Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.mft
File: dbzZGxsvmvS3QhSm1njOBxlo4c8.mft (raw, json)
Hash identifier: N0B53yR1uOyjGHlHFq60jFEeYF3WaeFKTbzG2Ibvwf4=
Subject key identifier: B0:D7:4E:4D:89:C0:9D:07:D6:70:4E:2D:F6:DF:07:23:19:73:7E:6B
Authority key identifier: 75:BC:D9:1B:1B:2F:9A:F4:B7:42:14:A6:D6:78:CE:07:19:68:E1:CF
Certificate issuer: /CN=75bcd91b1b2f9af4b74214a6d678ce071968e1cf
Certificate serial: 019D2704778F938B95FB809D3BF0A76B221D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dbzZGxsvmvS3QhSm1njOBxlo4c8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.mft
Manifest number: 0AB0
Signing time: Wed 25 Mar 2026 22:01:37 +0000
Manifest this update: Wed 25 Mar 2026 22:01:37 +0000
Manifest next update: Thu 26 Mar 2026 22:01:37 +0000
Files and hashes: 1: Vqb24fiotLZOBuA1uv8cf7EHAOs.asa (hash: kL0LJuS+v//eRSQwWEOD6aFsJj9u86Nma+Ehm7jeQWc=)
2: dbzZGxsvmvS3QhSm1njOBxlo4c8.crl (hash: ip2uQX26UXc5pHmV0SIixq0jpAearYjul/7kLAIyq4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.mft
rsync://rpki.ripe.net/repository/DEFAULT/dbzZGxsvmvS3QhSm1njOBxlo4c8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:77:8f:93:8b:95:fb:80:9d:3b:f0:a7:6b:22:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75bcd91b1b2f9af4b74214a6d678ce071968e1cf
Validity
Not Before: Mar 25 22:01:37 2026 GMT
Not After : Mar 26 22:01:37 2026 GMT
Subject: CN=b0d74e4d89c09d07d6704e2df6df072319737e6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:72:85:47:a2:e1:41:3a:e5:8b:15:f2:97:c8:
9b:5a:88:2d:a4:c1:06:4c:40:de:fa:8a:cf:fd:13:
71:02:60:1f:cf:f4:80:99:20:d2:63:41:77:72:51:
7a:77:64:16:8c:66:ec:00:41:8d:65:03:c1:25:a1:
2b:d7:3e:e9:5c:ad:c1:e0:f8:a4:4a:1d:26:3e:60:
95:e7:09:97:45:b4:42:51:a7:c3:7a:ac:6d:90:7c:
a6:9a:ba:af:af:ea:ed:9a:b5:cf:d0:a9:d9:9a:08:
8b:07:4d:27:71:ee:0d:21:b0:9a:33:e3:56:96:f3:
1d:20:a6:66:a3:f8:d0:4a:ea:ee:1c:28:65:31:d2:
f6:b2:2f:1c:49:8c:1d:cc:79:2f:96:43:ea:2b:54:
2e:41:7c:a2:0d:91:a9:21:aa:46:93:21:92:c7:a2:
3f:5f:2b:49:50:9a:01:37:99:20:c0:5a:94:ca:38:
22:a0:10:a5:9b:6f:5e:37:b1:b5:18:0c:b1:5f:98:
31:c2:36:09:5d:f9:fd:40:a2:97:9e:15:3d:a5:fa:
76:10:58:58:b8:a4:74:28:f0:22:cb:c4:ed:11:15:
5e:53:6e:20:10:14:d9:eb:c4:f8:cd:98:ec:ff:a0:
da:78:9c:41:56:af:ee:d3:24:5a:c9:b9:46:c1:69:
4e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:D7:4E:4D:89:C0:9D:07:D6:70:4E:2D:F6:DF:07:23:19:73:7E:6B
X509v3 Authority Key Identifier:
keyid:75:BC:D9:1B:1B:2F:9A:F4:B7:42:14:A6:D6:78:CE:07:19:68:E1:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dbzZGxsvmvS3QhSm1njOBxlo4c8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:2f:7d:5b:11:a2:65:2e:60:f7:da:9a:da:43:aa:97:d7:b4:
2b:bf:b6:92:3e:ec:56:6a:5d:c8:62:91:79:84:f5:d8:a9:47:
ff:d2:81:20:fe:ac:27:b0:98:2a:94:79:2f:8d:5a:37:55:6e:
d0:c1:c3:8f:ca:0e:60:33:91:33:66:e9:fe:3f:9e:db:0b:59:
5e:17:72:2c:af:89:c5:db:55:b4:61:60:13:35:43:69:9f:8b:
a4:3d:cb:8e:8f:88:04:bb:f1:d1:f0:a8:37:40:8a:c6:76:b1:
c4:d2:0e:d2:3d:d0:25:c2:e2:a2:a2:47:74:0a:1c:f1:90:ef:
e4:50:82:4d:ac:af:91:d8:e4:3c:52:7a:e7:37:e6:b6:5e:d5:
8f:cd:4b:09:1a:56:14:44:4c:f7:31:1a:81:64:fc:3e:07:8b:
49:08:cc:07:bb:ff:42:06:f8:a8:9c:c7:0b:11:e6:fb:89:61:
c6:7f:04:9d:5c:43:42:b5:ab:52:00:61:ff:d0:c4:53:13:d8:
40:58:0f:27:7e:39:b4:2c:71:6d:7c:87:3a:27:99:b3:1e:6d:
8f:ce:51:98:50:47:3a:98:7d:4e:20:09:10:d4:38:a4:55:70:
0a:ce:82:f8:a1:3e:d8:c7:7a:6f:2c:f9:0d:e0:ff:75:6e:2a:
f4:57:9a:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:42:25 2026 by rpki-client