Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
File: 0ffNDsTDvFTFlDEwfuw27wOCdzM.mft (raw, json)
Hash identifier: MkJneOfcVQqlV6+8kElDSDcch95V3Wpu5rCQcKbpAoc=
Subject key identifier: DE:BD:2B:9C:20:69:D3:B1:BD:5A:C4:79:5B:D9:28:C9:66:42:29:7B
Authority key identifier: D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
Certificate issuer: /CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Certificate serial: 019EBE7FC713E35E0C2561BA68E68D8D1C9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
Manifest number: 1958
Signing time: Sat 13 Jun 2026 01:01:45 +0000
Manifest this update: Sat 13 Jun 2026 01:01:45 +0000
Manifest next update: Sun 14 Jun 2026 01:01:45 +0000
Files and hashes: 1: 0ffNDsTDvFTFlDEwfuw27wOCdzM.crl (hash: Pf/npgOd3BbFODCmuu/Q04j7/azh1o3tigtlTTUGh0k=)
2: gZRVVjbr0VF9kLZepM4sAakfV64.roa (hash: OS+DVlQyVLtcNxKCYd+cy14Vh3Z+rz6mTy8GBtTKd0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:7f:c7:13:e3:5e:0c:25:61:ba:68:e6:8d:8d:1c:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Validity
Not Before: Jun 13 01:01:45 2026 GMT
Not After : Jun 14 01:01:45 2026 GMT
Subject: CN=debd2b9c2069d3b1bd5ac4795bd928c96642297b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:98:0e:bd:f1:58:26:7f:39:39:1f:c3:8d:2b:
36:e7:3c:4d:b9:be:bf:b3:27:71:d9:f5:d8:78:08:
a0:33:62:92:9b:97:52:ef:e6:ea:04:10:a2:e5:12:
ea:39:8a:0a:fe:d6:2c:db:d6:58:52:b2:02:b9:47:
12:ac:24:98:fa:aa:ea:f7:65:bf:c8:e3:cf:9d:35:
17:ac:c1:04:14:ff:07:d6:c7:f2:45:59:00:71:f4:
e2:1e:b0:6b:13:12:dd:62:9e:c8:9a:63:0a:67:64:
8a:c5:84:d6:01:df:09:d8:b7:50:ba:5c:97:9d:e7:
47:45:86:70:4a:db:2c:22:24:a4:be:7d:8a:76:30:
0f:54:4a:97:03:85:78:6b:eb:28:d2:8c:eb:93:ca:
ae:be:5a:df:be:a4:7d:13:0e:47:0e:c6:ff:a1:67:
39:d1:57:f1:cd:1d:17:13:d8:61:69:0c:79:7a:db:
1a:1a:cc:ba:fe:39:31:a1:8f:cb:c2:6b:bc:6a:a5:
d3:ec:cd:0d:ba:27:58:09:2e:64:5d:67:5b:24:9a:
10:0e:42:65:77:66:a6:74:be:e0:2b:67:e5:a6:93:
1f:e6:ab:0a:87:27:53:10:b4:4a:c1:4a:29:1f:aa:
a2:d9:2d:80:e2:b5:18:29:bd:86:4f:35:56:ea:83:
81:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:BD:2B:9C:20:69:D3:B1:BD:5A:C4:79:5B:D9:28:C9:66:42:29:7B
X509v3 Authority Key Identifier:
keyid:D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:16:ca:91:3c:31:84:92:4c:71:69:8c:a3:ea:60:78:af:42:
5b:8c:e0:f4:dc:7b:51:f6:25:9e:0d:f9:dc:28:8b:a8:23:6a:
dc:b6:da:5c:4d:7e:df:b2:56:af:dc:fd:72:2f:06:7f:c3:d8:
aa:39:c8:be:60:0c:57:85:cc:cb:7e:a7:1b:f5:08:e0:0b:35:
8c:c9:15:87:fd:62:0c:20:88:12:e7:57:aa:29:a4:13:33:29:
46:dd:3f:0d:60:47:44:4b:92:c9:5e:70:89:84:25:41:17:0b:
ff:35:d2:8a:e6:8e:45:24:86:66:ce:1e:05:60:1d:cf:7b:30:
fe:65:3c:06:32:71:1c:34:2d:a2:01:af:c4:5b:79:ed:7c:43:
bf:0b:9e:19:d4:8d:9f:7f:a1:a3:34:da:f3:e4:cd:cd:47:55:
37:0a:45:39:0b:da:1b:a4:75:e7:93:e4:45:f7:0b:28:52:ac:
27:bb:25:6f:65:20:50:ad:fc:3e:22:98:0d:37:38:31:df:60:
93:0c:42:6f:11:ad:15:42:48:14:90:9e:fb:ee:a0:30:b6:e5:
a7:4e:10:82:8a:bf:e9:84:7a:d3:e8:eb:4a:9a:8e:d4:f2:ad:
c2:3f:78:37:de:07:fc:a5:84:ac:f0:e3:3b:9b:96:e2:79:a8:
01:63:d4:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:33:40 2026 by rpki-client