Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
File: D5XJyafxmprXF-TapTDIXPmauXU.mft (raw, json)
Hash identifier: sCQygciS5YGq6F/A/PWPg4us74EjeAtS4Q0MZ35VNeg=
Subject key identifier: 84:D6:D1:77:B9:8A:DE:8A:B7:27:FC:39:51:8A:BD:00:E4:1C:ED:59
Authority key identifier: 0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
Certificate issuer: /CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Certificate serial: 019D985030D97F6EADAF92FF7BF5CA4FEB38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
Manifest number: 08F1
Signing time: Thu 16 Apr 2026 22:01:25 +0000
Manifest this update: Thu 16 Apr 2026 22:01:25 +0000
Manifest next update: Fri 17 Apr 2026 22:01:25 +0000
Files and hashes: 1: D5XJyafxmprXF-TapTDIXPmauXU.crl (hash: 56PY4ygl2tcpdwXe7zFHMiWyFkhDPHdtW1UCgfBaKQg=)
2: IDbRzIjz9FoGej8HJqlL664b-8I.roa (hash: VRTrlkouQDtL6ZUrJRyEpfphRS5vZrTw/RpqnAvn+iU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:30:d9:7f:6e:ad:af:92:ff:7b:f5:ca:4f:eb:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Validity
Not Before: Apr 16 22:01:25 2026 GMT
Not After : Apr 17 22:01:25 2026 GMT
Subject: CN=84d6d177b98ade8ab727fc39518abd00e41ced59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:00:2b:2d:eb:ef:57:a5:f0:d2:35:23:28:f6:
c2:05:2e:7d:83:e8:ed:aa:73:c8:23:ca:ee:ad:a4:
1a:a6:19:45:6d:66:c4:a1:53:f6:ff:1e:95:26:39:
34:a0:41:2d:f5:37:bb:e8:b7:1a:13:ba:d5:f5:ec:
ef:18:ed:e9:d2:d1:d6:44:33:25:e8:a7:f6:4c:ed:
f6:94:bb:07:ba:de:04:60:e0:bc:16:e4:1f:91:7e:
7c:cd:a4:86:3b:94:85:0a:41:0d:23:ea:c8:8e:9e:
5b:e5:56:67:45:42:ce:84:a7:80:c7:f9:17:47:72:
1a:c3:b8:cb:dd:73:e4:64:72:ad:92:98:8d:4c:33:
ec:c5:7e:fb:93:2c:70:d4:14:c6:ba:66:40:f8:33:
c4:20:37:07:13:6a:6f:d8:76:3e:11:79:ca:72:5e:
18:42:34:40:cb:e6:07:6f:0a:52:ec:7b:3d:3d:a0:
13:e1:9d:7b:a8:f2:c9:db:0f:2d:ee:14:8c:85:b3:
ff:3f:95:c4:e8:da:aa:ae:a8:98:15:0a:f5:93:f6:
8f:b0:30:d8:d3:e7:21:9c:59:09:c7:c0:75:0a:86:
b4:2d:7a:21:25:33:56:95:9d:67:e7:96:0a:e4:45:
f3:8e:aa:7d:a0:3b:c4:d2:25:28:83:06:d7:28:b6:
a4:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D6:D1:77:B9:8A:DE:8A:B7:27:FC:39:51:8A:BD:00:E4:1C:ED:59
X509v3 Authority Key Identifier:
keyid:0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:44:9d:86:f5:e4:86:52:1a:44:e1:da:0a:75:68:f6:79:5a:
a9:6e:13:1b:8e:32:42:86:f3:aa:77:c6:d6:8d:4f:22:94:d7:
95:9b:ee:84:5c:65:51:70:70:95:02:1c:4b:99:9c:fa:5a:84:
01:a1:43:df:13:99:a2:53:32:a5:d5:79:79:51:70:b5:bf:87:
d4:51:0a:4a:7a:fe:5a:c2:ba:41:1c:a8:d5:60:f1:86:61:39:
f7:25:18:c0:05:ef:97:dc:c8:d5:6c:23:09:3f:2f:40:a3:d0:
34:84:7b:bb:61:99:77:69:f2:c5:75:44:86:f8:23:91:0a:63:
c4:b5:e4:fe:f0:81:6e:3f:c4:04:7a:ad:16:ac:50:67:e7:06:
b2:63:7e:97:fc:a8:da:5e:55:ad:9e:c9:60:18:e4:5c:c5:ca:
18:c8:2b:3a:1b:e2:a1:ff:87:65:93:1f:fc:a3:b0:8b:da:f6:
e0:84:27:8a:0d:99:b7:c7:9e:a3:e7:1c:0d:f8:c4:3d:5b:fc:
b0:55:60:86:84:0b:6f:41:59:f4:db:ac:c4:0e:84:19:e9:5a:
43:9b:49:31:4b:b5:d3:1e:43:38:f9:38:df:4d:03:15:22:cf:
d0:47:dc:d9:74:5d:6d:03:6f:eb:c4:ec:fe:aa:66:42:b5:24:
85:c9:32:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:08:02 2026 by rpki-client