Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
File: dXFLWBraGW41UcCM52JDvgWLROs.mft (raw, json)
Hash identifier: TPFjZeyCdNdZNXmFLTFN3dBnKzs+9dkgdwHthIC6dFg=
Subject key identifier: 76:81:82:83:3C:BC:6D:35:D5:A5:44:87:38:A2:E6:E0:2B:8F:3F:D3
Authority key identifier: 75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB
Certificate issuer: /CN=75714b581ada196e3551c08ce76243be058b44eb
Certificate serial: 019D29CE70F8583320524A1033E803E1C0FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
Manifest number: 1886
Signing time: Thu 26 Mar 2026 11:01:28 +0000
Manifest this update: Thu 26 Mar 2026 11:01:28 +0000
Manifest next update: Fri 27 Mar 2026 11:01:28 +0000
Files and hashes: 1: 6TGqIbfBirKwY8Rk6PCVIU2K2Ks.roa (hash: Qk1RBNZJLMvjKgF43IlbWL77De/BDCbxdLr5OTm2nJA=)
2: dXFLWBraGW41UcCM52JDvgWLROs.crl (hash: y1MQOrXRvbb60/PvwPX5KKSnS3WQkMyyjdmvard78A0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:70:f8:58:33:20:52:4a:10:33:e8:03:e1:c0:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75714b581ada196e3551c08ce76243be058b44eb
Validity
Not Before: Mar 26 11:01:28 2026 GMT
Not After : Mar 27 11:01:28 2026 GMT
Subject: CN=768182833cbc6d35d5a5448738a2e6e02b8f3fd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:af:cb:6f:3f:b2:17:0f:ff:a9:a2:aa:e1:f4:
a4:8f:29:90:71:e3:ab:33:da:f6:33:b4:cb:2e:41:
98:f1:4b:e9:ee:3c:56:d6:b2:6f:06:0a:b6:9d:3d:
d6:bb:28:02:e1:4b:ac:22:82:79:24:fe:2e:f0:a8:
4c:8d:ba:7e:c0:7f:9e:cd:e1:3a:b9:d4:99:8b:81:
85:13:a5:b0:5a:41:3e:02:49:32:99:18:6f:df:fb:
bd:d7:04:c2:58:02:57:f0:2c:09:c2:10:c0:ba:29:
80:4d:8b:ba:07:13:fd:64:c5:86:ac:b3:d7:d4:0d:
47:c2:d0:ba:6c:0f:db:5c:77:37:d6:31:75:c2:32:
25:a0:9d:25:ad:ae:85:d9:f9:5f:5e:09:ad:75:e6:
f1:a5:b1:bd:b8:ab:de:8d:a0:e9:18:a1:55:30:34:
da:e5:7a:a4:61:92:68:4e:8c:05:1c:e2:38:b5:e6:
0d:f4:fb:79:23:98:9f:07:c5:64:55:76:37:7f:97:
4e:59:a0:47:d1:c8:06:c7:d0:4e:58:61:7a:5c:6b:
75:ad:7a:e2:ae:44:bc:d4:42:e7:61:3f:f2:c8:35:
19:c9:5c:08:1b:44:a6:27:97:6a:6e:a2:2c:0d:12:
e9:d4:dc:2b:13:16:b3:9f:77:d1:fd:aa:5f:42:8e:
ca:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:81:82:83:3C:BC:6D:35:D5:A5:44:87:38:A2:E6:E0:2B:8F:3F:D3
X509v3 Authority Key Identifier:
keyid:75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:31:ad:e0:09:98:8e:a3:77:59:70:59:13:89:fb:85:e5:27:
47:46:b5:d1:99:b5:40:37:c5:6c:e5:08:b7:03:66:36:31:16:
f4:e2:fe:57:d2:80:c2:49:7f:71:9a:87:9e:fe:a7:5d:7f:e4:
92:42:02:61:47:98:4c:c6:00:29:23:a3:ac:a1:46:0f:42:db:
01:88:3f:75:03:a6:d3:48:56:3f:56:d3:c6:b1:3c:49:2f:84:
59:b7:17:07:41:bd:8b:ce:86:40:13:04:b2:c9:10:c3:3e:5a:
85:85:ba:1a:17:da:69:29:40:80:c1:4b:ce:22:b2:19:c7:1a:
71:c9:af:e2:6e:76:5c:4e:ca:9c:3c:93:b2:cc:73:01:31:f7:
7d:a8:a2:5b:0b:ba:2b:46:91:28:da:82:cb:ad:74:7f:fc:e5:
0b:71:d7:4e:44:94:df:d9:f1:6a:77:c7:77:2b:e0:05:57:cc:
12:d7:ae:0d:cf:44:e1:f1:80:d5:7e:f7:48:40:a9:b8:dc:ed:
4a:6d:18:60:97:84:dc:9f:db:12:24:9b:88:8f:9f:84:7a:99:
31:a4:18:8e:7a:37:93:eb:fe:a3:db:f2:86:54:b8:d6:94:73:
6c:d0:72:57:49:12:55:aa:ba:57:95:e9:60:d8:e6:3e:4a:75:
19:10:e9:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:52:48 2026 by rpki-client