Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
File: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft (raw, json)
Hash identifier: 3EImxDAxGhDyLJ6Dj+5i93c3N9ntXFhkO7x3WrVEDUM=
Subject key identifier: AD:BB:DD:A4:43:6C:91:A8:15:5B:52:F1:74:EF:6B:3D:08:00:97:89
Authority key identifier: 0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
Certificate issuer: /CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Certificate serial: 019EBEB6552D160F317C29EDCB588CC6758E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
Manifest number: 10BD
Signing time: Sat 13 Jun 2026 02:01:20 +0000
Manifest this update: Sat 13 Jun 2026 02:01:20 +0000
Manifest next update: Sun 14 Jun 2026 02:01:20 +0000
Files and hashes: 1: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl (hash: /1GPZ/mOKGYxI7DwzRyX+kwo6dIFbmky+U0mWcOyIdU=)
2: x5ebKc9_3qA7pEOC0_BnOS1B8oI.roa (hash: AqP1AEgenjD2KrPY+QLH5krFzTJA90JozOTpwzG6a5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:b6:55:2d:16:0f:31:7c:29:ed:cb:58:8c:c6:75:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Validity
Not Before: Jun 13 02:01:20 2026 GMT
Not After : Jun 14 02:01:20 2026 GMT
Subject: CN=adbbdda4436c91a8155b52f174ef6b3d08009789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d3:2c:7c:e6:82:7b:36:1c:86:c9:24:37:c8:
c7:d3:da:3c:bf:75:84:58:51:cb:61:78:eb:d3:9c:
0e:df:f7:ac:0d:65:7e:19:ba:e4:4a:9c:15:61:d0:
c7:f6:6e:53:94:e8:3f:b8:5e:96:74:14:f4:ef:23:
eb:37:43:d1:0d:d7:d2:44:24:39:80:1e:7b:55:6a:
2c:a5:58:bb:eb:f5:32:18:52:42:13:f8:33:e7:e7:
2f:0e:54:9e:c3:c0:35:7d:50:ef:54:92:29:a4:c6:
8c:aa:a0:8b:11:d7:2f:18:72:de:f7:57:fd:81:cb:
06:5e:63:07:00:87:3c:ac:9c:fb:8b:6c:e6:15:35:
6b:9f:65:b3:9a:3c:97:17:36:df:c9:57:78:28:8e:
0e:11:4a:c0:e6:41:db:51:93:b6:78:f0:e7:fa:9e:
9e:54:87:5e:fb:b5:de:31:34:37:1f:19:69:16:4a:
a1:7f:9f:fb:7c:a8:d1:de:7a:b0:72:50:41:44:95:
ce:0e:cb:47:51:23:46:63:75:0e:f9:cc:6f:19:65:
22:18:64:47:b6:a3:b5:58:29:b7:7d:91:f7:32:6e:
00:6d:bf:aa:34:1e:72:b2:d1:3e:95:39:87:0d:67:
e3:cb:5a:87:3a:58:c9:5e:c9:9d:68:9c:95:66:51:
58:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:BB:DD:A4:43:6C:91:A8:15:5B:52:F1:74:EF:6B:3D:08:00:97:89
X509v3 Authority Key Identifier:
keyid:0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:c0:c4:10:e7:ab:89:be:5a:ff:2c:45:6d:f2:0e:13:bf:3a:
b5:e4:f2:a0:05:e2:48:25:f3:d6:c9:cb:4d:07:76:13:68:23:
f4:64:bd:8f:8b:3d:fc:00:52:83:86:33:89:f1:7c:f2:9a:5a:
9c:b8:f7:f0:7b:f4:8e:e9:41:92:f0:eb:3f:79:b0:84:4e:c2:
71:99:56:d1:98:39:1a:a8:35:95:77:d5:11:b7:29:b1:d0:88:
f6:38:bf:7f:ce:5e:19:71:d6:72:9a:1f:c5:05:cf:5d:59:a0:
85:af:86:c3:45:d6:b8:fe:94:ab:08:1e:ff:82:32:24:11:0e:
24:e8:b3:0f:d8:54:3c:b0:75:d7:32:c5:05:4b:5e:bf:13:07:
97:11:10:dc:99:ab:9d:89:54:cb:1c:fa:2d:33:f9:3a:6a:67:
dc:cc:43:d4:23:ee:e7:18:9b:4b:f1:9b:61:8e:c8:b5:9c:ee:
81:ac:b8:5a:68:23:95:d8:95:c8:ca:fe:5a:af:cd:c7:69:36:
5a:4a:82:28:15:f2:5d:55:4c:77:28:c3:99:d2:a4:4c:61:bc:
00:ce:4a:82:d3:ae:c7:ac:87:69:7a:c9:36:44:f0:8b:fb:85:
c2:a9:4f:16:7a:3c:10:f5:7b:67:fe:20:79:50:37:00:57:12:
3d:87:5c:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:57:33 2026 by rpki-client