Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
File: 23DOek5uSrOk6p8IH1kupfbSuao.mft (raw, json)
Hash identifier: Aa0LeeQonhlMQ/F5ZFA67A4U+Va0xceazREN6GSOpic=
Subject key identifier: 55:4E:5E:9D:42:4C:43:2E:D0:2D:E0:89:2C:BE:AF:35:2E:6A:D0:8B
Authority key identifier: DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
Certificate issuer: /CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Certificate serial: 019DA567193E41214A62C03305D032282FEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
Manifest number: 090B
Signing time: Sun 19 Apr 2026 11:01:30 +0000
Manifest this update: Sun 19 Apr 2026 11:01:30 +0000
Manifest next update: Mon 20 Apr 2026 11:01:30 +0000
Files and hashes: 1: 23DOek5uSrOk6p8IH1kupfbSuao.crl (hash: Eda63S2uQaOwyHkuySboNMMNFJnTRxcTo145rFa/o6c=)
2: hhh3z06Bpe2m47ehC44Gk6XsxWY.roa (hash: D+hS8HY9ljD+1P/aopr0G/yuhchBVZY0zZMSPMrBOWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a5:67:19:3e:41:21:4a:62:c0:33:05:d0:32:28:2f:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Validity
Not Before: Apr 19 11:01:30 2026 GMT
Not After : Apr 20 11:01:30 2026 GMT
Subject: CN=554e5e9d424c432ed02de0892cbeaf352e6ad08b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:51:3a:3e:ef:0e:af:ce:93:84:b7:e9:0c:d2:
39:b6:74:0f:8e:40:b9:f2:28:7a:9b:cf:18:17:20:
26:42:7a:70:1b:ac:f3:08:85:38:f6:85:ca:30:5d:
e3:69:5d:13:72:47:2f:46:3d:92:ac:d7:99:63:67:
e1:5c:3f:88:9e:5e:f7:43:d2:24:f7:90:77:45:0a:
71:6f:91:52:90:f0:5a:95:5a:15:dc:ad:0f:80:45:
48:76:4c:02:3d:b5:f4:37:23:2f:2a:64:3f:11:2d:
c6:1d:c4:e1:8d:11:a0:1c:04:92:38:0e:fa:d3:90:
7c:81:0b:92:a8:0c:e3:29:42:a0:8f:0b:3d:22:55:
e7:15:fc:b1:48:25:6c:22:db:ab:c8:0b:78:98:29:
d2:2d:db:fd:15:41:46:e1:01:63:d5:2e:e1:44:2c:
a4:98:d9:4a:6a:ae:9b:37:ae:3e:29:5f:63:cb:31:
d8:04:ba:84:cd:e2:18:e2:cf:81:de:23:1d:83:e1:
22:5d:41:0f:79:b7:d8:22:f5:1b:a7:39:f3:cd:9f:
6b:a1:d7:e1:c6:10:c3:d4:da:d4:3b:76:b5:ed:2f:
7b:96:c5:a0:7d:02:9f:7b:3e:fa:04:c3:ca:2e:b0:
c6:40:58:4f:75:ce:f7:5f:f0:5f:a9:19:73:0e:f0:
47:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:4E:5E:9D:42:4C:43:2E:D0:2D:E0:89:2C:BE:AF:35:2E:6A:D0:8B
X509v3 Authority Key Identifier:
keyid:DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:ef:65:0f:e8:c7:c5:84:4b:2b:54:b5:ab:b8:2a:0a:31:d0:
70:a7:51:8a:07:8e:df:38:82:9e:1f:78:81:46:3d:1a:a7:c8:
f4:43:e6:ab:90:65:f2:2c:5b:52:81:4b:7b:d6:6c:b3:2b:ae:
22:9a:6a:6b:e1:d3:0c:1c:c7:f0:5d:e9:19:a8:1a:eb:1c:b8:
a9:5f:3f:0c:b1:ed:15:cc:42:62:c1:45:a7:ed:c3:c8:14:80:
e3:6e:b7:4b:e3:1a:06:e6:fe:f1:11:e4:3d:c4:7d:a5:31:99:
68:dc:94:20:c7:20:8f:26:f0:0d:1e:42:b1:6a:cd:4e:20:ff:
95:d2:28:52:b9:23:5c:0f:25:c8:95:a8:d0:8d:d5:7b:bf:88:
0a:89:b4:79:32:16:7e:4c:cd:f0:4d:13:0f:43:67:c4:ad:c8:
17:1f:70:8d:66:99:b3:b9:f6:30:01:6a:f2:34:0f:d8:24:41:
96:e4:41:cf:01:eb:a4:ac:c8:16:a9:4d:d6:6f:db:09:82:bc:
57:28:27:fe:b8:93:81:10:d6:52:ba:db:f1:0d:53:73:a1:89:
8d:dd:ee:24:59:f9:df:cc:33:e6:f7:7f:28:84:8e:10:ed:45:
ac:b0:2e:0b:76:ae:14:70:94:07:74:58:e5:00:58:1d:71:a6:
58:d1:2a:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 12:54:26 2026 by rpki-client