Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft
File: DNpch0NU2Dgm5DwlNbduINW2GwU.mft (raw, json)
Hash identifier: sIMnpbryjyJJyasYmPl/OuYAajOsKI5kRCJ+6b94Kes=
Subject key identifier: CA:D3:D2:E7:26:83:7A:FE:C2:F4:1D:D3:01:E0:4E:77:61:67:7D:54
Authority key identifier: 0C:DA:5C:87:43:54:D8:38:26:E4:3C:25:35:B7:6E:20:D5:B6:1B:05
Certificate issuer: /CN=0cda5c874354d83826e43c2535b76e20d5b61b05
Certificate serial: 019D265F37CEDBAD54AD5ED87F42DE15D3A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DNpch0NU2Dgm5DwlNbduINW2GwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft
Manifest number: 1891
Signing time: Wed 25 Mar 2026 19:01:07 +0000
Manifest this update: Wed 25 Mar 2026 19:01:07 +0000
Manifest next update: Thu 26 Mar 2026 19:01:07 +0000
Files and hashes: 1: DNpch0NU2Dgm5DwlNbduINW2GwU.crl (hash: Li1CKwasvF60+OokQusjBJOHtVo7ZqeOx/DRbeeL32U=)
2: u5v1NIr7zCznyDKOfZW5zSM1TZI.roa (hash: 0y7T3YJCDc+2Cz1VFqoKYSn2dXOumotGXs+vkOowx74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/DNpch0NU2Dgm5DwlNbduINW2GwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:37:ce:db:ad:54:ad:5e:d8:7f:42:de:15:d3:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cda5c874354d83826e43c2535b76e20d5b61b05
Validity
Not Before: Mar 25 19:01:07 2026 GMT
Not After : Mar 26 19:01:07 2026 GMT
Subject: CN=cad3d2e726837afec2f41dd301e04e7761677d54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d5:ca:02:99:28:4b:db:dd:6e:65:f1:75:e6:
d4:5b:d4:f4:d1:19:74:c4:06:fb:fa:72:65:26:11:
db:4c:d7:b0:cc:fc:d1:d1:22:67:f8:80:43:2e:a6:
8b:c6:d5:76:1f:90:18:68:5b:45:3a:58:1e:b8:b0:
40:bd:8c:7a:46:de:63:20:47:f7:f6:d9:68:c2:b7:
62:af:43:9f:cd:69:45:01:1d:1b:26:ff:78:32:a3:
8a:b4:01:27:77:46:43:22:e4:d5:e9:39:81:6b:66:
ba:c6:00:ad:19:82:f9:b1:2b:28:a8:88:9d:a6:8c:
c3:f2:95:61:0e:1b:70:b1:bb:81:ed:13:5c:15:3f:
15:6b:ae:d8:2e:26:23:60:60:9e:ae:26:97:e2:68:
0f:55:a0:83:cd:54:70:ce:9f:57:1b:ba:f0:31:c3:
59:90:b0:71:4c:49:91:99:de:1a:f9:19:50:a3:54:
c6:be:44:d5:f9:3f:42:f6:c8:88:ac:8d:9c:a9:ba:
e0:c0:7f:51:0f:f1:1d:d4:2b:b7:7a:5c:c0:ab:8b:
46:87:bb:3e:6b:c6:46:86:42:d6:bd:b3:0d:3a:c6:
05:7f:e2:4a:6d:d6:f1:89:3d:16:62:72:05:43:60:
c7:2b:65:32:72:bf:09:7a:9b:9b:dd:04:02:5b:2f:
ff:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D3:D2:E7:26:83:7A:FE:C2:F4:1D:D3:01:E0:4E:77:61:67:7D:54
X509v3 Authority Key Identifier:
keyid:0C:DA:5C:87:43:54:D8:38:26:E4:3C:25:35:B7:6E:20:D5:B6:1B:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DNpch0NU2Dgm5DwlNbduINW2GwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:b6:6e:05:37:7d:b5:df:45:a5:75:22:d7:9d:ca:8f:7f:7a:
