Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
File: dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft (raw, json)
Hash identifier: iCL2tuZsQhdtcdNuKJZRnBBn+PIEFabQKh08GukCZ8k=
Subject key identifier: 8A:0F:8B:41:B9:20:AC:5D:AE:D0:46:A6:29:D7:D5:70:6C:39:9C:FE
Authority key identifier: 76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
Certificate issuer: /CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Certificate serial: 019D284D5082CE18A2F7C0C56A542A3DA62D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
Manifest number: 15D2
Signing time: Thu 26 Mar 2026 04:00:48 +0000
Manifest this update: Thu 26 Mar 2026 04:00:48 +0000
Manifest next update: Fri 27 Mar 2026 04:00:48 +0000
Files and hashes: 1: KTiF2AJ-jYhH5MwBEq6DBqpHZIU.roa (hash: QZiMXdBbvocZooloHKXavt9Kr4OE8mOVpmaFum5U1Uk=)
2: dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl (hash: Kp5VeQ18h9WKf/mWEPKHz8rvRKkNbwuyaDx13+9nxUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:50:82:ce:18:a2:f7:c0:c5:6a:54:2a:3d:a6:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Validity
Not Before: Mar 26 04:00:48 2026 GMT
Not After : Mar 27 04:00:48 2026 GMT
Subject: CN=8a0f8b41b920ac5daed046a629d7d5706c399cfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5d:5b:08:4d:da:da:81:8a:c8:0a:44:90:7d:
e9:f4:8b:8d:d5:54:67:9e:66:3d:41:b3:43:fa:50:
25:bd:0c:91:d3:6f:6c:aa:b7:b2:30:ef:06:af:7e:
0a:7e:27:ce:85:c0:87:da:fb:68:de:dc:a8:07:ef:
87:f3:af:c0:24:2c:3f:5c:ee:fd:c7:2d:b1:b2:f6:
72:3d:a7:eb:aa:d9:eb:7b:58:1a:42:92:24:0a:31:
06:6c:d0:61:2c:d5:a2:c0:95:18:6d:3a:1e:23:1b:
a7:f5:b5:d8:57:24:7e:3b:19:fb:ef:ee:3f:6e:f1:
0a:34:5f:20:ca:4e:d2:8b:87:66:09:c2:67:bc:19:
c6:1a:af:80:e2:18:be:9e:80:1f:d5:da:0b:81:ff:
9e:6c:65:74:5e:3c:d0:f6:75:b0:77:a8:7a:bb:a5:
3c:28:70:3a:35:9d:f7:8e:65:6d:e8:fc:05:d9:d0:
1d:89:12:8d:2a:e1:bd:df:58:59:0b:07:c2:53:c3:
1e:ee:70:5c:fd:41:47:62:18:e5:e8:12:15:5d:a8:
a9:41:9e:fd:29:52:c9:b9:c7:e4:ae:aa:30:97:bd:
33:e2:3c:ae:02:fd:a5:23:24:7b:c2:53:ce:17:85:
be:dd:ee:54:12:20:5c:e2:ab:72:ba:d7:c3:9a:28:
19:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:0F:8B:41:B9:20:AC:5D:AE:D0:46:A6:29:D7:D5:70:6C:39:9C:FE
X509v3 Authority Key Identifier:
keyid:76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:cd:7c:0b:0a:54:d0:3d:f4:79:43:66:47:41:44:6e:34:e0:
1d:36:5c:d2:fc:6c:81:7f:81:4e:03:38:0c:60:31:34:98:f4:
