Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
File: dpduc3A5pphnL-lSSt0zfR_1LP0.mft (raw, json)
Hash identifier: zZ3X0fyIQLxHon5s42z/fvxPVF7ETYiBlfahoxhT//E=
Subject key identifier: BD:B1:16:CC:B6:38:5C:8C:AA:95:F6:02:61:13:BF:5A:10:C6:CA:90
Authority key identifier: 76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
Certificate issuer: /CN=76976e737039a698672fe9524add337d1ff52cfd
Certificate serial: 019D2583B42233B38DA07E2EF24A7650B6AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 15:01:21 +0000
Manifest this update: Wed 25 Mar 2026 15:01:21 +0000
Manifest next update: Thu 26 Mar 2026 15:01:21 +0000
Files and hashes: 1: P3I-kmPN6AuB9rj_rF8BnGgdu-E.roa (hash: 94bU66dX6J/YU6mZi7lnaxiIrZDpbyRdxL2MOQ0QKYQ=)
2: dpduc3A5pphnL-lSSt0zfR_1LP0.crl (hash: /1llZspgHFX5/C/l8tucJkbRuIhQ9Xzn/GYbzPGyL+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:b4:22:33:b3:8d:a0:7e:2e:f2:4a:76:50:b6:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76976e737039a698672fe9524add337d1ff52cfd
Validity
Not Before: Mar 25 15:01:21 2026 GMT
Not After : Mar 26 15:01:21 2026 GMT
Subject: CN=bdb116ccb6385c8caa95f6026113bf5a10c6ca90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:23:c1:d1:03:29:05:45:23:58:cf:e8:e1:3b:
68:72:3d:47:8b:37:74:da:ed:eb:ad:ce:ca:47:b1:
b6:20:bf:86:66:b6:15:ae:0d:4c:f4:a3:51:51:40:
31:b7:f1:bd:fa:65:3e:e9:91:d4:e8:5c:55:32:bf:
62:73:f3:42:c9:cd:e7:61:5d:dc:39:d2:c3:10:04:
0d:08:39:ce:3b:ce:e9:1c:09:db:05:5e:11:ab:3c:
2d:93:6b:d6:6e:24:9b:9c:17:f4:ae:c9:a9:4c:bf:
ac:32:0f:8b:b9:f9:0e:44:ae:56:d7:16:5a:8b:48:
c4:9d:35:aa:9c:fd:18:a4:0d:8c:9b:05:f3:a0:38:
db:79:d9:6e:13:df:9b:3f:50:34:2d:a1:31:cf:21:
43:0b:eb:c5:9c:b9:22:1b:c8:5b:4f:e9:22:76:53:
9e:fc:45:ab:fd:65:34:59:8d:33:31:13:d0:fd:b5:
2f:c8:53:2e:33:fe:a1:c3:15:fa:bf:85:3d:61:26:
f6:cd:0b:b3:79:84:ad:f2:7d:c1:a1:61:d2:24:55:
ad:05:60:8c:b7:13:aa:3b:e4:bb:67:61:c1:27:47:
63:55:99:17:0a:9d:f8:69:3d:b8:e2:2f:7c:e2:45:
8d:c6:df:56:da:2b:d3:e8:74:fc:1c:c9:d1:ad:98:
5b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:B1:16:CC:B6:38:5C:8C:AA:95:F6:02:61:13:BF:5A:10:C6:CA:90
X509v3 Authority Key Identifier:
keyid:76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:9d:d7:eb:22:de:d8:df:38:af:8e:61:92:2b:00:55:95:4e:
d7:44:04:86:63:78:40:f5:0c:cb:c0:64:b8:11:60:96:a6:69:
d1:af:5d:c2:01:ed:fa:74:6b:53:2f:41:33:b3:bd:d7:00:d7:
a1:e9:c3:9f:c3:e3:37:cf:5f:ce:66:23:9c:01:2e:60:e6:14:
73:cc:1c:b6:34:38:bc:63:28:5e:0d:52:76:13:aa:e5:78:df:
0a:1c:30:ac:3b:46:5e:c2:6c:09:b4:70:28:a6:b0:81:e5:73:
bb:c4:0a:fa:45:d4:13:21:6c:49:43:92:a2:52:0e:fd:9b:3a:
98:af:fc:d4:ba:d8:0f:16:ef:e7:a2:25:28:47:80:76:8c:ee:
55:42:3a:63:aa:de:82:9f:40:41:8e:bf:d3:b8:a7:f2:be:fd:
e7:43:9d:f4:4f:40:ee:bb:7a:54:69:0c:a0:67:97:17:aa:0e:
55:c2:96:0a:c7:ea:3c:18:12:66:3a:18:fb:33:ce:d8:75:3b:
ce:a1:6b:89:1d:72:2d:62:24:fe:50:2e:2f:60:ba:65:dd:2f:
60:c3:52:5b:82:1b:ca:de:50:25:62:a3:0a:b8:e8:a1:fa:ba:
53:79:08:70:ed:e7:a3:2f:3d:22:76:52:0a:11:71:df:52:df:
84:29:b3:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:11:17 2026 by rpki-client