Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft
File: DkGjlotidBs200i-DSyRxdSxM6I.mft (raw, json)
Hash identifier: RKBefUWd2NioKU0yEkAg+IUCvnPvL0BSJoyOhA44AYE=
Subject key identifier: B4:70:E7:6F:A7:57:67:45:D8:AD:49:DF:44:FC:53:73:AE:12:E3:56
Authority key identifier: 0E:41:A3:96:8B:62:74:1B:36:D3:48:BE:0D:2C:91:C5:D4:B1:33:A2
Certificate issuer: /CN=0e41a3968b62741b36d348be0d2c91c5d4b133a2
Certificate serial: 019EC36E8732B78E46AA06B8CF724CA2BD47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft
Manifest number: 195D
Signing time: Sun 14 Jun 2026 00:01:01 +0000
Manifest this update: Sun 14 Jun 2026 00:01:01 +0000
Manifest next update: Mon 15 Jun 2026 00:01:01 +0000
Files and hashes: 1: 8zauiXBaFMH5VLxzsSvMEUumaxQ.roa (hash: sJvy2vx8n7/hTOLyUNRFHLLiMRYWbPfkI+7/KsQidiw=)
2: DkGjlotidBs200i-DSyRxdSxM6I.crl (hash: AdXVIpaGh64pe5zj+dGp0h/wQnwwlfvtHq0IRq4Xp2s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft
rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 00:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:6e:87:32:b7:8e:46:aa:06:b8:cf:72:4c:a2:bd:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e41a3968b62741b36d348be0d2c91c5d4b133a2
Validity
Not Before: Jun 14 00:01:01 2026 GMT
Not After : Jun 15 00:01:01 2026 GMT
Subject: CN=b470e76fa7576745d8ad49df44fc5373ae12e356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ba:9f:71:08:1e:0c:b1:68:ac:f6:6d:a8:0d:
25:5d:48:72:9b:22:e0:b8:e7:fb:c4:e0:26:af:6f:
88:cd:42:d9:45:a2:f4:1d:93:1d:fc:4a:0b:e7:89:
fd:3f:3d:8c:d3:8f:c0:c9:5d:95:85:98:b5:5c:00:
2e:0a:0a:8f:09:e0:f6:17:1b:50:eb:7c:b3:d9:e4:
a9:79:ef:52:74:af:36:67:c5:d9:32:a5:c1:a5:0d:
75:d2:47:bf:22:d7:52:5b:a6:c8:77:98:28:21:fb:
6c:c4:5f:bf:e8:8a:d0:55:a6:ba:fe:a5:3d:f4:63:
88:62:58:91:74:1d:b9:68:97:39:ac:45:16:77:a9:
cb:42:20:fb:18:cf:63:bd:9e:0a:72:94:e0:52:7b:
e4:a0:32:f8:82:b1:31:ff:34:cd:06:78:fc:33:47:
89:ed:0e:e4:78:63:c4:74:f6:d8:48:d9:63:56:70:
a2:7f:e6:3a:20:69:45:5e:19:87:49:2f:a1:34:9d:
34:61:c2:44:05:90:81:af:aa:dc:90:bb:61:fc:81:
e8:8c:fe:dc:8c:5d:19:35:91:a4:5b:03:a4:e1:71:
de:4d:e2:21:13:80:f6:64:dd:06:74:68:25:5b:d6:
ad:94:40:7c:92:53:22:36:25:b5:e3:a1:8c:c7:68:
52:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:70:E7:6F:A7:57:67:45:D8:AD:49:DF:44:FC:53:73:AE:12:E3:56
X509v3 Authority Key Identifier:
keyid:0E:41:A3:96:8B:62:74:1B:36:D3:48:BE:0D:2C:91:C5:D4:B1:33:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:6f:fa:9c:4e:37:97:be:f4:81:14:02:d5:ad:4e:fd:17:6a:
