:4c:76:df:1a:6d:83:3f:d8:
18:44:41:dd:c4:b1:7c:8a:97:b0:66:bc:97:44:b7:
74:6a:56:1b:69:c5:41:81:1a:91:94:38:f6:42:c6:
8c:d3:b2:a4:75:25:3b:33:62:20:62:c3:d1:95:cb:
b8:d1:1f:23:c0:2d:8e:9d:af:a2:d1:53:fb:cc:29:
f9:d9:a2:33:62:03:cf:f7:53:b8:e6:95:ab:6f:a1:
b9:d0:23:28:2c:3e:50:8d:02:c4:29:05:9c:1f:69:
3b:fe:da:48:33:56:74:a3:bb:b0:da:99:56:63:4b:
17:2d:61:8e:e9:fe:35:4a:4a:1a:d2:69:eb:b8:ca:
5c:00:8e:ad:0f:80:79:e3:0d:48:e7:16:08:22:21:
e9:b7:85:80:d7:6e:fd:7b:b0:21:c8:8e:ac:09:e4:
5e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:E6:3C:20:13:42:43:EB:12:94:CE:78:A8:9C:5A:62:CF:D1:12:D0
X509v3 Authority Key Identifier:
keyid:0E:41:A3:96:8B:62:74:1B:36:D3:48:BE:0D:2C:91:C5:D4:B1:33:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:94:4f:01:ff:bc:d0:66:6d:ab:39:af:1e:0d:cd:3f:54:bd:
95:63:76:29:7b:47:6f:97:18:80:1c:07:25:ff:72:03:44:43:
b0:b0:48:13:53:41:68:8a:62:b9:f0:57:39:cd:55:c6:a7:bd:
c8:0e:a6:a0:88:89:37:95:68:e5:a2:4a:b4:09:74:2e:f4:37:
ed:97:a6:7c:c7:3a:e9:93:b9:a5:d3:d0:d1:c3:f3:a9:41:51:
20:ca:66:30:eb:44:09:bc:c6:84:e5:e8:1c:37:87:98:09:9d:
48:49:b0:ad:ae:23:ce:25:a0:0a:33:b9:49:94:be:e4:2b:3b:
bb:9e:d5:4d:69:45:68:b6:4b:df:09:cf:5c:b7:c8:f1:c6:d3:
31:bc:ba:ab:04:4a:f4:ae:3e:e5:8c:11:65:b6:df:d9:b5:29:
52:06:54:ae:dc:9f:1e:84:4c:93:eb:21:1a:cd:d7:c3:83:cc:
d3:1d:f3:ad:18:df:df:c0:39:bd:e3:cd:a6:43:0f:cc:0a:27:
90:9a:ae:75:65:89:90:60:5c:ed:6e:2f:7e:71:b3:a7:fa:12:
93:6e:a3:5a:8c:02:04:b2:92:10:84:c4:ab:bc:80:99:40:d2:
2f:e2:1e:9a:97:49:36:ee:b9:dd:3a:53:51:33:98:09:c6:9f:
b9:7b:3b:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:49:33 2026 by rpki-client