Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
File: DZ40sUlHfVXvC1lipeXgDN-1hIk.mft (raw, json)
Hash identifier: df65PNq5nSmUbIeBDFS5Qhc1/jRxokp0hO/vPJxrabs=
Subject key identifier: 09:BD:05:93:55:36:1D:6B:A8:1B:76:64:D3:26:9B:50:12:01:3F:70
Authority key identifier: 0D:9E:34:B1:49:47:7D:55:EF:0B:59:62:A5:E5:E0:0C:DF:B5:84:89
Certificate issuer: /CN=0d9e34b149477d55ef0b5962a5e5e00cdfb58489
Certificate serial: 019D28F2198BF7B3D0B31B4D1E792EDB314F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
Manifest number: 15C4
Signing time: Thu 26 Mar 2026 07:00:47 +0000
Manifest this update: Thu 26 Mar 2026 07:00:47 +0000
Manifest next update: Fri 27 Mar 2026 07:00:47 +0000
Files and hashes: 1: DZ40sUlHfVXvC1lipeXgDN-1hIk.crl (hash: XZv/o4G2emAm8Du2Oyk3QQVaMilB6CymPoLJHgqLwas=)
2: jiPOjIl6nBCVWenOtGifVVlibug.roa (hash: XoY5kXa67LdZT4EHsb4gzDlj3ILFLqUeSW5H/QfO6kE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:19:8b:f7:b3:d0:b3:1b:4d:1e:79:2e:db:31:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d9e34b149477d55ef0b5962a5e5e00cdfb58489
Validity
Not Before: Mar 26 07:00:47 2026 GMT
Not After : Mar 27 07:00:47 2026 GMT
Subject: CN=09bd059355361d6ba81b7664d3269b5012013f70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:df:2c:40:d9:ca:73:91:a4:31:69:c9:40:92:
4a:8e:5a:3d:1f:7e:4b:6d:8f:f7:e1:89:80:ba:b0:
57:4e:b0:bd:3a:54:31:27:64:e2:92:3d:b5:85:4d:
c7:35:11:fc:ea:b1:8a:49:8f:0a:18:db:c6:06:6f:
2e:f1:1f:9e:c8:55:01:25:2e:cd:e6:ff:da:9f:3b:
9d:21:c2:a1:b6:e4:b6:68:40:27:8a:d8:16:b5:39:
c4:69:65:98:34:64:88:41:a9:7c:6c:ee:c3:a0:cd:
56:62:93:c9:5f:2b:97:0c:d5:36:4e:c9:92:0b:2c:
b5:7e:d7:d8:85:55:b9:7a:9c:11:b6:62:31:45:d6:
63:53:ad:5c:c5:f4:f4:3d:2a:44:1c:76:06:bc:6f:
3d:b5:50:9d:61:79:f5:e1:40:7d:91:31:61:d4:ec:
12:c0:f3:a5:e1:6a:50:28:55:c2:e6:6c:9e:65:c3:
ad:7b:eb:05:96:a5:b3:a0:5f:c1:6a:11:5f:f4:3d:
fc:e7:21:4a:bd:e3:7f:1b:31:83:11:1b:26:e3:33:
dc:d3:e3:ae:4d:b3:9f:d7:14:8c:9f:64:04:d6:24:
73:1c:4d:2d:50:7f:58:48:c3:7e:e7:3f:fd:9b:aa:
a2:d9:00:0c:1f:24:7f:a2:93:70:90:35:d6:e4:3e:
92:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:BD:05:93:55:36:1D:6B:A8:1B:76:64:D3:26:9B:50:12:01:3F:70
X509v3 Authority Key Identifier:
keyid:0D:9E:34:B1:49:47:7D:55:EF:0B:59:62:A5:E5:E0:0C:DF:B5:84:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:78:d9:78:55:39:2a:33:8a:56:0d:ce:36:9b:4e:fc:09:c6:
28:8f:95:5e:73:64:c7:7a:b3:27:08:c4:b6:17:29:4d:4e:02:
58:b6:f7:d1:08:29:8c:81:a2:7c:3d:b9:5c:d6:da:43:62:50:
3f:c5:ef:4e:da:ca:39:f9:ba:0c:b2:b2:5f:d5:d9:b0:30:19:
48:fe:c2:b7:ce:9e:0b:57:b1:af:ee:49:55:47:df:a7:bb:14:
ac:ea:25:63:1c:06:95:c6:f0:54:66:59:53:c8:63:fb:55:88:
03:58:af:87:e4:8d:56:fb:27:e0:e9:56:19:0f:9d:c5:ee:65:
fa:d8:27:27:69:27:03:11:9a:11:08:3d:86:92:8d:d6:67:18:
f4:cd:a0:1f:6c:86:14:9f:d6:b4:45:02:8a:52:71:2b:ce:46:
4d:9b:1b:03:ca:fe:19:62:e1:e6:f6:fe:73:33:e1:7c:1d:33:
fc:19:42:10:8f:68:c2:1c:d9:e3:2b:12:44:79:f1:9f:29:c4:
84:27:b3:a1:2d:67:38:4c:5c:4c:36:3b:69:eb:ff:89:2c:d6:
62:82:e9:d1:f2:7e:af:ba:a3:d7:ff:40:52:f1:5e:ac:f7:3b:
aa:b2:9b:54:de:dc:dd:5a:77:fd:a0:23:77:2e:00:3e:04:5d:
7d:54:8f:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:56:22 2026 by rpki-client