Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft
File: De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft (raw, json)
Hash identifier: LlSCjQoK++Gd/zgp5qm3RLUdzQ2rgpaPX2MT/6jJYyA=
Subject key identifier: B7:D9:E9:CD:00:09:40:4B:2F:5F:85:29:E8:C0:D2:55:87:CA:CC:AF
Authority key identifier: 0D:ED:66:D2:C5:A4:93:A0:95:34:35:7E:5C:A2:6F:03:D1:A4:DD:D4
Certificate issuer: /CN=0ded66d2c5a493a09534357e5ca26f03d1a4ddd4
Certificate serial: 019D2703E3E969E2C1EDA9788BDDE6A58330
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft
Manifest number: 0C74
Signing time: Wed 25 Mar 2026 22:00:59 +0000
Manifest this update: Wed 25 Mar 2026 22:00:59 +0000
Manifest next update: Thu 26 Mar 2026 22:00:59 +0000
Files and hashes: 1: De1m0sWkk6CVNDV-XKJvA9Gk3dQ.crl (hash: nVCndAOrD/QWLN58ESbupcLq0a2qXdwX7ygJXzc6jxI=)
2: SbbT_vemLYhSpPxloUrfpgEATIA.roa (hash: TxqN78AgB7Nz/Wz8KEGfJojT7Yd8MRSlYTLQkCNBIXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:e3:e9:69:e2:c1:ed:a9:78:8b:dd:e6:a5:83:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ded66d2c5a493a09534357e5ca26f03d1a4ddd4
Validity
Not Before: Mar 25 22:00:59 2026 GMT
Not After : Mar 26 22:00:59 2026 GMT
Subject: CN=b7d9e9cd0009404b2f5f8529e8c0d25587caccaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:7f:b8:26:14:95:37:0e:46:18:bd:0b:56:09:
64:43:ac:10:92:4b:fc:16:8f:3d:a2:d5:e7:6f:b2:
dc:8c:85:d9:58:cb:7d:29:f9:4d:9d:76:c4:95:40:
0f:e3:35:92:f3:d8:ae:e8:af:f8:0a:51:03:27:56:
85:34:b3:f0:c8:7b:3c:3b:ab:0f:0f:64:9c:e3:7b:
fb:ae:e0:97:5a:75:af:16:5a:32:b7:be:6a:d1:30:
4d:c6:cb:ea:a2:5e:f0:54:e4:3a:db:c5:60:b2:30:
44:63:45:96:58:fe:95:3f:42:c4:f0:7c:45:65:ca:
fc:cf:30:68:2f:72:bc:c3:a3:44:df:a3:72:dc:22:
5d:7c:52:1a:be:54:56:38:e9:30:96:30:a2:6c:71:
67:c1:14:35:23:0d:82:f8:36:73:4d:8b:c4:94:ca:
07:7d:be:d7:82:a0:62:46:6e:f7:f1:58:82:e9:e2:
01:73:9c:9d:1d:71:1f:e6:6c:ef:7a:29:b4:e0:03:
0b:7c:ff:f3:60:05:f1:58:2e:86:61:89:a0:cf:95:
03:2b:0f:68:3e:64:8d:50:03:df:3e:f8:40:a0:5d:
45:fc:b7:16:12:c5:44:fe:1b:d4:54:99:39:e5:7e:
10:25:58:e0:c1:1a:28:b5:3b:2e:13:9d:69:2d:46:
00:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:D9:E9:CD:00:09:40:4B:2F:5F:85:29:E8:C0:D2:55:87:CA:CC:AF
X509v3 Authority Key Identifier:
keyid:0D:ED:66:D2:C5:A4:93:A0:95:34:35:7E:5C:A2:6F:03:D1:A4:DD:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:c5:c6:06:07:30:16:e4:b2:a2:d9:87:f3:52:a0:8b:9f:32:
5c:5b:c1:db:34:6a:dd:ae:6b:53:07:ca:7e:33:90:3c:e3:52:
db:8e:0b:3f:d6:37:57:30:10:49:38:35:19:52:11:2c:8f:d8:
fd:36:56:aa:68:f2:31:f9:7d:f5:57:63:3a:df:d4:7b:b1:d8:
af:28:bf:cb:8f:f5:ee:e3:e5:eb:a1:ac:d4:e9:cf:a0:e1:27:
61:22:7b:dd:36:fe:a0:11:83:54:a4:c2:85:3f:86:f5:ae:92:
ae:1d:11:bd:a0:d4:c3:08:14:32:3e:e3:1a:5c:1e:70:7d:c0:
0a:a8:88:af:dc:5b:20:ca:21:fd:42:3e:b7:d4:1b:2e:cc:44:
fd:b4:9c:bc:1d:b3:c6:1b:f9:c9:48:26:d3:3e:0a:51:c2:24:
98:59:98:73:a6:c1:3c:33:45:49:62:d3:40:2e:52:bb:7c:45:
08:d2:ef:e5:8f:53:5c:86:ac:03:56:13:a6:a8:94:9e:88:13:
8c:20:0f:f4:54:38:14:53:3f:fb:b1:c7:25:44:87:00:f4:6d:
95:6f:86:4d:6c:26:cf:59:29:72:2f:91:c3:1d:64:09:10:dc:
fd:ee:15:70:e3:31:76:d9:6f:30:9e:e3:f6:dc:a8:b7:f5:70:
54:01:a5:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:31:33 2026 by rpki-client