Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
File: 1DNtXnTx-LfbEynwC7hXJBrnTRk.mft (raw, json)
Hash identifier: NjGg7vZjiNfUO4aYJmaLGGHSCfcoLPWYaNx/uBkDmsU=
Subject key identifier: 59:6A:06:0F:9F:34:8C:F1:F1:52:57:97:4C:F1:1C:4B:16:A1:D4:38
Authority key identifier: D4:33:6D:5E:74:F1:F8:B7:DB:13:29:F0:0B:B8:57:24:1A:E7:4D:19
Certificate issuer: /CN=d4336d5e74f1f8b7db1329f00bb857241ae74d19
Certificate serial: 019D9A3EB0FF48DDE20102615472360CB5DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
Manifest number: 064B
Signing time: Fri 17 Apr 2026 07:01:32 +0000
Manifest this update: Fri 17 Apr 2026 07:01:32 +0000
Manifest next update: Sat 18 Apr 2026 07:01:32 +0000
Files and hashes: 1: 1DNtXnTx-LfbEynwC7hXJBrnTRk.crl (hash: MR7tr/ydUiOtWPXiqdo43H+sin6S4N14+BvJrjrv3AI=)
2: w4SYF93bZ7mEac54Bcw2Oj2Zjm0.roa (hash: AiCzf27YzXL7TiAwTl4rqi9Bv4ePafNZNaFvG1buGG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:b0:ff:48:dd:e2:01:02:61:54:72:36:0c:b5:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4336d5e74f1f8b7db1329f00bb857241ae74d19
Validity
Not Before: Apr 17 07:01:32 2026 GMT
Not After : Apr 18 07:01:32 2026 GMT
Subject: CN=596a060f9f348cf1f15257974cf11c4b16a1d438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:6e:8d:e0:26:c3:91:9d:e2:6f:b3:c3:df:f5:
d8:4b:28:eb:cb:82:68:8c:e5:96:43:51:a1:87:84:
43:80:51:ac:53:20:da:1b:c2:05:4d:47:e3:21:6a:
6c:78:84:57:5d:9c:fc:eb:c6:2f:aa:4b:22:47:06:
71:95:46:1d:88:89:e5:75:33:28:92:93:cd:ea:63:
3d:4f:a3:76:bb:74:86:af:ae:0c:8d:45:b2:7a:ab:
75:a2:ee:8c:b0:ac:24:27:19:6a:4b:72:e5:bd:12:
95:73:59:1b:7c:04:ca:cf:cb:12:c5:4a:5d:c3:57:
84:3c:6a:76:e6:c7:80:71:74:f1:5b:1b:63:6d:4c:
3f:14:9c:75:f0:09:ff:c0:f2:1b:45:5b:93:f4:12:
32:3f:68:a2:28:da:72:9f:4a:c8:8e:1b:e2:3e:a5:
1f:ae:7a:ef:a9:15:fd:3d:69:a6:6c:ee:4b:df:1a:
8e:67:41:a8:ec:96:87:5a:8d:d9:93:66:6b:3c:f7:
23:d0:8e:74:48:fe:6e:f1:bd:e4:bb:4f:7a:1d:7c:
61:cf:1f:75:c9:d2:7e:ee:70:60:45:a2:c3:8f:94:
0c:44:0f:37:4d:eb:a9:20:1d:ff:7d:8b:be:2f:fe:
d2:2a:af:49:1f:81:09:e6:13:c5:7e:45:39:33:2b:
81:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:6A:06:0F:9F:34:8C:F1:F1:52:57:97:4C:F1:1C:4B:16:A1:D4:38
X509v3 Authority Key Identifier:
keyid:D4:33:6D:5E:74:F1:F8:B7:DB:13:29:F0:0B:B8:57:24:1A:E7:4D:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:1e:02:e8:56:fb:41:5e:4b:c1:c8:90:f5:1e:e4:f7:67:ab:
a7:02:c7:f8:30:71:9d:0e:44:0e:54:6a:29:a6:3e:22:3f:e6:
c8:2b:8e:71:c2:c4:9a:64:d2:21:0c:1f:bb:f6:02:be:5a:d4:
2c:1f:23:28:43:67:77:b0:6f:04:99:dc:73:91:e0:a4:2c:4d:
4f:db:bc:c5:1a:88:ce:fe:90:26:9e:e6:4f:9f:77:d9:1c:0a:
1b:78:fc:96:60:40:07:50:e5:0b:37:25:a0:49:4a:c7:e3:f2:
96:c4:41:56:72:01:30:4f:b8:c1:37:98:53:8e:b8:81:f0:b6:
fe:54:61:9c:3e:09:df:6c:21:33:45:8a:36:e1:74:7d:03:8b:
c8:4f:dc:a4:2c:5b:cd:02:54:29:9c:9f:b7:eb:50:1f:0b:d3:
6f:43:55:7c:c8:f0:ee:ef:73:48:63:71:6b:56:1a:49:06:fb:
8f:37:5a:a7:a7:07:fb:4b:ad:74:2d:80:92:8e:5d:4d:b4:01:
c5:7e:68:eb:0a:15:5f:57:4b:4b:b8:92:dd:51:97:5f:b1:e1:
bd:ef:6d:59:33:94:22:3a:9d:04:9d:c4:18:cc:53:f6:b0:f2:
18:38:1d:3e:b2:80:61:0d:1e:1b:09:15:83:be:56:5d:89:d5:
ca:e7:11:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:03:47 2026 by rpki-client