Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
File: tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft (raw, json)
Hash identifier: UX2YZ+ByIuyARVVWdk7IuDQhqphVc/Lr4gIwtOachf4=
Subject key identifier: 87:23:95:A9:DF:4F:EE:17:EF:0C:C8:02:FE:06:53:1F:85:63:34:79
Authority key identifier: B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
Certificate issuer: /CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Certificate serial: 019EC2C93A1B83B910EEC1DBB4832F6E4491
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
Manifest number: 068C
Signing time: Sat 13 Jun 2026 21:00:27 +0000
Manifest this update: Sat 13 Jun 2026 21:00:27 +0000
Manifest next update: Sun 14 Jun 2026 21:00:27 +0000
Files and hashes: 1: 0lwIzPsGn14owxvXy7_61u8zBPk.roa (hash: RHYNuusrfwoS7Vg7kp1EMywIH/hGj3OELuZX6uFgB7Q=)
2: tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl (hash: aHDI5SZTXucqXn2sogthCzya/aIvq3ehnimoD7TxCp4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 21:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:c9:3a:1b:83:b9:10:ee:c1:db:b4:83:2f:6e:44:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Validity
Not Before: Jun 13 21:00:27 2026 GMT
Not After : Jun 14 21:00:27 2026 GMT
Subject: CN=872395a9df4fee17ef0cc802fe06531f85633479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:97:ad:ac:5f:94:9e:92:a7:b1:a0:ec:a1:cf:
2b:5c:bd:14:85:7d:15:1f:c5:84:22:20:46:54:f0:
76:32:69:f1:d3:d3:df:be:3d:53:c9:85:d7:7e:79:
a7:39:39:f5:7f:22:9c:ab:25:e0:1a:8f:c0:69:ed:
06:3c:90:bc:86:3e:b2:bd:07:59:ca:23:aa:1b:70:
dc:7b:dd:33:15:d8:cc:61:0f:2d:01:bb:ff:f5:5c:
d0:5f:34:52:03:32:a0:fb:80:82:19:fd:4c:fa:90:
55:0d:85:e4:69:65:8c:26:24:85:c5:bb:f4:e3:eb:
33:31:d5:51:41:63:c3:b6:17:78:96:84:47:ee:50:
a5:c9:6d:42:3c:6c:52:02:ba:fa:73:6a:06:82:c2:
f6:33:d3:3a:0b:ec:d6:45:27:b5:2a:8f:cd:af:d8:
5f:e0:44:a4:a5:69:40:25:ab:2f:44:a4:71:54:50:
2f:0e:85:1d:4d:eb:c8:da:61:e4:89:14:27:a1:91:
21:3c:1b:24:28:89:95:ea:0d:cc:b3:20:ba:1c:05:
63:2b:7e:b6:46:55:fa:b9:2b:6b:2f:f4:ab:f9:47:
d7:ad:8a:1f:48:02:06:b4:ce:43:52:6a:ef:f9:e6:
40:92:51:30:9e:4f:0e:1d:ab:0d:67:09:b2:80:8b:
4b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:23:95:A9:DF:4F:EE:17:EF:0C:C8:02:FE:06:53:1F:85:63:34:79
X509v3 Authority Key Identifier:
keyid:B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:49:87:67:8b:8f:c7:dd:b4:53:50:4f:7c:c7:a6:db:58:56:
7b:ef:5f:84:b9:7e:39:f9:b6:23:04:cc:f6:9d:4b:6c:24:28:
2f:af:9a:e7:ea:03:2b:86:89:ed:75:74:42:d9:c4:e6:25:66:
bd:f0:69:f9:ac:75:a2:ee:f2:81:94:41:ec:ac:0b:38:aa:84:
0c:71:43:5c:77:ed:db:0e:6e:c2:ae:8e:37:80:35:85:da:5b:
ff:39:97:b4:2e:52:0f:60:c9:b4:b8:f1:50:44:91:35:b1:2e:
fc:b4:60:13:d6:d4:3c:57:33:1a:cf:be:9e:ec:b0:89:4e:ed:
73:ba:6f:ec:02:a8:2a:d6:43:74:01:71:79:44:b4:69:77:cb:
cc:34:c6:4f:71:12:c1:c3:8c:94:93:97:00:37:37:6d:3d:7a:
a0:b5:e5:13:3b:d5:77:11:ab:b6:4b:d1:a7:ed:22:a6:8a:98:
e3:77:4f:00:9d:a0:f8:9d:a4:f6:1d:61:27:7d:22:35:ae:f4:
a0:08:45:75:c2:82:d0:ac:a7:91:9a:2f:70:45:42:78:e2:08:
91:f6:9e:c8:3b:74:ea:ab:a8:bd:b1:6b:66:03:8f:5a:d3:11:
b1:fa:e0:e1:ee:db:1d:72:e7:4e:e8:1a:34:bf:27:64:12:1e:
27:62:5c:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 06:21:58 2026 by rpki-client