Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
File: dzW3DconD8uOS5CStyADZBOPXfE.mft (raw, json)
Hash identifier: Zx1ObndDF+6d3CJbNZyL1u8h5zRrMzU4zIJCUIAl6SE=
Subject key identifier: F6:7E:B9:CB:D7:F4:A8:E8:09:A8:07:4E:09:0F:B1:86:93:E9:35:CA
Authority key identifier: 77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1
Certificate issuer: /CN=7735b70dca270fcb8e4b9092b7200364138f5df1
Certificate serial: 019D2772C139D34D149D7588E1EA34DBE10B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
Manifest number: 1885
Signing time: Thu 26 Mar 2026 00:02:05 +0000
Manifest this update: Thu 26 Mar 2026 00:02:05 +0000
Manifest next update: Fri 27 Mar 2026 00:02:05 +0000
Files and hashes: 1: AOBKl1z9iGQ7udCEUVrOWOKRRJM.roa (hash: szJEeXPbG7L6V12RPqYR0G9jxj6sIKpxCqCIcFUY2rQ=)
2: dzW3DconD8uOS5CStyADZBOPXfE.crl (hash: j5BBYBXdys/OhCukt6uqeJXEY3XiDpqlirTiV0gcBL4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:c1:39:d3:4d:14:9d:75:88:e1:ea:34:db:e1:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7735b70dca270fcb8e4b9092b7200364138f5df1
Validity
Not Before: Mar 26 00:02:05 2026 GMT
Not After : Mar 27 00:02:05 2026 GMT
Subject: CN=f67eb9cbd7f4a8e809a8074e090fb18693e935ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:5b:e5:1b:9d:3d:66:88:6b:95:92:0c:2f:6a:
6f:fb:09:17:b2:41:17:66:b9:30:c5:16:a8:fd:35:
f8:38:20:01:84:bd:00:2e:bd:ed:db:39:ca:06:42:
c7:0f:ac:72:59:68:2c:55:87:1e:53:38:bf:23:68:
7b:f9:77:53:47:b0:cd:3e:ad:2f:df:42:20:9b:d5:
5e:5e:05:49:4c:76:a2:1e:a5:1e:30:f9:38:bd:49:
6b:cd:be:0d:91:f9:f6:a5:a3:70:d6:ce:a8:a4:29:
eb:d3:82:6d:aa:35:4d:79:78:83:c9:b1:ad:ba:13:
a8:29:8c:4a:88:42:f6:b1:ac:dd:fc:d5:3f:5b:13:
5f:1b:a0:53:ed:87:48:be:54:fe:60:c4:5f:f7:89:
3b:93:e0:73:43:57:c6:f7:6d:1a:3d:a1:81:2d:dc:
c5:45:95:1d:81:3a:4f:1f:2a:55:3d:e2:3d:96:21:
0e:85:d0:ca:77:c1:dc:f0:03:75:07:c3:44:9d:05:
0a:90:65:ec:1c:9d:90:da:5c:4d:8d:bb:08:85:04:
f0:6e:dc:96:cd:d0:6b:33:65:8f:18:3f:a4:66:ee:
cf:97:b4:9e:cc:cd:83:9c:f2:33:01:92:8c:40:85:
da:dd:51:fc:af:b4:d8:12:33:a7:af:19:c4:36:ac:
0c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:7E:B9:CB:D7:F4:A8:E8:09:A8:07:4E:09:0F:B1:86:93:E9:35:CA
X509v3 Authority Key Identifier:
keyid:77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:3c:d3:09:c7:bc:06:a8:5b:0f:82:bd:f0:c7:7c:bd:f1:22:
99:d7:7f:db:c9:81:f2:95:2e:61:d8:80:b5:62:71:da:8d:43:
