Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
File: doZr5p83cHIKbcxHkuaA_H9zIaE.mft (raw, json)
Hash identifier: +DocPkrHC0Z039BWvrWGc39M0nxCJvNXU0ah02I9eSw=
Subject key identifier: 7F:E5:AE:04:19:88:16:5F:4F:1C:33:AE:CE:5C:4D:6B:E4:44:CA:4D
Authority key identifier: 76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
Certificate issuer: /CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Certificate serial: 019D29CE77399000AB4243AABE63450CD4DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
Manifest number: 188A
Signing time: Thu 26 Mar 2026 11:01:29 +0000
Manifest this update: Thu 26 Mar 2026 11:01:29 +0000
Manifest next update: Fri 27 Mar 2026 11:01:29 +0000
Files and hashes: 1: doZr5p83cHIKbcxHkuaA_H9zIaE.crl (hash: yeMbO3D9vxOGrlpCJ83RVznFmoteno4/Wsg3H3+Iw1k=)
2: qyikk7bS12oqKnZ6ZpePEhFi5EA.roa (hash: iJ4m2Ce6hYzteRUMXY0l32a188WmXjWtAniRs3aLn1M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:77:39:90:00:ab:42:43:aa:be:63:45:0c:d4:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Validity
Not Before: Mar 26 11:01:29 2026 GMT
Not After : Mar 27 11:01:29 2026 GMT
Subject: CN=7fe5ae041988165f4f1c33aece5c4d6be444ca4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:99:9d:6f:2e:33:9d:4f:45:bd:28:0b:05:28:
11:6a:e6:c7:a9:7e:be:00:bf:ec:cb:c8:f0:38:52:
52:45:00:fe:d9:6a:2f:ec:42:8b:d2:98:13:09:32:
2c:ef:f7:bc:e8:e6:11:2a:3f:a4:37:88:40:16:7a:
5e:8a:c1:57:2e:4d:ec:a4:a3:d4:ff:e2:3f:a1:38:
5c:52:45:ec:8b:1e:68:da:3d:50:2a:8e:6c:bf:d8:
b5:14:fb:58:26:9a:bb:66:ac:d6:3c:57:f7:08:f6:
bc:bd:9a:f7:e8:23:5f:4c:07:b6:97:67:9b:0f:0d:
37:76:bd:28:b6:18:50:98:8e:45:fd:60:ef:dc:eb:
f6:2d:ca:1a:2b:71:2a:c9:64:cc:f8:03:a6:fb:59:
36:ac:ee:99:92:25:1c:f4:06:6f:7f:49:c9:8a:41:
3a:30:d9:bd:61:35:b7:44:6d:6e:9a:2c:3a:42:ce:
c9:e4:c1:3e:c5:88:86:e5:63:1d:98:ed:39:77:e7:
d1:5c:10:f2:de:bc:18:f8:82:d6:37:a2:0d:6f:5f:
da:0b:39:4f:6b:d6:35:62:b3:77:5f:d2:f7:cd:f2:
eb:f6:d9:01:7d:21:94:64:70:06:e3:d4:3a:42:46:
5b:72:3e:e6:0e:76:91:1a:83:7f:63:a2:3a:71:78:
25:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:E5:AE:04:19:88:16:5F:4F:1C:33:AE:CE:5C:4D:6B:E4:44:CA:4D
X509v3 Authority Key Identifier:
keyid:76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:cb:f7:77:15:fc:73:c9:db:e3:b2:57:bf:7c:d8:1c:cd:d0:
79:a3:b6:75:f6:d7:3b:ce:b3:71:7a:e7:69:e6:e3:4e:b9:c5:
19:b4:f4:8f:7c:7f:65:a4:f1:2b:5c:6b:66:b7:98:d6:e2:33:
98:e8:e0:78:0a:fa:51:47:90:57:64:3f:3c:0a:16:09:dc:4a:
93:92:cc:9a:b7:66:7a:87:d6:d0:3a:80:ae:01:eb:6b:f0:4c:
d1:81:f3:01:cb:4a:7f:0e:05:39:49:22:be:a5:57:ba:46:fd:
e3:7d:6e:2e:dd:9e:56:44:c9:9b:2b:c3:8c:c8:54:60:84:01:
cb:5a:b7:42:5d:84:23:43:59:97:ba:53:7f:35:a1:27:01:db:
12:f3:f1:b0:4b:bb:e4:6e:f1:60:4a:14:c3:28:a8:9d:05:0e:
a6:c6:7a:ee:a3:7c:e9:a8:d3:8e:c0:53:fe:0b:f8:e5:a9:13:
ce:b0:52:35:94:34:cf:5a:8f:22:81:56:7a:fa:af:a0:ae:5c:
8d:90:a3:47:bd:00:6d:56:f1:34:be:d1:25:fe:5b:5e:45:25:
97:54:96:ff:02:49:33:c9:48:87:6c:e2:d2:1f:d5:24:23:2c:
5f:e1:d0:31:1a:1f:30:dd:39:6a:78:41:ad:cb:40:17:8c:54:
20:ac:aa:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:20:33 2026 by rpki-client