Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft
File: D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft (raw, json)
Hash identifier: fl8+TMUD65yzBXxxRAzfvSkTJU+0cuV2M/FHkBOw7/E=
Subject key identifier: 76:D6:B2:08:4C:06:4C:40:3E:57:CE:6A:36:85:54:65:D2:2E:42:B1
Authority key identifier: 0F:67:1F:EC:38:F0:0C:40:2F:30:66:F1:3C:79:2E:1A:0E:D1:6D:B3
Certificate issuer: /CN=0f671fec38f00c402f3066f13c792e1a0ed16db3
Certificate serial: 019D284DFA0B09E6AA40564DE774AE4EB860
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2cf7DjwDEAvMGbxPHkuGg7RbbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft
Manifest number: 10ED
Signing time: Thu 26 Mar 2026 04:01:32 +0000
Manifest this update: Thu 26 Mar 2026 04:01:32 +0000
Manifest next update: Fri 27 Mar 2026 04:01:32 +0000
Files and hashes: 1: CwIjYjnTILTtmzxjO1L06aXYXx0.roa (hash: eJSJ7vi3vMU6tYUCxmim/j5RdYogwWkRqmaPqZMw+kY=)
2: D2cf7DjwDEAvMGbxPHkuGg7RbbM.crl (hash: Fn7fg9vnkvH5KN4WrOb0jQ8LcPsFbxkfaRUN8ZwFUHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/D2cf7DjwDEAvMGbxPHkuGg7RbbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 04:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:fa:0b:09:e6:aa:40:56:4d:e7:74:ae:4e:b8:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f671fec38f00c402f3066f13c792e1a0ed16db3
Validity
Not Before: Mar 26 04:01:32 2026 GMT
Not After : Mar 27 04:01:32 2026 GMT
Subject: CN=76d6b2084c064c403e57ce6a36855465d22e42b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:53:b7:69:a0:70:31:c6:85:b8:6d:25:36:6e:
89:f4:54:a3:70:37:ea:a0:02:c2:ac:b2:a2:ef:a0:
3c:cd:b7:af:e7:07:18:c0:b5:90:59:b6:cd:43:59:
7b:fb:d7:38:b7:6d:75:e0:de:ca:e6:9f:27:b7:0e:
6c:d2:1a:01:af:0a:22:77:55:60:8b:68:7f:77:e9:
6a:0c:7f:53:04:28:f2:77:2e:e4:6a:97:ee:36:8a:
83:71:a1:b8:4c:07:8e:66:fa:ee:30:4e:67:77:2a:
c0:66:5d:cd:8a:de:39:4e:c3:6d:10:85:a5:60:be:
82:21:29:17:d6:78:7b:d5:6d:2c:67:e9:bc:f9:36:
04:fb:91:e3:92:df:fc:3a:10:fb:4e:e1:14:27:bd:
63:52:f9:95:4e:27:28:45:39:4b:06:bd:8e:b2:79:
c7:de:55:45:67:a1:19:7f:73:12:03:df:96:e5:4e:
63:d0:a8:ef:95:e8:ec:f5:94:10:61:f8:67:fb:79:
52:ac:65:8a:40:d3:38:92:fd:97:c1:dd:69:a5:b1:
cf:26:94:7f:52:87:b0:dd:6d:fd:10:d3:5b:8f:02:
36:f5:60:f2:c5:6e:6e:c0:f0:0a:4a:33:cd:97:2c:
23:2e:d3:9c:06:61:44:64:cd:65:4b:0c:f8:cd:b4:
2f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:D6:B2:08:4C:06:4C:40:3E:57:CE:6A:36:85:54:65:D2:2E:42:B1
X509v3 Authority Key Identifier:
keyid:0F:67:1F:EC:38:F0:0C:40:2F:30:66:F1:3C:79:2E:1A:0E:D1:6D:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2cf7DjwDEAvMGbxPHkuGg7RbbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:64:98:f7:14:00:29:dd:b7:97:03:65:2d:c7:bd:93:a0:6b:
f1:78:b2:77:3f:00:3e:be:4f:94:ea:a2:f0:52:9b:f0:e2:70:
29:95:2e:42:b1:fd:e4:11:55:c9:e5:33:cc:81:7b:21:b8:2d:
1d:ce:6e:77:66:0f:d0:28:70:4c:7b:b7:ab:86:ca:5e:a5:01:
22:79:b3:40:11:c9:a4:5a:f1:66:ae:90:36:a6:fd:41:e4:6c:
82:48:65:ff:49:b8:8f:e4:97:26:a7:fa:46:8e:f8:41:ab:98:
bd:d8:a8:bf:7e:67:20:97:a9:af:9a:fd:88:26:6c:85:64:f0:
ef:5d:6c:43:d8:58:af:38:e3:ae:2a:63:53:98:52:23:4f:d5:
28:89:e7:b6:98:31:75:07:f4:60:fd:1e:66:3c:5c:40:c9:27:
34:d0:a5:ed:39:b3:d6:10:63:57:06:e2:9c:21:49:94:ef:8d:
db:20:14:16:24:ae:c5:af:7d:84:00:95:ab:0b:70:1c:38:36:
4e:0a:34:43:39:78:91:02:af:27:9c:4d:02:b9:01:3f:a3:9d:
e6:5c:8b:1f:0b:91:26:d4:ba:d0:59:6d:84:d1:aa:5a:9d:0f:
79:1a:0a:40:27:bf:ad:ee:78:2e:45:4a:c8:5c:59:7e:ca:f2:
60:ed:16:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:28:15 2026 by rpki-client