4d:a0:be:92:ad:ee:48:22:dc:8d:d9:f8:e7:d7:7a:35:87:f6:
81:0a:8e:f9:31:e7:c6:ea:a0:3c:3b:b6:aa:25:a6:53:a8:9b:
91:20:47:a2:ee:ff:ae:0c:1c:0c:66:c5:fe:7a:25:07:ff:65:
dd:ba:bc:72:b7:00:d9:25:e9:e7:8b:44:46:a3:ba:6b:32:be:
ad:01:a4:e0:bc:5f:b4:86:2b:81:13:7a:f1:97:7d:d0:2d:d4:
b1:2a:92:36:7c:ac:3e:f5:bb:42:27:29:86:7e:4c:d5:17:73:
85:bc:c9:a7:ae:07:02:ec:14:1a:25:9f:0d:9f:ec:8d:19:15:
de:a1:c8:a1:61:ba:12:c6:31:6f:3a:d7:cd:e7:a4:4a:78:e5:
6e:a7:ed:09:86:b4:b7:a5:d4:64:6d:d0:27:cd:6c:e3:96:ae:
da:33:e5:2d:6d:7d:a8:d1:95:61:0e:d3:ee:16:c7:56:6a:d7:
76:a2:f1:eb:2c:bf:4e:df:d5:75:80:ce:6c:a9:84:81:51:49:
e4:5d:1e:64:a4:fe:18:89:7a:22:49:1d:be:00:20:57:40:00:
90:30:f5:5e:7a:d8:dd:48:8e:19:43:bc:32:de:9e:5e:5d:ba:
0c:4f:ab:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7Dbocyt45Gqga4z3JMor1HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlNDFhMzk2OGI2Mjc0MWIzNmQzNDhiZTBkMmM5MWM1ZDRi
MTMzYTIwHhcNMjYwNjE0MDAwMTAxWhcNMjYwNjE1MDAwMTAxWjAzMTEwLwYDVQQD
EyhiNDcwZTc2ZmE3NTc2NzQ1ZDhhZDQ5ZGY0NGZjNTM3M2FlMTJlMzU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprqfcQgeDLForPZtqA0lXUhymyLg
uOf7xOAmr2+IzULZRaL0HZMd/EoL54n9Pz2M04/AyV2VhZi1XAAuCgqPCeD2FxtQ
63yz2eSpee9SdK82Z8XZMqXBpQ110ke/ItdSW6bId5goIftsxF+/6IrQVaa6/qU9
9GOIYliRdB25aJc5rEUWd6nLQiD7GM9jvZ4KcpTgUnvkoDL4grEx/zTNBnj8M0eJ
7Q7keGPEdPbYSNljVnCif+Y6IGlFXhmHSS+hNJ00YcJEBZCBr6rckLth/IHojP7c
jF0ZNZGkWwOk4XHeTeIhE4D2ZN0GdGglW9atlEB8klMiNiW146GMx2hSowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLRw52+nV2dF2K1J30T8U3OuEuNWMB8GA1UdIwQY
MBaAFA5Bo5aLYnQbNtNIvg0skcXUsTOiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGtHamxvdGlkQnMyMDBpLURTeVJ4ZFN4TTZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8wNWIxZjgtNGIzNS00MGJiLWEwMzQt
NzQ3NTIzMTkyMzYzLzEvRGtHamxvdGlkQnMyMDBpLURTeVJ4ZFN4TTZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8wNWIxZjgtNGIzNS00MGJiLWEwMzQtNzQ3NTIzMTkyMzYz
LzEvRGtHamxvdGlkQnMyMDBpLURTeVJ4ZFN4TTZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbG/6nE43
l770gRQC1a1O/RdqTaC+kq3uSCLcjdn459d6NYf2gQqO+THnxuqgPDu2qiWmU6ib
kSBHou7/rgwcDGbF/nolB/9l3bq8crcA2SXp54tERqO6azK+rQGk4LxftIYrgRN6
8Zd90C3UsSqSNnysPvW7Qicphn5M1RdzhbzJp64HAuwUGiWfDZ/sjRkV3qHIoWG6
EsYxbzrXzeekSnjlbqftCYa0t6XUZG3QJ81s45au2jPlLW19qNGVYQ7T7hbHVmrX
dqLx6yy/Tt/VdYDObKmEgVFJ5F0eZKT+GIl6IkkdvgAgV0AAkDD1XnrY3UiOGUO8
Mt6eXl26DE+rHA==
-----END CERTIFICATE-----
Generated at Sun Jun 14 06:37:46 2026 by rpki-client