Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
File: Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft (raw, json)
Hash identifier: grDzkRI618tiUPjy/vmUCsaM+XASfGkDRm9oEq6zhvs=
Subject key identifier: A4:52:FE:9A:6F:82:9A:28:41:61:77:14:9F:6A:BE:AC:9C:16:ED:63
Authority key identifier: 0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C
Certificate issuer: /CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c
Certificate serial: 019EBDDABC1A164F6398B3F756D4890FC3B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
Manifest number: 1958
Signing time: Fri 12 Jun 2026 22:01:29 +0000
Manifest this update: Fri 12 Jun 2026 22:01:29 +0000
Manifest next update: Sat 13 Jun 2026 22:01:29 +0000
Files and hashes: 1: Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl (hash: bacceYyQTADt9TqnOcl5sCRJnCCvybnISGVAxPYtlKI=)
2: dLnEEciYoxf4zHYKdVd3Cs6UXwE.roa (hash: fuSsuZb+gCHUO48DwmuXqWY4VCL5Q795gkNmczjB/Fk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 22:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bd:da:bc:1a:16:4f:63:98:b3:f7:56:d4:89:0f:c3:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c
Validity
Not Before: Jun 12 22:01:29 2026 GMT
Not After : Jun 13 22:01:29 2026 GMT
Subject: CN=a452fe9a6f829a28416177149f6abeac9c16ed63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:06:9d:50:50:b5:3a:2f:4a:39:24:76:2f:e0:
b7:cc:92:e1:3f:0a:c9:c0:dd:5d:ad:d2:36:d9:14:
15:83:8b:21:f7:75:37:21:5f:2e:78:ed:23:1d:02:
b6:38:8d:b9:93:76:4f:6d:81:42:08:41:02:48:ad:
d8:9c:95:93:65:fa:65:81:22:4d:c5:f0:3b:e0:72:
4d:58:de:89:bd:23:d2:f6:c4:b9:db:86:1b:11:4a:
e6:47:d0:04:a1:84:e2:c4:a3:06:af:11:60:bf:d0:
5d:72:d7:ca:14:69:c2:da:11:2b:44:8d:94:28:5d:
0e:82:56:08:76:58:f0:a3:12:cd:1f:ce:38:af:13:
97:f6:69:2c:3b:77:7c:db:2b:49:48:e8:47:7e:d0:
92:0f:04:c8:7b:f5:08:e2:85:29:3f:85:e0:e2:df:
69:ec:bc:dd:4a:43:c4:d7:17:a7:00:b7:f1:a8:01:
0c:49:3a:65:5b:a4:2f:6b:50:27:65:e5:eb:c7:eb:
d5:22:54:6a:63:20:95:35:4e:07:cd:68:6e:93:9b:
7d:7a:4c:d2:5d:c9:53:c0:52:ba:29:61:87:6a:6b:
89:53:82:05:07:c9:af:2d:a7:26:0e:75:20:fd:29:
7a:a8:09:0e:10:85:3f:8c:c4:c1:7f:bf:5c:ab:e3:
04:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:52:FE:9A:6F:82:9A:28:41:61:77:14:9F:6A:BE:AC:9C:16:ED:63
X509v3 Authority Key Identifier:
keyid:0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:e8:8d:a9:e0:1f:fe:a2:99:2d:dd:a8:ae:4f:70:a9:b4:82:
1c:3d:9d:00:bf:d9:a5:dc:b4:75:d7:43:de:6d:ca:27:8d:74:
a5:25:19:ea:c2:04:f6:0d:e3:6e:8b:75:dc:f1:54:1e:e7:d0:
d0:a0:ac:31:26:3f:d4:e6:fa:dd:a2:21:75:a0:81:1f:f4:00:
a3:07:7b:22:65:df:93:80:17:c2:80:25:2a:a8:fb:12:3b:33:
db:c7:04:5d:3b:61:c6:48:67:f0:42:0b:8b:6d:97:d5:2c:c7:
da:8e:45:70:7d:b4:83:3f:5f:1d:24:fc:4d:26:f9:04:a6:66:
7d:5c:a6:64:96:37:5c:50:0d:a3:97:2d:cd:6f:fd:2c:59:75:
4a:af:92:5c:3b:cc:03:ea:2f:bb:e1:71:c7:40:1b:08:91:76:
76:ba:34:24:45:f5:0d:e1:8f:87:5e:62:71:70:ac:72:ef:c3:
9a:3a:83:6e:e0:b5:59:5f:ac:5d:80:93:63:99:c9:9a:cb:21:
46:4b:b7:58:4f:f0:a5:96:64:12:bc:96:94:21:4b:d1:7c:7f:
e7:1e:4b:e0:00:d7:48:16:c9:57:83:7e:43:3b:a0:84:4c:9d:
7f:1e:18:d2:e2:6f:3a:1c:ce:6d:fd:bd:c9:a8:6c:9c:19:a7:
38:4e:c1:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:34:16 2026 by rpki-client