06:99:10:21:07:65:4b:ec:a0:d4:cc:5c:bd:a8:5c:10:45:b6:
b7:93:77:7d:10:59:17:76:5c:4a:d3:eb:63:38:7a:70:59:4b:
3b:2f:28:1c:22:13:d0:7f:4f:6a:a8:24:00:b8:91:65:35:36:
c8:ca:89:06:d8:37:b6:d8:b9:80:19:d1:f8:32:a7:e5:fc:fa:
ea:fb:62:ff:1f:0a:df:96:a7:8e:91:c3:07:4a:0c:d9:11:7f:
97:96:2e:1a:2b:9b:11:e1:00:d7:93:05:88:15:ab:b9:46:5d:
76:ba:09:9c:17:c1:0b:98:05:fa:33:f0:21:4b:19:dc:10:c9:
e6:86:e3:88:2a:24:ca:c5:de:68:e1:07:17:5a:4f:37:fe:48:
2d:c3:bc:c0:a6:d6:54:35:61:ed:d8:23:83:f7:b0:e1:c4:f3:
0f:2b:2e:dc:72:ad:21:2b:08:e1:fa:24:29:2a:09:35:05:31:
5c:5a:01:21:48:57:e9:56:0d:2f:6f:2e:18:e9:a2:da:11:ba:
0a:ab:e6:76:8f:bd:17:4b:53:df:52:dc:d2:fa:0f:e1:b2:6b:
e7:d4:76:0b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ncsE5000UnXWI4eo02+ELMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3MzViNzBkY2EyNzBmY2I4ZTRiOTA5MmI3MjAwMzY0MTM4
ZjVkZjEwHhcNMjYwMzI2MDAwMjA1WhcNMjYwMzI3MDAwMjA1WjAzMTEwLwYDVQQD
EyhmNjdlYjljYmQ3ZjRhOGU4MDlhODA3NGUwOTBmYjE4NjkzZTkzNWNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAklvlG509ZohrlZIML2pv+wkXskEX
ZrkwxRao/TX4OCABhL0ALr3t2znKBkLHD6xyWWgsVYceUzi/I2h7+XdTR7DNPq0v
30Igm9VeXgVJTHaiHqUeMPk4vUlrzb4Nkfn2paNw1s6opCnr04JtqjVNeXiDybGt
uhOoKYxKiEL2sazd/NU/WxNfG6BT7YdIvlT+YMRf94k7k+BzQ1fG920aPaGBLdzF
RZUdgTpPHypVPeI9liEOhdDKd8Hc8AN1B8NEnQUKkGXsHJ2Q2lxNjbsIhQTwbtyW
zdBrM2WPGD+kZu7Pl7SezM2DnPIzAZKMQIXa3VH8r7TYEjOnrxnENqwMcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPZ+ucvX9KjoCagHTgkPsYaT6TXKMB8GA1UdIwQY
MBaAFHc1tw3KJw/LjkuQkrcgA2QTj13xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHpXM0Rjb25EOHVPUzVDU3R5QURaQk9QWGZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS9kZmJjZTgtNTQzNy00OWQ3LWE3Zjkt
YzZkZGViNDk0NzM1LzEvZHpXM0Rjb25EOHVPUzVDU3R5QURaQk9QWGZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS9kZmJjZTgtNTQzNy00OWQ3LWE3ZjktYzZkZGViNDk0NzM1
LzEvZHpXM0Rjb25EOHVPUzVDU3R5QURaQk9QWGZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1DzTCce8
BqhbD4K98Md8vfEimdd/28mB8pUuYdiAtWJx2o1DBpkQIQdlS+yg1MxcvahcEEW2
t5N3fRBZF3ZcStPrYzh6cFlLOy8oHCIT0H9PaqgkALiRZTU2yMqJBtg3tti5gBnR
+DKn5fz66vti/x8K35anjpHDB0oM2RF/l5YuGiubEeEA15MFiBWruUZddroJnBfB
C5gF+jPwIUsZ3BDJ5objiCokysXeaOEHF1pPN/5ILcO8wKbWVDVh7dgjg/ew4cTz
Dysu3HKtISsI4fokKSoJNQUxXFoBIUhX6VYNL28uGOmi2hG6Cqvmdo+9F0tT31Lc
0voP4bJr59R2Cw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:46:49 2026 by rpki-client