Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/76a811-8291-444b-9c96-d068adeabeac/1/dr24CfTd5EyCqeW9i3cS1tdjvws.mft
File: dr24CfTd5EyCqeW9i3cS1tdjvws.mft (raw, json)
Hash identifier: 5r9M1IuJbSZIeHlp4Xyj2SrZXWDYuJDnHB8lbxxZ5XA=
Subject key identifier: 62:0A:7B:83:D1:D8:8B:54:0F:B3:E1:78:2F:99:49:33:A9:16:AB:06
Authority key identifier: 76:BD:B8:09:F4:DD:E4:4C:82:A9:E5:BD:8B:77:12:D6:D7:63:BF:0B
Certificate issuer: /CN=76bdb809f4dde44c82a9e5bd8b7712d6d763bf0b
Certificate serial: 019D2B85482E5975210137C57B99E6919822
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dr24CfTd5EyCqeW9i3cS1tdjvws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/76a811-8291-444b-9c96-d068adeabeac/1/dr24CfTd5EyCqeW9i3cS1tdjvws.mft
Manifest number: 88
Signing time: Thu 26 Mar 2026 19:00:48 +0000
Manifest this update: Thu 26 Mar 2026 19:00:48 +0000
Manifest next update: Fri 27 Mar 2026 19:00:48 +0000
Files and hashes: 1: DElIG2I4poXxTLyxmk8qHhToIrc.roa (hash: EymYSA7xmGhavoS2+cvnhWPb/p1asE537I39DsH2QsI=)
2: dr24CfTd5EyCqeW9i3cS1tdjvws.crl (hash: P0gHrO85S/zdqGuk8lgPoVocOL2L2g4r+TgyZp4sXNc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/76a811-8291-444b-9c96-d068adeabeac/1/dr24CfTd5EyCqeW9i3cS1tdjvws.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/76a811-8291-444b-9c96-d068adeabeac/1/dr24CfTd5EyCqeW9i3cS1tdjvws.mft
rsync://rpki.ripe.net/repository/DEFAULT/dr24CfTd5EyCqeW9i3cS1tdjvws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:85:48:2e:59:75:21:01:37:c5:7b:99:e6:91:98:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76bdb809f4dde44c82a9e5bd8b7712d6d763bf0b
Validity
Not Before: Mar 26 19:00:48 2026 GMT
Not After : Mar 27 19:00:48 2026 GMT
Subject: CN=620a7b83d1d88b540fb3e1782f994933a916ab06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7f:f6:6b:86:0e:fd:b8:fc:5a:45:5d:3c:ce:
15:e4:bc:d9:15:02:ee:10:75:4c:f5:1a:0b:0a:f4:
2f:a6:7f:e0:3f:ff:fe:b9:69:02:77:a4:5c:be:07:
68:04:21:c7:f9:17:65:5f:c3:ee:a9:dc:96:c1:9d:
41:15:9e:de:f6:2c:54:6b:70:90:a4:f7:36:2f:59:
1d:3a:d8:69:9a:8f:4b:b7:7e:c2:3c:cc:38:81:26:
bf:2d:e6:ab:bb:9e:59:02:4f:51:45:66:61:2d:06:
d5:44:45:cf:b8:d2:d3:de:ec:a4:99:c2:fa:49:8f:
80:65:e3:40:9d:f9:f8:a5:11:fc:fb:21:bb:34:d5:
c5:60:e6:ce:45:22:0d:43:6b:c4:40:df:1d:65:24:
1c:66:88:2f:c5:8a:34:1f:2b:22:1e:df:27:ac:0e:
62:4d:f6:b0:dd:49:52:51:e8:b9:b1:a8:be:8c:8a:
88:84:69:3e:07:5a:82:c6:52:11:95:9f:6a:b9:bd:
d1:88:29:3c:d8:33:ee:3e:5e:59:e5:19:40:db:b7:
ad:2f:60:75:ea:06:50:f3:9e:c9:1a:21:bd:df:d8:
e3:19:29:9e:25:c4:4b:75:61:0a:13:a4:94:78:87:
c4:0d:08:09:7d:78:06:11:c9:06:a7:b4:f6:fc:11:
8f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:0A:7B:83:D1:D8:8B:54:0F:B3:E1:78:2F:99:49:33:A9:16:AB:06
X509v3 Authority Key Identifier:
keyid:76:BD:B8:09:F4:DD:E4:4C:82:A9:E5:BD:8B:77:12:D6:D7:63:BF:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dr24CfTd5EyCqeW9i3cS1tdjvws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/76a811-8291-444b-9c96-d068adeabeac/1/dr24CfTd5EyCqeW9i3cS1tdjvws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/76a811-8291-444b-9c96-d068adeabeac/1/dr24CfTd5EyCqeW9i3cS1tdjvws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:89:7b:e7:37:c5:ea:41:76:db:b8:7f:9b:a6:bb:4d:ae:71:
46:64:67:44:24:82:49:f8:94:51:0c:13:d4:53:8c:1c:3b:54:
16:5a:72:c7:ab:fa:6a:fa:06:18:60:2d:e7:70:18:6f:76:6b:
aa:83:34:56:04:6d:16:43:94:c6:b7:f8:13:30:3f:02:d1:45:
be:4f:66:d2:3c:f2:2e:e8:72:10:1e:b3:cc:31:81:41:8c:50:
af:46:31:9b:ac:9f:cb:c2:b4:9f:73:40:1e:8a:a4:ae:5c:4d:
dd:74:0c:2e:9a:bc:3f:43:68:90:86:db:78:42:fa:c9:b8:44:
f1:e2:50:ba:18:96:e8:e9:bc:5d:3c:e9:dc:f7:4e:81:09:85:
62:4f:64:15:1a:43:99:b8:a6:00:96:a8:04:61:69:90:b8:62:
95:89:80:a8:62:b3:b2:92:f0:6b:22:ee:34:c3:c4:21:44:fe:
09:88:0f:2b:ba:66:8e:2a:c1:4c:72:99:80:a4:ec:83:03:f8:
99:c8:8e:a0:f8:13:e7:15:70:45:74:d7:d2:6d:15:16:25:c2:
5f:46:f9:03:6e:46:06:c3:2b:36:5b:c9:74:25:ff:e0:e0:f5:
78:4a:28:b6:f6:e9:b9:db:80:d7:92:dc:a8:f6:4b:35:2d:7c:
da:f0:d2:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 01:46:46 2026 by rpki-client