Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
File: do_utqkKhqzxGHHk5Xii6n7Cgdk.mft (raw, json)
Hash identifier: zeEbUJa2ldbcBhMtKk9XmPv7IX9tTS3CspxGzPX5R10=
Subject key identifier: EF:C7:13:10:C2:80:72:16:20:89:20:84:D3:FF:A0:0C:AA:B6:5B:74
Authority key identifier: 76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
Certificate issuer: /CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Certificate serial: 019D2A047418B0E33520636AE53A1E103FAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
Manifest number: 0393
Signing time: Thu 26 Mar 2026 12:00:28 +0000
Manifest this update: Thu 26 Mar 2026 12:00:28 +0000
Manifest next update: Fri 27 Mar 2026 12:00:28 +0000
Files and hashes: 1: W-L9Z-et_hk_ElQE4x3JidtYxJ8.roa (hash: H+ygr+3swIT2aBvGxAFeyCAkH1uxCN9KnvrpdAVtIB8=)
2: do_utqkKhqzxGHHk5Xii6n7Cgdk.crl (hash: 9AnotfEo1mwzgK16KFoD54dMGeaqsK57LigZKibzWqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:74:18:b0:e3:35:20:63:6a:e5:3a:1e:10:3f:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Validity
Not Before: Mar 26 12:00:28 2026 GMT
Not After : Mar 27 12:00:28 2026 GMT
Subject: CN=efc71310c280721620892084d3ffa00caab65b74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:24:0b:29:10:51:8d:76:26:76:2e:97:3f:dd:
c4:60:97:de:c7:94:70:bf:d1:83:f2:f9:f9:aa:06:
d5:43:d1:3d:9c:6c:7e:22:a0:c7:58:c5:49:41:3d:
5c:06:22:8b:99:16:c6:8c:34:91:ba:c9:9d:e5:5e:
77:b5:9a:70:1e:a9:b2:1e:82:59:21:9b:69:0a:42:
ea:2d:e9:c4:c5:6f:b0:45:5f:d4:d2:2b:90:0e:78:
41:a7:cd:73:8c:c1:97:1b:b9:8a:5e:2a:46:b2:54:
3b:69:7c:ab:69:f8:02:d2:8d:c0:88:5e:cd:7f:23:
c9:84:ca:0f:3e:82:8e:b4:f6:bc:70:e0:73:2d:37:
80:0d:7e:10:3b:4a:cd:1d:9a:4d:c4:2a:ba:12:db:
2d:fc:d1:91:b5:93:4a:08:c2:90:34:7e:05:f6:f0:
4c:e9:77:66:50:e2:d8:2c:7e:37:fa:9a:17:28:77:
c1:f6:b3:04:53:56:a0:41:d5:7a:93:00:45:b2:18:
3a:1a:a5:2f:e7:b3:38:b9:d8:65:81:85:d4:f0:db:
60:99:e3:11:8e:49:ea:ab:0a:ec:79:34:ae:8c:15:
c0:0c:c2:69:c4:e6:da:3c:1a:ab:87:13:6f:cf:b7:
b7:ba:61:0e:f1:b3:1f:d0:c3:be:9f:b3:77:b0:92:
f8:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:C7:13:10:C2:80:72:16:20:89:20:84:D3:FF:A0:0C:AA:B6:5B:74
X509v3 Authority Key Identifier:
keyid:76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:1f:70:11:fe:c6:6f:34:ff:7f:37:d5:ce:b2:b9:e3:8e:12:
94:78:aa:f2:c5:30:31:35:0e:e7:7f:63:d7:45:d0:a2:55:a0:
ba:8a:52:88:66:c1:88:d4:0d:b5:35:d1:1c:24:74:5c:74:a2:
bf:85:93:cc:3c:49:82:7f:06:d2:42:17:a8:2f:72:7a:58:31:
ed:fe:69:99:2e:d9:43:6d:ac:6a:21:29:0b:ac:71:91:f9:3a:
26:63:bc:91:52:7b:1a:20:0e:62:51:48:4d:54:cb:de:f8:be:
52:69:ea:d1:21:0a:f5:91:69:ed:29:69:9f:f2:41:2b:77:bd:
b1:96:12:61:c6:e7:48:47:3a:16:fb:58:61:bd:23:f4:0d:2d:
d8:ed:fb:06:7b:fc:48:c4:81:eb:81:c7:1b:78:99:65:26:86:
ab:de:42:09:73:23:ed:d8:f0:32:87:56:17:aa:ab:3e:ee:a4:
43:60:38:2b:ca:2c:fe:27:4b:81:a0:18:8b:85:c6:5b:5c:f6:
24:e2:9b:83:c8:b3:df:73:3d:42:ad:0c:39:33:b4:35:4a:a3:
d5:99:f5:9e:f2:17:b6:50:1c:61:b8:81:35:aa:3f:8f:17:af:
c4:b2:91:1f:aa:d7:2b:8e:e7:57:97:1a:8a:ee:09:33:57:c9:
8c:2f:2f:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:11:14 2026 by rpki-client