Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/76a811-8291-444b-9c96-d068adeabeac/1/dr24CfTd5EyCqeW9i3cS1tdjvws.mft
File: dr24CfTd5EyCqeW9i3cS1tdjvws.mft (raw, json)
Hash identifier: JlCh+6UYrIal9VV9KJrcfIoL4nHlG0lIcQnwGBdTWR8=
Subject key identifier: 4A:F8:27:04:4D:2D:9B:B8:24:88:D6:1B:8E:0D:76:D6:6E:8D:FE:BC
Authority key identifier: 76:BD:B8:09:F4:DD:E4:4C:82:A9:E5:BD:8B:77:12:D6:D7:63:BF:0B
Certificate issuer: /CN=76bdb809f4dde44c82a9e5bd8b7712d6d763bf0b
Certificate serial: 019E20C846501B493506E7C0958B9F3EF3E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dr24CfTd5EyCqeW9i3cS1tdjvws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/76a811-8291-444b-9c96-d068adeabeac/1/dr24CfTd5EyCqeW9i3cS1tdjvws.mft
Manifest number: 0107
Signing time: Wed 13 May 2026 10:00:56 +0000
Manifest this update: Wed 13 May 2026 10:00:56 +0000
Manifest next update: Thu 14 May 2026 10:00:56 +0000
Files and hashes: 1: DElIG2I4poXxTLyxmk8qHhToIrc.roa (hash: EymYSA7xmGhavoS2+cvnhWPb/p1asE537I39DsH2QsI=)
2: dr24CfTd5EyCqeW9i3cS1tdjvws.crl (hash: DOjbtZfCOwmoLUH98NNHgltfv4ZvTWz7tS6I6+dEgok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/76a811-8291-444b-9c96-d068adeabeac/1/dr24CfTd5EyCqeW9i3cS1tdjvws.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/76a811-8291-444b-9c96-d068adeabeac/1/dr24CfTd5EyCqeW9i3cS1tdjvws.mft
rsync://rpki.ripe.net/repository/DEFAULT/dr24CfTd5EyCqeW9i3cS1tdjvws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:c8:46:50:1b:49:35:06:e7:c0:95:8b:9f:3e:f3:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76bdb809f4dde44c82a9e5bd8b7712d6d763bf0b
Validity
Not Before: May 13 10:00:56 2026 GMT
Not After : May 14 10:00:56 2026 GMT
Subject: CN=4af827044d2d9bb82488d61b8e0d76d66e8dfebc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b8:24:3a:c5:be:15:bb:d8:71:d4:8a:16:5d:
b8:6a:f6:7d:c9:28:2d:0a:75:b0:4a:ea:42:7d:e7:
a6:44:f1:b0:40:39:c4:bd:e7:a5:e0:61:77:4a:07:
44:c9:b1:97:c7:0b:29:70:9c:92:9f:89:f0:7d:09:
14:88:2a:23:75:13:5b:f4:6e:5e:18:d0:af:8e:e2:
a9:75:bb:23:53:44:7a:ca:84:89:d8:b0:77:18:e8:
3d:43:7a:a8:57:81:1f:aa:b7:6d:01:f1:62:f7:9b:
e1:ce:60:a6:22:f0:e5:18:5b:26:1b:62:08:63:aa:
6f:d7:6c:a0:29:7b:bc:78:ea:64:e0:c5:c8:bc:78:
50:f8:d8:63:72:d4:69:65:86:37:bd:2c:f8:9d:03:
23:aa:67:ba:ab:53:4e:c9:81:e0:00:14:fa:c1:3e:
f1:d6:93:a9:b8:d8:8d:fa:32:00:4c:3e:ab:16:b6:
98:1c:2c:d7:bc:08:2b:96:4a:59:51:d3:53:1e:f3:
9d:51:1e:18:20:86:63:82:d3:34:17:2f:08:1c:c9:
21:d3:8e:0e:89:c1:f0:ed:04:9c:ea:26:90:3e:9a:
0c:97:15:be:08:ba:f9:54:7b:db:a3:74:92:be:63:
33:68:2c:21:84:f4:9d:b7:ca:fd:dc:a2:b1:fe:f4:
e8:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F8:27:04:4D:2D:9B:B8:24:88:D6:1B:8E:0D:76:D6:6E:8D:FE:BC
X509v3 Authority Key Identifier:
keyid:76:BD:B8:09:F4:DD:E4:4C:82:A9:E5:BD:8B:77:12:D6:D7:63:BF:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dr24CfTd5EyCqeW9i3cS1tdjvws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/76a811-8291-444b-9c96-d068adeabeac/1/dr24CfTd5EyCqeW9i3cS1tdjvws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/76a811-8291-444b-9c96-d068adeabeac/1/dr24CfTd5EyCqeW9i3cS1tdjvws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:f3:ad:de:38:f3:a9:96:9d:23:78:cd:6c:4b:79:3c:70:8f:
af:ef:ca:2a:19:70:b6:00:e2:08:e9:be:2b:b1:f3:1b:63:c4:
9a:89:00:89:0d:c2:8c:2d:61:3e:52:8a:4d:cb:a8:c4:aa:40:
fb:b7:b5:37:6c:0e:60:81:c8:6d:ad:15:f8:0a:6f:bf:62:83:
b3:7c:00:5b:ac:5c:b5:c5:20:a4:19:7b:8f:6e:ce:e6:e4:96:
fe:37:b4:79:36:f0:6e:96:db:b6:d0:b1:56:92:9a:22:8e:63:
2f:46:34:84:8a:b3:f2:c4:43:b5:00:da:34:58:d8:ab:16:2d:
a7:f0:07:18:ba:8f:c5:78:25:a9:65:46:b3:b7:04:7d:7f:49:
bf:20:92:b0:5d:2d:de:47:d8:bc:54:16:92:83:72:3f:8e:2b:
90:aa:dd:45:2b:55:c3:59:5a:bc:e1:27:84:a5:45:0d:70:6d:
8b:3d:a6:82:dc:6d:b8:ce:2d:10:32:78:2b:95:3e:bf:41:a1:
d1:cb:7f:53:64:61:37:ab:20:5d:b2:e6:98:62:cc:c4:59:9a:
9a:4b:c2:f3:64:60:3a:3c:ca:27:82:82:cb:57:30:e6:d6:10:
f6:28:44:7c:b5:bf:ba:e8:cd:ed:ce:a3:ac:36:74:c2:6c:4e:
04:7d:b2:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:21:45 2026 by rpki-client