Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
File: dxLiD1ELIrghfN8NIRSWsbnB7bg.mft (raw, json)
Hash identifier: M/Ttqe/hav/WwNvfawjWxy0+0DIHyURY7IxKXPMX/S8=
Subject key identifier: 23:B9:E3:D1:AD:03:5E:9E:05:17:E4:0A:96:1A:88:0D:72:3C:34:DF
Authority key identifier: 77:12:E2:0F:51:0B:22:B8:21:7C:DF:0D:21:14:96:B1:B9:C1:ED:B8
Certificate issuer: /CN=7712e20f510b22b8217cdf0d211496b1b9c1edb8
Certificate serial: 019D292924F5A179D2B641D22E4836F59E28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 08:00:55 +0000
Manifest this update: Thu 26 Mar 2026 08:00:55 +0000
Manifest next update: Fri 27 Mar 2026 08:00:55 +0000
Files and hashes: 1: dxLiD1ELIrghfN8NIRSWsbnB7bg.crl (hash: aDm4EZdHb+dv2DaH82SzkmhKU8RXinZvsqs99yp/D+I=)
2: j2Zec19YMohuiWgyeOqj3yTZ1qE.roa (hash: 24aHxSxVGLUb8yk1YBdeTwbmPhDVWKEcsyuGoX47Z48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:24:f5:a1:79:d2:b6:41:d2:2e:48:36:f5:9e:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7712e20f510b22b8217cdf0d211496b1b9c1edb8
Validity
Not Before: Mar 26 08:00:55 2026 GMT
Not After : Mar 27 08:00:55 2026 GMT
Subject: CN=23b9e3d1ad035e9e0517e40a961a880d723c34df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cf:25:5f:53:5f:0e:28:62:45:9a:27:91:0b:
f5:7b:08:43:8e:4e:37:8a:09:f0:a2:2f:5c:d9:53:
05:02:b7:a6:0e:29:4b:72:45:00:09:d2:eb:71:14:
0e:a5:db:80:a2:0e:ec:27:e8:9e:aa:33:e4:26:19:
67:c4:3a:42:48:53:0a:98:24:25:bb:67:65:40:b2:
50:c2:f0:30:02:2c:1f:41:99:d0:7d:02:bb:b7:77:
84:58:66:f1:cf:c6:70:da:01:7b:24:a0:34:46:18:
71:c5:15:f2:31:dc:06:f3:80:26:13:2e:ae:b9:b7:
5b:20:72:93:7a:07:55:01:bd:fa:99:41:ad:b3:2f:
80:62:bd:e0:a7:69:fa:21:bd:e1:30:13:5d:cf:cf:
51:3a:1d:e1:91:5c:74:ea:41:69:a9:e5:32:d4:e0:
4d:45:f9:32:fa:f6:39:8f:13:49:61:19:6d:cc:7d:
c4:0a:ce:7f:30:0a:84:76:c3:63:37:fa:29:01:f1:
bc:48:af:d3:81:b5:0b:40:ce:5c:dd:06:a7:e3:c7:
5b:2b:ce:1f:35:be:7a:77:2c:e8:ff:50:bc:ee:dd:
50:ec:07:8b:0c:3b:41:48:dd:a3:fa:3e:e9:fe:10:
fb:38:34:1e:02:76:bc:74:79:66:0c:2e:14:93:aa:
41:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B9:E3:D1:AD:03:5E:9E:05:17:E4:0A:96:1A:88:0D:72:3C:34:DF
X509v3 Authority Key Identifier:
keyid:77:12:E2:0F:51:0B:22:B8:21:7C:DF:0D:21:14:96:B1:B9:C1:ED:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:8b:89:15:64:c4:18:d6:80:5b:34:21:d1:a9:2c:41:a5:89:
db:65:c5:5f:69:ed:fe:ad:1d:8a:0d:e3:9b:8e:fe:83:6c:1b:
09:3c:ab:fc:a7:d2:13:58:6a:1d:b2:c4:71:c5:c9:b7:b0:09:
76:fa:09:a9:8d:c7:5e:e4:f1:92:d9:0b:46:81:c4:f0:ec:81:
68:42:97:46:fa:fa:d8:f2:6d:35:55:dc:0d:17:09:cf:a6:d6:
69:aa:35:f3:dc:59:08:ac:f3:c1:5b:67:41:a1:97:e3:d8:6c:
ef:64:4a:8a:41:c9:37:da:ec:ba:c4:83:05:4b:43:0b:69:60:
db:58:f9:0c:b8:5b:ef:80:bc:1b:79:cc:d0:fe:e7:46:98:fe:
92:3c:5d:45:bd:d4:74:27:36:07:83:ca:da:62:d2:8e:56:10:
38:27:b4:7d:e5:0e:26:e2:ff:e0:3a:78:e2:00:a8:40:04:a4:
a1:cc:5a:f6:1d:60:09:fe:77:4a:3a:96:6e:fa:1b:29:6e:16:
6c:14:c6:71:e2:00:3d:67:45:f7:47:ab:ba:a5:36:44:61:e5:
45:f4:9b:8f:c1:39:5d:e3:b1:85:83:47:9e:75:17:51:1c:04:
b6:16:ff:f1:88:5d:d8:bc:64:e9:d4:1e:1a:01:44:e3:6d:4e:
33:3e:c9:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:51:54 2026 by rpki-client