Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.mft
File: DIdKX1JzTiYOe_pNRRFK3ZJ341M.mft (raw, json)
Hash identifier: iThaFBqdMHaYX8oZeNOGuz2Ci3yQakEZ5uZa/2D48Fg=
Subject key identifier: DC:8A:B5:02:7F:3E:EC:B7:D1:1F:37:D1:F8:79:CF:A6:8F:F4:59:8A
Authority key identifier: 0C:87:4A:5F:52:73:4E:26:0E:7B:FA:4D:45:11:4A:DD:92:77:E3:53
Certificate issuer: /CN=0c874a5f52734e260e7bfa4d45114add9277e353
Certificate serial: 019D2A04E0232601485946333DD49D2C2D25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DIdKX1JzTiYOe_pNRRFK3ZJ341M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.mft
Manifest number: 0A75
Signing time: Thu 26 Mar 2026 12:00:55 +0000
Manifest this update: Thu 26 Mar 2026 12:00:55 +0000
Manifest next update: Fri 27 Mar 2026 12:00:55 +0000
Files and hashes: 1: 96SX2S5aBWouZ5qx7BRgteL4iq8.roa (hash: M3a2yFufjkSiLfAokMv1+05AOpH8jhB4+9skztdJecg=)
2: DIdKX1JzTiYOe_pNRRFK3ZJ341M.crl (hash: 3yKCFvROmrAo7BJaH2FkjCxknKxOI2jffTJOqMwHYdM=)
3: L6SdCLp_FHvz3o3tKNX0l8WA490.roa (hash: 9JHTUcRidI2GiaDB1BZb9pHbOm8ZJYd9k9gXu4meKKU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.mft
rsync://rpki.ripe.net/repository/DEFAULT/DIdKX1JzTiYOe_pNRRFK3ZJ341M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:e0:23:26:01:48:59:46:33:3d:d4:9d:2c:2d:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c874a5f52734e260e7bfa4d45114add9277e353
Validity
Not Before: Mar 26 12:00:55 2026 GMT
Not After : Mar 27 12:00:55 2026 GMT
Subject: CN=dc8ab5027f3eecb7d11f37d1f879cfa68ff4598a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ba:48:22:4a:9f:40:04:a5:de:31:77:8f:99:
c0:a0:58:b4:26:f9:cd:2f:f7:11:d4:94:d4:a9:16:
85:f9:10:b2:76:da:64:67:cb:a1:36:38:58:4a:25:
a9:47:15:8b:58:ef:89:e1:b3:5d:9f:9f:a2:d8:91:
2c:77:dd:6d:79:7f:de:88:0c:02:ec:58:00:fb:0a:
b5:32:f6:ac:99:e8:cb:6d:73:73:07:de:ce:63:41:
b1:34:4a:bb:be:0a:a9:de:e4:66:eb:2c:8a:3c:e7:
61:b0:21:3d:53:b8:0c:a2:59:10:fa:1d:4c:ec:07:
83:86:67:61:65:12:04:72:1d:ee:01:3a:e0:47:db:
7c:dc:50:90:6b:4a:c1:49:8c:5b:b5:d5:fd:43:4c:
c1:ca:70:1a:19:22:fe:52:d9:ac:2c:47:0c:38:6e:
27:23:11:e2:41:ea:7a:48:49:46:0a:3f:e4:38:b4:
85:d4:63:01:5c:4f:e8:94:54:27:10:1a:e3:0d:fb:
74:ed:3b:5a:ec:dd:42:b5:bd:7a:36:15:71:36:b1:
7d:e7:a8:e7:29:53:b8:ad:44:6c:c4:1a:96:81:3e:
25:18:18:22:78:42:f2:b8:92:15:24:79:c8:b5:3d:
f9:46:ae:4f:0c:0d:e2:58:23:f2:30:1a:a4:fb:5d:
d6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:8A:B5:02:7F:3E:EC:B7:D1:1F:37:D1:F8:79:CF:A6:8F:F4:59:8A
X509v3 Authority Key Identifier:
keyid:0C:87:4A:5F:52:73:4E:26:0E:7B:FA:4D:45:11:4A:DD:92:77:E3:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DIdKX1JzTiYOe_pNRRFK3ZJ341M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:01:b1:c7:b7:b7:20:b9:72:68:cc:72:56:5a:69:26:7b:a4:
42:67:14:25:6d:52:c2:c4:d8:fd:63:9a:00:71:e1:b9:c5:74:
df:bc:72:8e:7d:73:d1:cb:47:72:ed:23:48:bb:a1:17:7a:83:
c6:ef:7e:3d:9c:fb:38:92:a6:90:ce:a0:83:3d:f2:d7:8c:4a:
cd:40:10:60:e4:2c:ca:81:0b:cf:b4:c4:cd:49:89:63:1d:6b:
bb:b1:f4:98:df:73:4d:4b:08:80:b4:89:3c:49:e9:6d:54:e8:
1b:c3:39:72:a1:13:66:9d:a1:54:bf:6c:b4:7a:c9:2f:b1:c4:
d1:ab:e1:6e:63:8d:ff:2d:c1:d5:ad:0e:3e:a2:53:85:ab:a2:
ca:1c:d5:bf:47:c5:01:cb:76:7d:0c:0c:86:da:39:c0:15:c6:
34:87:a2:72:0f:06:a4:0a:70:0e:e1:6f:e6:e9:71:91:7a:5b:
6d:3d:9e:ad:7b:06:38:9a:01:c7:ab:fe:64:4d:67:00:64:d4:
bb:1c:9b:9c:5f:97:e1:a4:77:fe:29:f4:3d:dc:71:1c:4c:87:
a8:09:6c:67:48:b9:30:65:f6:2f:81:44:d0:ba:67:fd:5b:30:
e1:68:ec:75:3d:af:47:48:09:9f:82:4f:c0:c4:35:3b:43:36:
b8:3a:0e:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:20:33 2026 by rpki-client