Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
File: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft (raw, json)
Hash identifier: 5V6CSdTfpQtH/JOLne1OKqvdhB9BolUEOQuKhUjr+co=
Subject key identifier: B0:9C:BA:41:05:68:7F:8E:57:3B:56:30:A8:3D:2D:36:8F:A3:B4:41
Authority key identifier: 74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07
Certificate issuer: /CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907
Certificate serial: 019EBFC833A33F7ADF753FEA8ABC824A8054
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
Manifest number: 1958
Signing time: Sat 13 Jun 2026 07:00:28 +0000
Manifest this update: Sat 13 Jun 2026 07:00:28 +0000
Manifest next update: Sun 14 Jun 2026 07:00:28 +0000
Files and hashes: 1: T4BJnDBfE6AyBSAWAjPZ1GzLlMM.roa (hash: SXBhd3/vnyIoPB/kDRi62FVnMbysfno7J5T9Eftc8tY=)
2: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl (hash: V+xdN9qy5ML5nAx30K119RI9yHRejpgU4B/JZuEGTBs=)
3: tSpDrZGtdp0mH1aXKivR6nDrhuY.roa (hash: xkSEr+C7WhhCLocSo1zhSLhZi6gcFYi1jnV4sR3gnUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 07:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c8:33:a3:3f:7a:df:75:3f:ea:8a:bc:82:4a:80:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907
Validity
Not Before: Jun 13 07:00:28 2026 GMT
Not After : Jun 14 07:00:28 2026 GMT
Subject: CN=b09cba4105687f8e573b5630a83d2d368fa3b441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:cf:bb:13:7c:48:4a:1e:68:33:34:a9:a6:88:
5d:ca:b5:b0:5f:0e:48:9f:cf:34:cb:dc:71:28:46:
98:9f:c4:65:e5:76:f4:2e:7c:8e:3a:5d:4d:12:87:
1b:48:b8:fa:ae:84:51:76:0b:75:3d:62:75:4e:64:
4a:ed:d0:6d:02:b2:d5:30:68:ff:a8:90:ad:1c:8e:
43:78:d6:ef:83:18:a3:b4:b8:5f:2c:a8:88:e9:a8:
7a:0b:1d:af:82:bb:a8:30:2a:50:ec:ce:9c:8a:e4:
76:31:dc:d8:17:b2:00:b4:a3:85:61:9f:ba:98:f4:
95:a3:b6:61:77:e0:1b:83:c7:3c:a6:bb:0e:40:2d:
fe:c6:b1:f7:62:f2:a3:24:25:a6:44:c1:0e:c0:be:
0e:ec:68:1d:9f:f4:c9:98:12:e3:c2:f8:d9:0a:a7:
f4:4c:fe:db:73:5a:46:93:d6:c9:e7:37:c8:04:ce:
09:d6:7e:c1:ab:2e:12:38:86:6b:86:f2:0d:8a:57:
42:d0:36:4e:ba:7a:b8:f9:7e:3f:be:10:4a:f4:e0:
1c:f0:90:b2:ad:75:91:ee:be:5b:d5:d7:1b:d2:4b:
c0:95:df:f8:de:1f:58:2a:d5:f0:58:8d:54:27:df:
c6:40:a3:7c:3b:8c:58:4c:65:58:26:20:44:4b:39:
45:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:9C:BA:41:05:68:7F:8E:57:3B:56:30:A8:3D:2D:36:8F:A3:B4:41
X509v3 Authority Key Identifier:
keyid:74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:11:a3:c6:16:c9:8b:e7:b1:09:02:0b:2f:a4:0c:35:ba:2e:
a7:cc:c2:64:a0:df:b0:4a:f3:48:80:63:b4:64:92:5f:39:49:
c4:af:7e:ca:be:e2:2e:dd:2a:be:4f:45:d5:ac:ca:eb:96:3c:
8d:3f:3e:f0:da:e0:02:52:a6:f8:2f:6c:32:be:fb:9d:9c:b7:
2c:43:0b:21:dc:e2:79:9f:a7:24:35:7c:34:85:3a:16:ba:6c:
4a:dd:1a:ea:22:43:87:ae:2e:83:86:99:e9:2b:62:a4:80:4b:
44:de:9e:ca:30:92:25:a6:f3:10:6d:9d:18:d3:82:36:37:56:
a9:3f:b4:4a:b4:0a:2c:00:5d:53:48:40:63:c5:a6:9c:64:30:
8f:6a:71:ae:99:4a:65:6b:9a:37:ed:b6:c2:16:bb:ef:7e:b5:
66:eb:04:ea:4c:57:20:37:0e:99:8c:2f:8c:82:1d:69:ab:09:
33:f3:aa:c0:9d:3e:41:d7:d9:08:02:98:4d:11:a0:ca:5d:e1:
99:77:72:68:4c:61:9d:10:8d:44:85:7b:a4:87:a4:04:fc:8e:
d5:d5:d4:6a:ed:b6:41:9e:98:a8:45:3c:80:c9:bb:26:7e:3c:
26:f5:64:b1:3d:7c:4c:1a:8e:58:04:81:94:96:72:56:ad:f3:
a0:c1:8d:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 16:08:48 2026 by rpki-client