Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
File: Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft (raw, json)
Hash identifier: Rdmw1Q+EldwToCjocSh541e0fCifhwuL4wVPNdsnFiY=
Subject key identifier: 22:B2:5A:FE:E4:20:03:AA:E3:6E:6D:84:25:80:53:70:9B:72:30:F3
Authority key identifier: 0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C
Certificate issuer: /CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c
Certificate serial: 019EBFC83340E2BC2BB471410A03364E7964
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
Manifest number: 1959
Signing time: Sat 13 Jun 2026 07:00:28 +0000
Manifest this update: Sat 13 Jun 2026 07:00:28 +0000
Manifest next update: Sun 14 Jun 2026 07:00:28 +0000
Files and hashes: 1: Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl (hash: VGCtFVPZHxuSKMommw0ooOikdEe6PAXm8kbJ7WGLiG4=)
2: dLnEEciYoxf4zHYKdVd3Cs6UXwE.roa (hash: fuSsuZb+gCHUO48DwmuXqWY4VCL5Q795gkNmczjB/Fk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c8:33:40:e2:bc:2b:b4:71:41:0a:03:36:4e:79:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c
Validity
Not Before: Jun 13 07:00:28 2026 GMT
Not After : Jun 14 07:00:28 2026 GMT
Subject: CN=22b25afee42003aae36e6d84258053709b7230f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ca:08:38:de:ab:b1:5a:54:c0:8d:a7:cd:f5:
21:39:d5:4a:0b:fc:3c:92:c3:e2:f8:c9:32:62:41:
25:55:0f:b4:b4:6b:8b:19:a1:3c:85:43:bc:95:7e:
6c:06:74:01:62:b2:21:71:b1:27:52:6c:36:42:8d:
d9:2b:3b:ac:a8:1c:a2:f5:20:5f:c9:d3:b7:95:bb:
4b:f8:09:ef:60:7f:96:7e:99:fe:66:30:6d:cf:38:
14:25:7d:37:49:59:73:81:9b:67:9a:0d:5a:28:61:
5d:b2:c6:3d:ab:e8:7c:b4:d1:3f:4e:df:c9:13:e9:
6b:23:7c:e7:11:7a:0f:b4:e6:33:a3:2c:d3:e8:36:
89:01:c4:63:69:a6:aa:a2:43:b4:16:aa:85:e0:b0:
20:68:2b:53:d3:48:22:1f:13:9d:f6:3f:68:a9:b8:
08:f7:eb:47:c4:4f:d1:42:93:43:36:8c:c7:fa:92:
f3:c4:aa:2b:1b:64:64:e9:7a:aa:85:3f:c6:d4:a6:
22:67:e4:b7:c7:2a:94:95:0d:41:2b:46:df:d7:35:
33:33:8d:c1:2a:a2:6f:b4:77:b0:3a:b1:5a:68:13:
0d:e8:50:58:7e:4c:ad:aa:9a:8a:7c:c2:50:55:d9:
1f:f8:64:6f:34:8a:75:46:b2:ab:2d:42:22:96:bc:
a2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:B2:5A:FE:E4:20:03:AA:E3:6E:6D:84:25:80:53:70:9B:72:30:F3
X509v3 Authority Key Identifier:
keyid:0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:7f:b4:12:3c:dd:52:e6:e2:61:43:87:6e:6f:3a:10:92:03:
0b:bc:8f:21:f2:28:09:44:f2:d6:13:0f:51:bd:82:aa:85:19:
a7:41:ca:aa:d1:07:91:82:13:1d:b2:fc:5b:59:6e:93:b2:d5:
79:90:c6:0d:0d:05:8d:36:22:12:1c:1e:2a:59:70:3c:7c:29:
f9:e3:cd:1d:fc:43:cb:13:d4:a4:6f:d0:7c:02:cc:c7:29:73:
36:f2:7a:c5:c5:5c:68:33:3a:ce:c5:8b:24:c8:60:29:d6:1b:
62:93:ea:19:4d:6c:65:ae:a9:92:e9:ba:85:08:a6:b8:92:fa:
95:d3:26:ec:36:37:aa:a5:40:29:8a:03:8a:10:b2:50:7f:5b:
54:94:a8:88:2e:fe:23:ea:34:f7:1f:92:a8:6b:60:41:a2:71:
b4:61:25:32:83:91:39:52:f9:05:da:75:f9:2e:2c:33:99:6f:
2f:db:50:6b:58:89:cf:f9:c1:2b:51:0b:1e:26:c3:e7:73:be:
10:97:9a:b5:dd:94:ae:39:88:d3:c2:15:e5:67:fb:2b:d4:a4:
7f:19:bc:63:ea:dc:07:01:a7:fc:05:f7:34:c1:70:7a:9f:d3:
99:be:36:0f:b5:12:ae:ed:44:96:ae:87:a8:36:47:49:21:32:
da:28:b1:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:20:51 2026 by rpki-client