Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.mft
File: D7fx_Ydo4hFjVCr89VqDxpgCFaM.mft (raw, json)
Hash identifier: MFHaBuFTNBo4y8Eps66kh9YVxbvuyGYAcgrkDio8ZT8=
Subject key identifier: D2:5F:25:41:ED:20:F2:ED:4E:84:D2:57:AF:D5:31:CC:6B:AC:57:29
Authority key identifier: 0F:B7:F1:FD:87:68:E2:11:63:54:2A:FC:F5:5A:83:C6:98:02:15:A3
Certificate issuer: /CN=0fb7f1fd8768e21163542afcf55a83c6980215a3
Certificate serial: 019D25F20720A3A0317AD88213AF15D9C7FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D7fx_Ydo4hFjVCr89VqDxpgCFaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.mft
Manifest number: 09E0
Signing time: Wed 25 Mar 2026 17:01:51 +0000
Manifest this update: Wed 25 Mar 2026 17:01:51 +0000
Manifest next update: Thu 26 Mar 2026 17:01:51 +0000
Files and hashes: 1: D7fx_Ydo4hFjVCr89VqDxpgCFaM.crl (hash: X1t/Pld8oJC8lAt9HCXXUoZt8nmZe5v17lEhtzvfiaA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.mft
rsync://rpki.ripe.net/repository/DEFAULT/D7fx_Ydo4hFjVCr89VqDxpgCFaM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f2:07:20:a3:a0:31:7a:d8:82:13:af:15:d9:c7:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fb7f1fd8768e21163542afcf55a83c6980215a3
Validity
Not Before: Mar 25 17:01:51 2026 GMT
Not After : Mar 26 17:01:51 2026 GMT
Subject: CN=d25f2541ed20f2ed4e84d257afd531cc6bac5729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:4c:85:cd:cc:cc:5c:95:57:cf:41:86:68:d3:
aa:fc:12:d2:82:52:a4:a7:c1:4f:1f:2a:1a:61:4c:
74:f9:aa:a2:f9:2e:a5:93:54:7b:6e:2a:61:10:81:
90:03:4f:f9:b6:11:59:72:d8:7b:e6:ed:e5:5f:bc:
7c:01:aa:9e:35:d5:60:97:5a:34:86:ed:5f:98:65:
26:fc:35:c9:24:b1:1e:5c:a2:9e:7e:c6:f8:c7:db:
5f:df:2a:86:12:e0:1c:2e:76:17:74:32:5d:b0:f5:
5d:95:e6:a2:4c:d9:b4:17:d2:a7:27:1a:a9:14:14:
ae:07:c9:a1:80:0c:ea:55:4b:8a:4c:94:14:22:49:
de:88:1c:c9:cf:b0:cb:da:48:c2:de:91:76:bd:53:
b0:3c:69:f5:f8:07:ab:1a:25:b1:67:d2:74:f2:28:
50:3c:01:ed:73:67:9b:fa:2e:0e:6d:a8:36:4d:a0:
3a:f9:ee:71:38:81:51:70:b1:5e:59:aa:49:d1:15:
cc:23:65:34:f4:da:e7:f1:99:98:e4:27:fe:13:8b:
0b:32:92:e7:2e:82:dc:33:84:55:31:67:4d:6c:1a:
7b:b4:72:88:a2:53:5f:13:be:da:31:05:df:78:a7:
d3:40:99:fc:dc:17:40:84:24:0c:2e:c5:60:7e:a1:
f7:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:5F:25:41:ED:20:F2:ED:4E:84:D2:57:AF:D5:31:CC:6B:AC:57:29
X509v3 Authority Key Identifier:
keyid:0F:B7:F1:FD:87:68:E2:11:63:54:2A:FC:F5:5A:83:C6:98:02:15:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D7fx_Ydo4hFjVCr89VqDxpgCFaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:a4:1d:96:77:d7:34:69:ab:ef:c9:ff:bf:40:c2:62:08:92:
