Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/58b023-499a-4ace-bf27-9192663580f5/1/dHBWcQnylixWvvsWessxhw68ZJI.mft
File: dHBWcQnylixWvvsWessxhw68ZJI.mft (raw, json)
Hash identifier: Ghi1hAvHS/wP0wNFrfhjGAQEd2hLLNP8H80kxP5vyT4=
Subject key identifier: 6E:3C:03:AA:BA:1F:81:BF:01:E6:F3:7C:FF:7E:C2:0A:68:77:87:4A
Authority key identifier: 74:70:56:71:09:F2:96:2C:56:BE:FB:16:7A:CB:31:87:0E:BC:64:92
Certificate issuer: /CN=7470567109f2962c56befb167acb31870ebc6492
Certificate serial: 019D31BE814EE1824B49CD34391BC27A94E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHBWcQnylixWvvsWessxhw68ZJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/58b023-499a-4ace-bf27-9192663580f5/1/dHBWcQnylixWvvsWessxhw68ZJI.mft
Manifest number: 0E
Signing time: Sat 28 Mar 2026 00:01:01 +0000
Manifest this update: Sat 28 Mar 2026 00:01:01 +0000
Manifest next update: Sun 29 Mar 2026 00:01:01 +0000
Files and hashes: 1: 5NBoP5YJg3VJIdV3zP-gsUBPfjA.roa (hash: ZyXwC5m+97/K647Lw0XhFO8y4yo8d1DbZKjoAZlIn7k=)
2: dHBWcQnylixWvvsWessxhw68ZJI.crl (hash: rIv/2hfLz9eK1QMdtd5fCoYE+woeJ4Kc+rDSshu7U5Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/58b023-499a-4ace-bf27-9192663580f5/1/dHBWcQnylixWvvsWessxhw68ZJI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/58b023-499a-4ace-bf27-9192663580f5/1/dHBWcQnylixWvvsWessxhw68ZJI.mft
rsync://rpki.ripe.net/repository/DEFAULT/dHBWcQnylixWvvsWessxhw68ZJI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:31:be:81:4e:e1:82:4b:49:cd:34:39:1b:c2:7a:94:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7470567109f2962c56befb167acb31870ebc6492
Validity
Not Before: Mar 28 00:01:01 2026 GMT
Not After : Mar 29 00:01:01 2026 GMT
Subject: CN=6e3c03aaba1f81bf01e6f37cff7ec20a6877874a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d1:78:c2:23:50:57:7b:b6:a9:4a:56:3c:4a:
02:2a:47:4a:65:ed:38:14:6c:e0:24:0d:29:3e:72:
ea:d4:97:a1:e5:a5:ae:09:42:96:78:2d:4b:e8:2b:
9c:c4:13:b3:14:d8:ca:01:ed:89:3e:e5:8f:22:7a:
92:b5:2e:b0:d9:8a:4a:a7:1b:a2:47:04:6f:43:2f:
8a:ba:91:54:19:69:76:6e:cf:a2:7e:0c:13:bb:ac:
3e:90:88:36:34:24:e3:1f:9c:27:7c:e8:34:ed:ba:
9c:2c:5c:00:c6:3b:01:c8:e9:7f:d7:8f:6f:2c:f4:
75:f6:6d:e2:f7:81:34:35:e5:65:fe:4e:86:e9:f1:
ad:32:fb:a8:01:7d:49:f4:df:2f:c0:eb:8e:d9:59:
f1:41:ee:6b:c9:d1:5e:e5:c2:7a:74:e1:fa:c1:cf:
6e:28:74:ea:9b:30:cf:19:9b:de:6c:76:aa:2f:6c:
e2:d6:af:b5:25:02:9c:3d:3b:5e:68:d2:bf:af:12:
81:99:ee:60:17:9f:2c:7e:29:56:06:f4:4e:94:41:
a9:58:a1:31:69:84:10:25:4a:eb:e0:a1:cc:cf:bb:
e1:ee:90:88:e6:29:52:ba:ed:c4:34:fc:6c:b5:32:
95:3b:11:c0:f0:a0:ef:22:ad:1f:3a:b5:a9:30:ce:
97:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3C:03:AA:BA:1F:81:BF:01:E6:F3:7C:FF:7E:C2:0A:68:77:87:4A
X509v3 Authority Key Identifier:
keyid:74:70:56:71:09:F2:96:2C:56:BE:FB:16:7A:CB:31:87:0E:BC:64:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHBWcQnylixWvvsWessxhw68ZJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/58b023-499a-4ace-bf27-9192663580f5/1/dHBWcQnylixWvvsWessxhw68ZJI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/58b023-499a-4ace-bf27-9192663580f5/1/dHBWcQnylixWvvsWessxhw68ZJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:23:2a:f6:ba:d3:b2:d9:1b:61:e2:88:cc:cb:6d:99:60:60:
76:0f:52:68:dd:23:5e:08:d7:3d:3f:81:4c:40:bf:c9:db:22:
52:04:bb:93:6b:f0:0e:a4:43:9a:98:03:f2:04:06:dc:e3:1b:
72:a8:89:00:1c:87:94:a5:39:3b:99:4b:15:6e:e2:99:bd:23:
e0:2e:03:da:9d:6d:1a:a8:08:2f:a5:ee:5b:1e:87:2f:43:82:
e5:db:53:63:aa:e6:75:98:15:84:d7:de:d5:3c:1e:de:43:cf:
4b:1e:b3:3c:fe:8d:62:21:a9:28:b4:d0:27:0a:93:58:08:e9:
0f:dc:c9:e7:37:ae:8b:3d:9d:ed:12:12:e0:79:55:1f:7d:2c:
30:02:5b:09:b3:b5:94:48:05:47:1c:eb:51:0c:ba:62:d1:bf:
c8:bc:0f:17:03:f9:37:1c:40:42:49:b3:cd:4b:a0:54:d0:4f:
9a:60:2b:1d:1a:30:0d:39:ae:59:c1:bb:22:72:f1:79:96:88:
d0:f1:ca:c0:81:90:b0:e5:ff:54:f0:ad:f9:1f:63:f6:c1:8b:
c5:1b:19:10:dd:d7:3d:dd:9c:4e:8a:9c:82:04:25:0b:06:4e:
8c:00:6d:a1:9b:4a:ad:17:83:e8:34:e9:15:70:45:01:9a:04:
ae:86:66:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 11:31:44 2026 by rpki-client