Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
File: MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft (raw, json)
Hash identifier: xp1B5gOamdmA6GIDEA3kzf6ntvUgZK3hp8yXh8aHNjI=
Subject key identifier: E8:9C:E1:12:9E:B1:1E:6B:6D:AA:14:DC:D2:6B:5D:47:C7:6D:75:25
Authority key identifier: 31:D7:D9:D2:9C:EC:F8:E5:91:22:23:3D:71:6E:6B:05:0E:71:84:78
Certificate issuer: /CN=31d7d9d29cecf8e59122233d716e6b050e718478
Certificate serial: 019EC0DB121A718E996E1C9D3B3E3D9A569D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
Manifest number: 0537
Signing time: Sat 13 Jun 2026 12:00:42 +0000
Manifest this update: Sat 13 Jun 2026 12:00:42 +0000
Manifest next update: Sun 14 Jun 2026 12:00:42 +0000
Files and hashes: 1: 9jfmZ8bQaVGPFDWRFHvQHmnS8fo.roa (hash: /DXZZnlzFxIqpfLKa2jzn4JOmraJhYpvlatvoWLWvdY=)
2: MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.crl (hash: 94xwtQRRLbrxXs05K3t8+bV4aRrXHYiEudfzYQsXqeE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:db:12:1a:71:8e:99:6e:1c:9d:3b:3e:3d:9a:56:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31d7d9d29cecf8e59122233d716e6b050e718478
Validity
Not Before: Jun 13 12:00:42 2026 GMT
Not After : Jun 14 12:00:42 2026 GMT
Subject: CN=e89ce1129eb11e6b6daa14dcd26b5d47c76d7525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:93:15:80:5e:24:17:61:0e:89:29:8f:8d:5b:
ea:66:a0:79:1d:c6:29:4f:f7:f7:ff:b0:99:81:ba:
b5:29:15:0c:da:57:42:34:dd:96:67:df:9e:2f:91:
15:ad:d7:ba:16:ae:4b:a1:4a:5e:bf:29:ba:e6:3a:
38:6a:ac:96:c5:d4:36:b9:05:81:ad:da:98:b9:ee:
b9:93:5c:11:70:b8:6a:86:f5:f0:fe:27:0a:6a:73:
37:72:15:81:93:92:a5:b8:b8:af:25:e2:58:4e:7d:
46:25:6f:f7:c9:da:45:68:0d:24:c9:07:c0:3f:df:
84:16:8c:19:2b:6e:59:59:68:13:22:b7:18:f9:ab:
ff:cd:03:37:27:ae:4f:d0:d4:82:e5:90:5c:8a:f2:
c7:bf:d0:cb:04:e3:bd:0b:3b:88:30:22:9c:21:8d:
c1:c9:d7:19:9f:0f:b1:3d:d1:91:90:f9:b5:cb:83:
a8:5b:19:05:ce:f8:a0:b5:8c:44:5c:6c:f6:af:4d:
70:8a:04:cd:d0:7a:39:41:e9:a8:4d:41:d3:91:b6:
6a:d5:c1:23:72:1d:eb:8a:ac:38:05:6d:12:f3:ff:
d1:80:b7:fb:78:b0:d8:ff:7c:38:8f:80:06:7e:f9:
8c:08:b0:46:98:c0:00:46:8c:58:8c:a9:f4:17:39:
1c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:9C:E1:12:9E:B1:1E:6B:6D:AA:14:DC:D2:6B:5D:47:C7:6D:75:25
X509v3 Authority Key Identifier:
keyid:31:D7:D9:D2:9C:EC:F8:E5:91:22:23:3D:71:6E:6B:05:0E:71:84:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:4b:e3:e9:a3:ba:96:c8:94:bc:d9:3b:ac:a8:f3:4e:5a:a9:
c2:e7:6a:cf:13:e4:d7:55:93:0f:bd:44:a5:fb:31:69:77:b5:
27:e0:2a:be:da:ca:bc:67:26:81:bf:2e:c3:b8:cb:ef:3e:50:
63:e4:7a:d2:ae:05:f0:02:38:20:47:06:33:40:5b:e2:83:e0:
63:a0:4d:e3:89:fc:03:56:f1:62:ed:cf:7d:88:f2:00:70:28:
6c:e7:a4:69:37:b0:2f:5b:c2:1f:6c:e3:77:25:69:0b:6d:69:
cc:c9:e4:72:96:ab:c3:6a:53:b2:e3:04:ce:cb:14:55:6f:1d:
66:78:9b:00:ea:c0:8f:ee:9d:03:f4:b9:ae:82:b6:10:a3:0e:
eb:20:65:0c:21:da:7e:fa:4f:0b:05:d2:8e:83:3e:f7:5f:f0:
cb:0f:89:b2:ce:b1:3e:79:05:86:ff:5a:28:7b:5c:af:7e:a1:
dd:13:0c:04:99:b9:1f:9b:36:c2:59:91:62:c4:07:73:29:d0:
61:a3:ce:26:39:d2:d9:5e:ed:1e:54:fa:3e:3f:f9:ee:66:1e:
01:84:11:9c:ec:3c:35:6d:92:d2:8d:b4:7d:9e:c1:0f:89:a4:
67:ac:4d:42:f2:04:46:31:65:75:da:af:88:3b:80:31:e4:90:
71:7a:9c:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:48:21 2026 by rpki-client