Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
File: dCnR70knCBDhAgzqhhmGQjORMaA.mft (raw, json)
Hash identifier: 4uOe/o1AB0BEFvrKsBgYYqbl2oAjTRsX/3vlxv1Kmis=
Subject key identifier: 81:A9:AD:B7:99:FA:E1:B1:C2:A9:F0:5E:52:29:EA:E8:1E:7E:65:AA
Authority key identifier: 74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0
Certificate issuer: /CN=7429d1ef49270810e1020cea86198642339131a0
Certificate serial: 019D2AE0D6BC6BC4C18670A7B9F8DB63D399
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
Manifest number: 0D54
Signing time: Thu 26 Mar 2026 16:01:11 +0000
Manifest this update: Thu 26 Mar 2026 16:01:11 +0000
Manifest next update: Fri 27 Mar 2026 16:01:11 +0000
Files and hashes: 1: dCnR70knCBDhAgzqhhmGQjORMaA.crl (hash: kLdzltIr0dPkJKP3n4rZRreG8kzxc0m9CcIiSUgyrBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:e0:d6:bc:6b:c4:c1:86:70:a7:b9:f8:db:63:d3:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7429d1ef49270810e1020cea86198642339131a0
Validity
Not Before: Mar 26 16:01:11 2026 GMT
Not After : Mar 27 16:01:11 2026 GMT
Subject: CN=81a9adb799fae1b1c2a9f05e5229eae81e7e65aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:83:a6:23:26:e1:6b:96:61:72:c1:7a:ec:48:
a7:2f:f2:d1:d3:9a:a3:cd:9d:dc:7d:b0:aa:60:9c:
ea:62:50:be:0a:96:07:19:e5:fa:6b:bf:18:4f:89:
be:67:9c:de:4a:cf:cf:36:03:9e:61:cb:ca:1c:74:
31:7a:fe:bc:9a:2b:00:6b:1f:2f:8c:98:ec:9d:4e:
63:9e:fc:bc:0e:3d:3a:09:0f:34:d8:dc:ed:72:af:
aa:52:9a:4e:a1:4d:96:c3:ff:8a:a5:3b:ee:3b:ab:
54:58:d9:5e:cc:0d:97:59:75:08:49:d0:eb:25:44:
20:85:de:8f:90:71:2e:81:da:26:94:1f:ea:bf:10:
d0:c8:be:f7:95:1a:3d:bd:01:db:df:d6:56:81:f2:
06:e0:f9:c8:2f:2e:a3:73:d9:2c:ae:6a:5a:96:6a:
31:09:42:87:d8:19:ce:b7:71:db:a7:50:3f:35:c8:
c4:16:ef:37:4d:b6:83:8d:cf:15:af:b5:e6:c8:22:
28:b0:a4:44:ca:ae:01:71:f3:06:d8:2d:ea:b5:9a:
0b:1a:cc:22:5d:63:1c:67:ec:1a:11:a4:5b:ea:31:
ce:ec:0f:38:96:fc:0b:e1:25:82:e8:b3:51:51:96:
ea:b3:e4:c6:c3:49:43:2e:4b:54:6e:f8:50:fb:05:
f2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A9:AD:B7:99:FA:E1:B1:C2:A9:F0:5E:52:29:EA:E8:1E:7E:65:AA
X509v3 Authority Key Identifier:
keyid:74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:cd:1a:89:bf:07:22:32:1e:d0:6a:04:ee:22:23:9d:aa:31:
34:58:d1:64:90:75:e5:7d:b5:2d:56:e0:54:48:4c:39:b0:84:
dd:be:54:3d:5c:af:c5:f0:41:7d:4c:49:6d:3b:59:6f:af:fe:
3b:30:c0:2f:61:2c:f6:fc:a2:44:57:26:e9:46:26:ec:ac:e8:
9b:c3:d7:a8:92:1f:d6:ea:a8:d2:9c:b5:d8:fe:4f:b8:bc:fb:
0d:b6:73:9d:88:08:70:ca:fb:89:93:a8:ff:15:86:6a:a6:ca:
65:79:f1:58:1b:fa:ff:6a:d1:d3:67:2c:f5:46:d9:fa:cc:21:
a8:cd:64:a6:e5:62:c5:ed:01:0e:dd:68:5e:71:cf:89:82:a1:
60:05:ef:b3:86:12:f4:ec:19:fe:87:ea:d1:ca:74:db:ca:0b:
71:c2:07:0f:11:fe:93:95:65:ce:6f:3e:95:9f:15:b6:b8:f5:
18:67:38:28:73:23:39:cf:2f:f4:4e:24:c0:37:fe:05:03:c2:
f7:ac:19:c2:62:ce:77:32:c7:55:f6:81:69:8b:0c:cb:8a:0f:
f2:ed:1d:ae:be:50:9b:05:42:ef:9f:c9:18:a4:d1:3f:a0:a2:
3d:62:a9:08:ea:a5:c4:a0:92:2b:01:a7:95:08:03:ac:7e:3f:
77:41:df:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 21:48:55 2026 by rpki-client