84:5d:2b:01:2d:44:75:1f:f5:72:ee:aa:3e:5c:16:aa:1f:ae:
4d:62:c3:f0:24:e5:38:97:ca:23:3f:07:67:38:db:6d:39:de:
4d:a9:d4:e7:f5:02:05:c3:68:27:33:ba:64:3d:bd:4c:23:e1:
3b:4f:10:dd:0f:2b:e2:9d:e8:9f:f3:8d:07:f6:fc:a7:5a:7e:
63:16:43:a3:12:97:c0:44:13:72:95:c0:c1:8f:7d:52:97:9f:
56:47:c4:dd:12:b3:ec:22:ec:88:f5:7f:6e:d6:35:ff:cb:50:
56:fb:44:4a:bb:4a:7f:39:9d:08:95:88:97:9f:eb:cd:b6:a3:
d2:89:92:5d:5c:8f:cb:50:bb:fc:96:25:ad:5c:e5:94:54:77:
1a:ce:5b:13:29:0f:72:4b:b3:ea:3b:4f:18:49:9b:e3:35:52:
9f:36:36:e8:5b:f8:0f:3f:3a:9d:38:df:df:00:fb:f9:c9:99:
a9:51:8c:f2:7d:48:df:bf:6c:7e:71:09:cb:6f:cb:55:c5:0d:
62:40:24:21:26:ee:a0:1e:01:c0:f2:ed:9a:0f:cf:1a:66:2b:
c7:12:de:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oTVCCzhii98DFalQqPaYtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2N2JjMDJhNTg1OTYyM2Y1NjNlYTg0YTZiYjBhMjkyMGQ1
YjNlOTEwHhcNMjYwMzI2MDQwMDQ4WhcNMjYwMzI3MDQwMDQ4WjAzMTEwLwYDVQQD
Eyg4YTBmOGI0MWI5MjBhYzVkYWVkMDQ2YTYyOWQ3ZDU3MDZjMzk5Y2ZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwF1bCE3a2oGKyApEkH3p9IuN1VRn
nmY9QbND+lAlvQyR029sqreyMO8Gr34KfifOhcCH2vto3tyoB++H86/AJCw/XO79
xy2xsvZyPafrqtnre1gaQpIkCjEGbNBhLNWiwJUYbToeIxun9bXYVyR+Oxn77+4/
bvEKNF8gyk7Si4dmCcJnvBnGGq+A4hi+noAf1doLgf+ebGV0XjzQ9nWwd6h6u6U8
KHA6NZ33jmVt6PwF2dAdiRKNKuG931hZCwfCU8Me7nBc/UFHYhjl6BIVXaipQZ79
KVLJucfkrqowl70z4jyuAv2lIyR7wlPOF4W+3e5UEiBc4qtyutfDmigZJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIoPi0G5IKxdrtBGpinX1XBsOZz+MB8GA1UdIwQY
MBaAFHZ7wCpYWWI/Vj6oSmuwopINWz6RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZG52QUtsaFpZajlXUHFoS2E3Q2lrZzFiUHBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9jZGFiYzQtYmFlNS00ZDk5LTllMTct
NjgxNTU0OGJmMzNmLzEvZG52QUtsaFpZajlXUHFoS2E3Q2lrZzFiUHBFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS9jZGFiYzQtYmFlNS00ZDk5LTllMTctNjgxNTU0OGJmMzNm
LzEvZG52QUtsaFpZajlXUHFoS2E3Q2lrZzFiUHBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg818CwpU
0D30eUNmR0FEbjTgHTZc0vxsgX+BTgM4DGAxNJj0hF0rAS1EdR/1cu6qPlwWqh+u
TWLD8CTlOJfKIz8HZzjbbTneTanU5/UCBcNoJzO6ZD29TCPhO08Q3Q8r4p3on/ON
B/b8p1p+YxZDoxKXwEQTcpXAwY99UpefVkfE3RKz7CLsiPV/btY1/8tQVvtESrtK
fzmdCJWIl5/rzbaj0omSXVyPy1C7/JYlrVzllFR3Gs5bEykPckuz6jtPGEmb4zVS
nzY26Fv4Dz86nTjf3wD7+cmZqVGM8n1I379sfnEJy2/LVcUNYkAkISbuoB4BwPLt
mg/PGmYrxxLeEA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 10:09:15 2026 by rpki-client