Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
File: DpXDrONm20G83CVsXVs75JCk92E.mft (raw, json)
Hash identifier: qE8jtMMeq5hCdnxk/F9lCV2NBVVhMrwSoXzTChcPEUw=
Subject key identifier: 5B:1C:E2:B1:A7:98:34:38:CD:10:50:D3:77:21:E1:D3:CB:02:32:5B
Authority key identifier: 0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61
Certificate issuer: /CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761
Certificate serial: 019EC14919933E7E5532BDF94721999D4CA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
Manifest number: 0DB3
Signing time: Sat 13 Jun 2026 14:00:53 +0000
Manifest this update: Sat 13 Jun 2026 14:00:53 +0000
Manifest next update: Sun 14 Jun 2026 14:00:53 +0000
Files and hashes: 1: 37dXvYDoLLgkPUjF4NxD-XXFFYI.roa (hash: kSAD/e0L34SLlOnuXBzFWv60he1Bjkrs051xSNxh2jE=)
2: DpXDrONm20G83CVsXVs75JCk92E.crl (hash: FneIuzPHIr4kAlJNhteJJqAL55hDUzMWHBbUwUgqUt8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:49:19:93:3e:7e:55:32:bd:f9:47:21:99:9d:4c:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761
Validity
Not Before: Jun 13 14:00:53 2026 GMT
Not After : Jun 14 14:00:53 2026 GMT
Subject: CN=5b1ce2b1a7983438cd1050d37721e1d3cb02325b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:44:1f:c0:3e:ef:0e:5f:bf:05:88:b9:25:13:
40:4c:b7:d6:79:e6:28:3e:be:57:66:01:ff:e2:b1:
10:d6:7c:91:cc:ff:94:14:f5:8c:20:0d:cc:08:16:
80:7f:f5:79:0e:e7:42:d5:23:77:78:64:08:07:57:
b3:9f:d0:99:2d:e1:11:b5:af:6b:09:10:94:05:77:
3e:41:79:16:38:cb:cc:db:91:27:22:91:c8:d9:fe:
a9:7a:63:26:74:5c:f3:59:64:db:d9:1a:f5:f5:7b:
1a:dc:4e:ce:7f:f0:0f:da:0d:ac:31:f9:65:6b:b6:
a4:c1:16:b5:f7:17:d0:cb:88:04:c3:1d:4a:af:84:
34:cd:01:50:0a:68:33:78:a1:f8:b1:09:60:ef:6c:
ff:95:13:58:85:3d:c9:13:0a:21:cb:25:79:30:47:
71:ae:2f:c4:f0:1b:bf:c8:6a:0b:55:f0:10:7f:d9:
d9:31:55:02:a6:05:2a:ea:ea:45:ba:89:d4:0c:4a:
00:b2:71:a7:99:28:af:32:1d:94:64:e6:35:13:75:
94:30:15:eb:d1:43:a1:75:14:de:2d:be:d3:a6:39:
21:bb:dd:56:23:9d:e9:6c:a4:9a:61:72:b8:4d:29:
c2:1d:d9:a0:3e:d7:b5:c1:3c:5b:a0:90:ee:b4:5b:
be:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:1C:E2:B1:A7:98:34:38:CD:10:50:D3:77:21:E1:D3:CB:02:32:5B
X509v3 Authority Key Identifier:
keyid:0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:84:95:26:a6:49:75:60:1e:84:48:66:cc:e4:ce:91:7a:e3:
c6:98:69:90:5d:82:ff:7d:45:06:d2:66:b7:cd:8c:81:4c:c4:
04:55:c7:ba:8c:57:eb:f5:5f:ec:4a:d4:e1:1e:a9:12:69:15:
ac:e7:43:2e:a7:41:9f:4c:1b:52:1f:7e:63:30:d7:db:87:37:
f3:47:80:a4:09:07:07:1a:41:d8:2b:b6:98:89:7d:e2:6f:f1:
20:32:09:3b:f5:67:b7:ec:b6:c0:be:39:91:2c:52:4b:4c:d2:
77:a1:7c:c3:b8:24:62:68:fa:26:82:68:a2:7d:6f:69:61:04:
af:f1:0d:b4:5d:db:cb:16:f7:0b:65:82:45:7e:d0:6d:5a:c8:
df:7b:d8:f1:2b:f7:b7:e8:f7:8e:b9:8e:bc:b7:61:c0:83:a3:
50:a7:51:36:c2:56:67:6d:e6:cc:7f:4a:1a:55:b7:00:e6:f5:
0d:96:ef:da:fc:c2:1b:ac:6f:5c:6c:2b:64:d9:d6:20:c1:51:
13:90:0d:fa:f8:a5:ed:3d:9f:62:91:6a:8f:27:b6:26:1c:0e:
d6:33:0b:7d:0d:61:7f:37:e6:3b:17:ae:66:ae:eb:0c:68:af:
95:a2:43:88:8a:2b:af:33:b8:2c:00:95:19:0f:8b:8f:ce:0c:
1f:13:c2:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 18:54:51 2026 by rpki-client