Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
File: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft (raw, json)
Hash identifier: KbjVS+iYY8gJlPhCTJ3ac6SMOKOm8g8Y7jYzFzJEfvE=
Subject key identifier: E9:42:C3:0B:F9:77:9F:0E:56:66:87:DE:6D:5D:76:83:5C:F4:79:9E
Authority key identifier: 0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
Certificate issuer: /CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Certificate serial: 019D273B3AF3E777B7B090DC7D24A287F42F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
Manifest number: 0FEA
Signing time: Wed 25 Mar 2026 23:01:26 +0000
Manifest this update: Wed 25 Mar 2026 23:01:26 +0000
Manifest next update: Thu 26 Mar 2026 23:01:26 +0000
Files and hashes: 1: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl (hash: 8Umn7gBPWMUFa07wjNAm8Y0T0bi+euCyAvfcplflZf0=)
2: x5ebKc9_3qA7pEOC0_BnOS1B8oI.roa (hash: AqP1AEgenjD2KrPY+QLH5krFzTJA90JozOTpwzG6a5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:3a:f3:e7:77:b7:b0:90:dc:7d:24:a2:87:f4:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Validity
Not Before: Mar 25 23:01:26 2026 GMT
Not After : Mar 26 23:01:26 2026 GMT
Subject: CN=e942c30bf9779f0e566687de6d5d76835cf4799e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2f:19:85:e9:43:90:a2:bb:9d:f0:91:72:e3:
a4:cc:5a:af:17:1d:25:d1:91:37:39:14:61:a4:cb:
2a:8b:44:27:43:70:e1:51:db:c3:ae:81:8a:6d:c3:
6b:9e:6f:42:61:01:df:6e:85:bd:e9:33:b9:9c:f5:
c8:ba:a6:4e:29:39:ab:a2:40:19:05:90:e4:3d:ef:
10:69:bf:37:de:e4:1d:8f:89:da:94:e4:5c:c3:7b:
e9:98:86:90:a6:87:7b:0e:f9:0a:7b:09:4f:ff:6d:
35:64:29:d1:d2:ea:46:d6:74:ba:1b:be:bf:52:50:
27:ce:9f:ed:6d:1c:e3:7a:7b:9e:dd:2a:b8:b7:8d:
e8:6c:ad:c2:97:de:0a:8a:71:fe:0f:32:cf:2c:ce:
49:a2:63:f0:ee:30:3b:b0:eb:09:e0:b0:e3:4a:49:
a2:78:bd:0b:c9:d3:26:09:72:5f:a2:69:de:0a:2c:
d2:b5:c9:25:10:e9:ae:4d:9d:94:01:82:fe:13:a9:
36:d7:1e:d8:13:80:1f:01:da:9c:ef:71:ea:64:c8:
95:e3:46:1b:87:68:90:70:29:a8:44:97:1f:6d:d6:
0a:9e:13:f8:5d:82:41:25:85:08:cd:d5:0f:44:9d:
00:e9:20:37:58:fb:b0:1a:1a:e8:5f:4f:95:26:9b:
73:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:42:C3:0B:F9:77:9F:0E:56:66:87:DE:6D:5D:76:83:5C:F4:79:9E
X509v3 Authority Key Identifier:
keyid:0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:f4:93:dc:1d:3e:d2:65:3d:bb:9b:da:62:70:3e:6c:26:59:
29:ac:a3:71:24:5d:38:86:4c:29:1c:23:f0:74:6a:58:25:5f:
8f:5a:ed:55:a3:ab:f0:e5:30:4c:a4:cf:30:a2:13:5b:af:8a:
bc:44:a4:03:c8:37:d2:c8:0a:4f:11:eb:8f:9a:13:40:5e:21:
1c:b8:f3:21:72:75:3d:8a:ab:81:29:06:10:d4:99:46:19:74:
64:c9:f3:4e:30:05:6d:a9:fd:c5:1d:24:e7:e2:c2:69:12:d8:
fc:ea:d2:a8:86:00:e9:f0:1f:8a:5a:40:0e:70:8a:d4:fb:6f:
e8:90:71:4e:4f:91:62:34:49:93:e2:12:1d:27:ed:46:5d:dc:
63:f3:8b:19:97:02:1f:c3:1e:17:32:f6:3c:2d:80:c4:33:21:
c6:2d:40:b9:d2:84:f6:29:13:6a:23:2d:48:5b:2e:f9:53:8d:
1e:cd:ef:3a:26:65:4a:ae:8c:a0:04:aa:25:3a:e2:cf:be:96:
33:6a:93:3e:36:97:29:92:1a:89:77:af:d7:47:f3:ab:2b:a5:
a0:e8:8c:8e:f4:cc:91:18:26:7f:35:a6:7b:14:af:34:6b:31:
0c:ae:85:3d:13:b4:56:0b:6f:62:be:7b:92:f1:1e:23:a0:87:
2d:3f:b5:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:20:31 2026 by rpki-client