Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
File: dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft (raw, json)
Hash identifier: +xPfcOUA9DQHoBv1BFwrB/F2l/p51qKMGR2Fd6sALPg=
Subject key identifier: 49:1E:22:29:0F:88:ED:64:07:5F:1E:20:4C:4A:77:15:4E:60:51:10
Authority key identifier: 74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
Certificate issuer: /CN=74b975898d10f1a5052133e1e25036c6114d8876
Certificate serial: 019D265F0280D273E7581876B9D3B5000A30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
Manifest number: 1520
Signing time: Wed 25 Mar 2026 19:00:53 +0000
Manifest this update: Wed 25 Mar 2026 19:00:53 +0000
Manifest next update: Thu 26 Mar 2026 19:00:53 +0000
Files and hashes: 1: dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl (hash: WmaiFJVz0Z6PhVwDCBPFC2cy0Ac05gJvUWkBs3cP6To=)
2: p2dX8ZxrxFo5bme0wCXmevmXoFM.roa (hash: z7vq22A/NBz69RT3OwNZlFHGPIzvOhIGUKvXngDLH00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:02:80:d2:73:e7:58:18:76:b9:d3:b5:00:0a:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b975898d10f1a5052133e1e25036c6114d8876
Validity
Not Before: Mar 25 19:00:53 2026 GMT
Not After : Mar 26 19:00:53 2026 GMT
Subject: CN=491e22290f88ed64075f1e204c4a77154e605110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bc:90:e3:dd:7e:3d:36:74:09:aa:6a:52:d6:
14:5c:97:3f:7e:38:54:96:92:87:10:66:a3:f8:94:
30:3e:00:82:26:dd:7d:49:40:a8:60:5e:e1:2c:98:
b8:ee:85:f7:15:2d:1b:81:15:0a:eb:a5:cb:cb:cc:
f1:be:ec:2b:f6:7a:6e:3f:72:89:4d:8f:43:0c:ca:
a4:7c:bf:ec:77:78:20:93:29:22:f5:e2:e2:fa:cc:
c1:45:41:ca:e6:d8:f9:66:5d:42:9c:a6:8f:cd:6a:
ba:13:27:4d:ed:11:2c:6e:ea:47:ac:b5:8a:e4:06:
94:e7:b9:2a:2c:94:97:cb:b2:11:55:ae:25:7a:80:
9e:5e:ff:17:10:62:10:61:c7:fd:d3:4d:f0:fd:7d:
e8:92:b6:a5:f7:ca:d3:00:0a:d3:56:73:68:2c:bc:
44:59:ae:0b:d1:e1:6d:ce:d6:f2:de:91:16:45:f8:
9e:9e:f9:2d:64:6d:21:58:42:c4:8c:52:3e:d3:9c:
72:33:e8:4b:d2:33:0c:e0:b3:82:20:b3:f0:54:48:
b2:48:bf:0d:4e:e6:2c:d8:d5:cd:6a:f0:84:5b:9c:
84:42:15:f9:f7:35:ad:8e:2a:ef:30:e9:3a:47:d8:
95:cd:7c:13:20:9f:4d:c9:fa:fe:5f:6c:ed:fa:12:
af:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:1E:22:29:0F:88:ED:64:07:5F:1E:20:4C:4A:77:15:4E:60:51:10
X509v3 Authority Key Identifier:
keyid:74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:fa:c8:e9:39:da:66:75:e6:06:4c:2c:91:b1:d4:42:79:d3:
ca:3b:5e:0d:9e:20:d5:5b:ab:ab:db:a3:58:34:b2:b6:69:74:
d6:f6:50:73:89:a7:e0:7e:19:58:02:45:b5:f0:8e:a5:a8:3e:
a6:11:48:3c:56:4c:d9:76:09:93:e0:69:4c:10:9a:d3:a1:8d:
69:3a:c2:c7:70:2e:ec:db:13:b3:51:fe:13:1b:f5:9e:10:36:
bd:f9:e8:cc:db:f8:0c:62:36:0a:00:b7:8a:e3:4f:bc:b4:82:
fa:48:22:1c:26:98:5b:e8:1d:a9:ba:0d:17:f7:5b:eb:27:c2:
f5:8c:3d:25:72:8f:ba:d2:3b:77:88:b9:ef:a7:15:1c:75:75:
ec:3f:b0:03:b3:44:d3:10:5f:08:49:25:6d:c3:f0:0f:3b:f5:
11:bc:13:3a:31:c2:ca:20:6c:fb:8c:34:aa:8e:c9:8b:08:dc:
4b:83:a0:10:31:52:66:d4:b3:7c:b9:70:2a:d9:de:21:ca:72:
22:64:2a:97:16:3e:e5:10:38:b7:66:e6:ee:c3:19:69:64:eb:
10:87:d5:8d:8d:79:d5:85:0e:1a:b6:f8:2f:72:0b:1f:dc:28:
f6:f7:23:d8:c1:39:fc:7a:89:9b:8f:6d:66:37:aa:9d:3d:74:
f2:11:d8:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:21:17 2026 by rpki-client