Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
File: 23DOek5uSrOk6p8IH1kupfbSuao.mft (raw, json)
Hash identifier: r/Qo+82E9KIeS58kPXYMaxJkcjChQko2zeHHb19PGLw=
Subject key identifier: C8:88:F0:77:4E:E1:2F:F0:70:B8:83:33:11:00:FC:FA:BA:18:C5:CE
Authority key identifier: DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
Certificate issuer: /CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Certificate serial: 019EBF5A5E097B974AAD07D495C54E113DD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
Manifest number: 099D
Signing time: Sat 13 Jun 2026 05:00:30 +0000
Manifest this update: Sat 13 Jun 2026 05:00:30 +0000
Manifest next update: Sun 14 Jun 2026 05:00:30 +0000
Files and hashes: 1: 23DOek5uSrOk6p8IH1kupfbSuao.crl (hash: KT+IlceabB69d2UZB8aXi4Yin3bkpFcLyka7P96Wh0w=)
2: hhh3z06Bpe2m47ehC44Gk6XsxWY.roa (hash: D+hS8HY9ljD+1P/aopr0G/yuhchBVZY0zZMSPMrBOWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5a:5e:09:7b:97:4a:ad:07:d4:95:c5:4e:11:3d:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Validity
Not Before: Jun 13 05:00:30 2026 GMT
Not After : Jun 14 05:00:30 2026 GMT
Subject: CN=c888f0774ee12ff070b883331100fcfaba18c5ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:67:61:ef:26:20:8d:22:63:1d:83:70:ad:08:
68:8d:62:8c:86:27:3f:be:74:f8:bd:dd:66:84:8b:
94:59:65:1e:1c:03:71:fb:94:ac:4e:06:96:2c:40:
84:3b:7b:19:ef:7e:4c:6c:25:4e:15:69:8e:a2:ed:
4f:b2:44:3b:15:c7:ed:c2:cc:88:2b:ce:f9:44:d1:
02:ff:2f:ac:06:97:85:92:33:59:a9:a0:b2:fb:0d:
96:7c:29:f3:14:37:31:42:a1:cd:c5:34:6e:7e:7b:
33:bf:49:be:47:78:d1:dc:e2:d9:fd:3f:90:f8:48:
58:7a:b4:3b:c9:d7:aa:5d:ca:8c:ef:4b:1c:eb:41:
1d:8b:ee:8c:c7:ee:dc:ea:a1:21:3e:ef:fe:10:3c:
d2:ec:af:9e:40:3b:9d:3c:00:fb:e8:67:42:0b:eb:
c2:ed:12:9b:e3:28:03:22:f4:f6:b6:2f:ff:d6:eb:
14:c5:f1:d1:89:77:b5:f3:a8:ad:72:31:11:d4:1a:
30:fa:b1:cc:36:d2:59:5d:d1:2f:df:4b:50:9c:4f:
ac:60:87:0b:ce:e1:32:ff:bb:ff:c0:36:72:94:54:
cc:43:59:6b:ac:ec:08:d9:df:63:46:98:fc:1c:39:
e6:bb:53:da:20:19:5a:02:02:54:3a:6d:c5:97:23:
61:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:88:F0:77:4E:E1:2F:F0:70:B8:83:33:11:00:FC:FA:BA:18:C5:CE
X509v3 Authority Key Identifier:
keyid:DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:72:20:ed:1c:8a:ec:df:c4:df:87:8e:6f:66:21:9e:01:61:
f0:fa:ee:62:e8:ce:2c:d7:9e:b9:53:8d:71:47:a7:1a:bb:67:
26:dc:a7:40:a0:ed:38:5b:12:d6:64:81:81:23:0e:73:35:23:
03:6d:5e:5c:4b:ba:1b:54:e6:4d:0a:b3:6f:d0:ff:d8:69:5e:
b5:79:61:23:45:86:21:9c:0c:de:92:ec:cf:91:53:4f:ce:4e:
d2:3e:72:96:96:cd:32:6d:65:00:34:80:7f:de:2d:05:51:1d:
9b:07:f4:76:b7:c6:ae:b3:0b:1f:59:99:01:d5:ca:8d:a3:0d:
f5:9e:df:12:46:22:0e:65:f5:4f:e0:b6:90:f7:dc:cc:ee:68:
9d:2a:11:40:bd:42:98:a8:71:17:0e:7b:e1:c2:23:00:57:06:
c0:11:1b:88:6f:c8:b2:dd:57:bf:89:79:d6:89:ea:20:4e:c0:
00:e2:38:f9:0a:96:ba:2c:49:60:b4:2b:7b:df:03:13:22:ce:
a4:70:cc:0d:5d:c4:a5:74:8e:d2:af:8e:31:97:f0:6f:3e:bb:
8a:90:ad:f7:55:81:04:4f:ac:dc:4b:17:54:f5:f3:51:fe:35:
0c:2c:46:76:a5:52:32:0b:06:67:ab:99:99:63:09:6a:88:9b:
a9:3a:48:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:04:15 2026 by rpki-client