0d:f6:d1:f9:d9:17:ff:24:12:ed:51:61:0e:5e:d2:79:6c:9a:
3f:b8:5b:21:6c:ac:c0:32:66:41:52:35:79:6e:17:44:10:93:
97:3f:ec:c5:b9:4e:78:7e:eb:6d:eb:cd:9d:6a:63:e7:d1:d4:
f5:70:b6:f5:02:9a:79:fa:52:ec:fe:d7:af:60:71:5f:61:c8:
29:f5:3a:cc:16:3c:c5:ef:ee:be:70:13:3b:10:03:c2:be:f2:
5b:66:d1:67:ee:33:9b:54:a4:40:a5:d4:8c:ad:15:e1:a8:30:
af:1e:6a:16:25:96:77:7f:60:a4:65:3e:4e:59:96:77:5c:3e:
e1:d8:15:34:bd:62:f4:09:cb:2f:ae:57:92:f6:fc:31:2a:ba:
d3:87:e1:6d:68:e8:58:0a:65:df:38:0e:bf:fd:d7:99:68:eb:
3b:4c:3b:86:ff:fb:2f:46:8d:aa:ef:9a:31:5a:b2:2c:8d:74:
63:a8:e9:11:0a:62:0a:80:c6:68:03:55:c8:1f:84:6f:ca:4f:
43:31:bc:b1:89:e3:8a:f1:7a:ea:13:e7:d8:50:16:66:2d:1f:
1e:90:5c:24:fa:33:e2:1b:b7:8f:59:dc:a2:84:6b:4f:87:78:
78:8a:c0:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0l8gcgo6AxetiCE68V2cf/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmYjdmMWZkODc2OGUyMTE2MzU0MmFmY2Y1NWE4M2M2OTgw
MjE1YTMwHhcNMjYwMzI1MTcwMTUxWhcNMjYwMzI2MTcwMTUxWjAzMTEwLwYDVQQD
EyhkMjVmMjU0MWVkMjBmMmVkNGU4NGQyNTdhZmQ1MzFjYzZiYWM1NzI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkEyFzczMXJVXz0GGaNOq/BLSglKk
p8FPHyoaYUx0+aqi+S6lk1R7biphEIGQA0/5thFZcth75u3lX7x8AaqeNdVgl1o0
hu1fmGUm/DXJJLEeXKKefsb4x9tf3yqGEuAcLnYXdDJdsPVdleaiTNm0F9KnJxqp
FBSuB8mhgAzqVUuKTJQUIkneiBzJz7DL2kjC3pF2vVOwPGn1+AerGiWxZ9J08ihQ
PAHtc2eb+i4Obag2TaA6+e5xOIFRcLFeWapJ0RXMI2U09Nrn8ZmY5Cf+E4sLMpLn
LoLcM4RVMWdNbBp7tHKIolNfE77aMQXfeKfTQJn83BdAhCQMLsVgfqH3jwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNJfJUHtIPLtToTSV6/VMcxrrFcpMB8GA1UdIwQY
MBaAFA+38f2HaOIRY1Qq/PVag8aYAhWjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDdmeF9ZZG80aEZqVkNyODlWcUR4cGdDRmFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC9lN2M4ZDAtNzQ5Yi00NTJkLWJmZjAt
YTBlMjhkY2ZmZmM3LzEvRDdmeF9ZZG80aEZqVkNyODlWcUR4cGdDRmFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC9lN2M4ZDAtNzQ5Yi00NTJkLWJmZjAtYTBlMjhkY2ZmZmM3
LzEvRDdmeF9ZZG80aEZqVkNyODlWcUR4cGdDRmFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArqQdlnfX
NGmr78n/v0DCYgiSDfbR+dkX/yQS7VFhDl7SeWyaP7hbIWyswDJmQVI1eW4XRBCT
lz/sxblOeH7rbevNnWpj59HU9XC29QKaefpS7P7Xr2BxX2HIKfU6zBY8xe/uvnAT
OxADwr7yW2bRZ+4zm1SkQKXUjK0V4agwrx5qFiWWd39gpGU+TlmWd1w+4dgVNL1i
9AnLL65Xkvb8MSq604fhbWjoWApl3zgOv/3XmWjrO0w7hv/7L0aNqu+aMVqyLI10
Y6jpEQpiCoDGaANVyB+Eb8pPQzG8sYnjivF66hPn2FAWZi0fHpBcJPoz4hu3j1nc
ooRrT4d4eIrAEw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 04:34:55 2026 by rpki-client