f0:f8:62:54:86:a7:d9:00:f4:43:3f:76:50:de:1e:e0:05:e8:
d9:d0:19:b0:ca:be:81:bb:a3:ff:d7:fe:2f:b0:5c:18:83:e5:
e7:7e:6d:a1:6c:d5:5b:6a:6d:22:a8:b0:8c:c3:2a:fc:89:a2:
de:bf:97:ba:c6:f2:f0:8e:db:76:84:9e:09:77:03:a8:10:7c:
c8:04:d3:64:88:68:bf:76:e6:20:85:55:5a:f5:15:59:19:81:
c7:29:41:bb:b1:90:92:7f:b7:c1:e1:71:22:68:e9:d7:46:74:
8d:13:bf:c7:af:6b:0c:33:e8:81:1f:4f:43:0a:07:30:35:57:
0e:8e:e5:55:bf:e6:65:7d:9d:85:23:5e:4c:03:7f:9f:a5:3a:
a9:81:23:9d:7c:f6:5e:9e:28:99:9a:54:38:09:14:24:d7:d1:
32:28:b7:72:8d:6e:63:13:47:24:3f:ac:c6:11:96:ca:91:8d:
29:48:81:24:ec:95:48:41:9b:19:ea:c3:5a:cf:2d:62:94:78:
d7:56:8b:4d:68:6e:7c:cc:16:10:91:d4:b7:29:fb:fa:b5:57:
06:6f:80:de:30:1e:01:97:25:40:ce:53:2d:12:29:da:31:eb:
7f:f9:50:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mXzfO261UrV7Yf0LeFdOpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZGE1Yzg3NDM1NGQ4MzgyNmU0M2MyNTM1Yjc2ZTIwZDVi
NjFiMDUwHhcNMjYwMzI1MTkwMTA3WhcNMjYwMzI2MTkwMTA3WjAzMTEwLwYDVQQD
EyhjYWQzZDJlNzI2ODM3YWZlYzJmNDFkZDMwMWUwNGU3NzYxNjc3ZDU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAytXKApkoS9vdbmXxdebUW9T00Rl0
xAb7+nJlJhHbTNewzPzR0SJn+IBDLqaLxtV2H5AYaFtFOlgeuLBAvYx6Rt5jIEf3
9tlowrdir0OfzWlFAR0bJv94MqOKtAEnd0ZDIuTV6TmBa2a6xgCtGYL5sSsoqIid
pozD8pVhDhtwsbuB7RNcFT8Va67YLiYjYGCeriaX4mgPVaCDzVRwzp9XG7rwMcNZ
kLBxTEmRmd4a+RlQo1TGvkTV+T9C9siIrI2cqbrgwH9RD/Ed1Cu3elzAq4tGh7s+
a8ZGhkLWvbMNOsYFf+JKbdbxiT0WYnIFQ2DHK2Uycr8Jepub3QQCWy//ZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMrT0ucmg3r+wvQd0wHgTndhZ31UMB8GA1UdIwQY
MBaAFAzaXIdDVNg4JuQ8JTW3biDVthsFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE5wY2gwTlUyRGdtNUR3bE5iZHVJTlcyR3dVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi85MjMzMmYtMDNlMC00MTE2LWI2ZjMt
YzgyZjQyNGI2ZDBkLzEvRE5wY2gwTlUyRGdtNUR3bE5iZHVJTlcyR3dVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi85MjMzMmYtMDNlMC00MTE2LWI2ZjMtYzgyZjQyNGI2ZDBk
LzEvRE5wY2gwTlUyRGdtNUR3bE5iZHVJTlcyR3dVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF7ZuBTd9
td9FpXUi153Kj3968PhiVIan2QD0Qz92UN4e4AXo2dAZsMq+gbuj/9f+L7BcGIPl
535toWzVW2ptIqiwjMMq/Imi3r+Xusby8I7bdoSeCXcDqBB8yATTZIhov3bmIIVV
WvUVWRmBxylBu7GQkn+3weFxImjp10Z0jRO/x69rDDPogR9PQwoHMDVXDo7lVb/m
ZX2dhSNeTAN/n6U6qYEjnXz2Xp4omZpUOAkUJNfRMii3co1uYxNHJD+sxhGWypGN
KUiBJOyVSEGbGerDWs8tYpR411aLTWhufMwWEJHUtyn7+rVXBm+A3jAeAZclQM5T
LRIp2jHrf/lQLg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:23:40 2026 by rpki-client