Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
File: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft (raw, json)
Hash identifier: cHJGHZQbInpmycX4/2lD6sPZH5NGIokiSg6e+9L9Jnk=
Subject key identifier: 8E:52:4B:91:A7:46:FF:2D:E9:3A:B6:1C:83:2F:32:7C:8E:8E:0D:6E
Authority key identifier: AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
Certificate issuer: /CN=ac328756dece8f29f97f41b81a087db524e159b7
Certificate serial: 019D2704563C0A0EA7C097C0E582FA09E6CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
Manifest number: 14D1
Signing time: Wed 25 Mar 2026 22:01:28 +0000
Manifest this update: Wed 25 Mar 2026 22:01:28 +0000
Manifest next update: Thu 26 Mar 2026 22:01:28 +0000
Files and hashes: 1: W3MdpZwq4nd-n5ES7yDiCOVHqpo.roa (hash: 8BK9ZS1JvVx0ZUCH1KW40WgG0466nVGYcl484oqJH48=)
2: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl (hash: Fi7YFPWIkWo42p/EaDDjQitaXP4CMc7yrKNb2B4hzQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:56:3c:0a:0e:a7:c0:97:c0:e5:82:fa:09:e6:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac328756dece8f29f97f41b81a087db524e159b7
Validity
Not Before: Mar 25 22:01:28 2026 GMT
Not After : Mar 26 22:01:28 2026 GMT
Subject: CN=8e524b91a746ff2de93ab61c832f327c8e8e0d6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:41:44:9e:d2:fb:09:21:f5:79:47:01:41:ed:
95:bc:c9:74:6d:26:f6:54:be:8d:0e:04:6d:a0:7a:
53:c0:4b:c3:00:28:ea:13:2b:5c:d8:80:03:12:5d:
93:1d:98:b4:0e:70:d1:5c:78:cd:f4:ca:68:02:0b:
8a:7d:30:79:cc:c4:8d:b8:c4:e4:95:42:3b:0f:16:
7e:dd:20:5d:18:b4:ee:59:08:96:96:38:6c:17:45:
09:76:ac:fc:b8:ec:e9:b3:c2:4a:49:1c:65:a3:b7:
44:d3:c2:a7:ed:e3:a1:59:f9:38:ef:a9:37:15:18:
7d:4c:a5:e7:52:0e:69:85:df:c6:c4:a8:2e:20:15:
44:86:d4:37:70:82:35:65:fb:05:df:a0:0a:d5:69:
2a:88:37:e0:d5:54:3f:9f:1f:d9:1e:29:a7:b9:73:
9f:1f:df:43:2b:d0:d6:a4:4b:cc:b5:b8:1f:5d:95:
a7:4b:ca:6a:fd:9c:54:6c:bc:26:5b:c3:6c:45:01:
d3:16:d3:33:df:5d:f5:bb:07:14:81:d2:9c:9c:33:
7b:39:f7:ad:f9:e7:35:a3:b4:f2:4c:cc:32:6e:4f:
a8:b2:69:0d:68:4a:39:d4:10:dd:ed:16:57:47:52:
73:24:78:44:0c:b2:75:f0:32:35:6d:a2:21:ce:9a:
0f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:52:4B:91:A7:46:FF:2D:E9:3A:B6:1C:83:2F:32:7C:8E:8E:0D:6E
X509v3 Authority Key Identifier:
keyid:AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:aa:4b:8a:0d:36:06:54:d8:16:e3:5d:d5:9c:b0:4d:0b:e4:
ff:ca:24:f4:01:ea:e1:32:8a:ab:d3:67:16:40:40:c5:8e:25:
f6:16:33:52:a6:de:56:6b:7a:43:d8:2e:e8:eb:f3:5f:6d:7e:
fb:bb:70:30:d3:62:49:70:aa:5b:5c:6f:62:cd:65:73:9c:d9:
1c:06:65:71:75:96:26:e2:30:8c:a2:dd:dd:d6:9c:48:33:69:
0b:24:3c:0b:7f:55:b6:06:32:ef:5e:af:e2:93:d8:85:65:13:
b1:e1:fd:d1:ae:e2:ac:ca:80:5f:00:e7:e3:82:b4:96:9c:a9:
95:33:97:06:31:c6:92:ed:c3:12:63:2f:b9:bd:b7:33:ce:b7:
75:0b:e4:30:2f:b7:ae:15:8c:dd:8a:60:b1:ed:a3:c9:8b:9c:
e5:93:cd:1d:75:8c:bf:37:c5:eb:d6:76:78:22:c5:c5:2a:d4:
0f:33:06:47:66:86:74:e2:dc:13:e0:d4:c4:38:15:d4:72:ab:
57:84:f4:af:b7:c1:d4:44:bb:f2:e6:3a:b0:09:7e:17:8f:01:
fd:17:67:d1:62:0e:c8:02:56:69:54:50:b7:aa:ac:92:0e:2b:
aa:5a:2a:5d:d4:29:20:c7:09:0c:b1:9d:73:87:62:5c:9d:c6:
85:0f:65:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:59:55 2026 by rpki-client