Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
File: Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft (raw, json)
Hash identifier: Ur8TzxSsxWJAjcec1X2a7qA6pT/VVEV2WVdeCOZVUwU=
Subject key identifier: 9C:89:5B:84:BF:DC:87:1D:0D:AA:50:1B:BC:49:66:4E:1E:E8:52:DC
Authority key identifier: 0E:1D:D5:39:52:5A:39:D8:47:01:4E:8F:EA:3C:64:1D:97:3C:C8:66
Certificate issuer: /CN=0e1dd539525a39d847014e8fea3c641d973cc866
Certificate serial: 019D2B85A53AF6F3E58248152D5BB1D7A2A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
Manifest number: 080C
Signing time: Thu 26 Mar 2026 19:01:12 +0000
Manifest this update: Thu 26 Mar 2026 19:01:12 +0000
Manifest next update: Fri 27 Mar 2026 19:01:12 +0000
Files and hashes: 1: Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl (hash: Sh79D+HwtrEFY68jOgABenKlXUSyyMVKrFWffvteHUM=)
2: wWu-RpwUyxS5-QEBD4scp9HUjmY.roa (hash: Vz+DIxi0X/mIEqFNyd8Fjt4ub221xLszyBI1vupEUnQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:85:a5:3a:f6:f3:e5:82:48:15:2d:5b:b1:d7:a2:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e1dd539525a39d847014e8fea3c641d973cc866
Validity
Not Before: Mar 26 19:01:12 2026 GMT
Not After : Mar 27 19:01:12 2026 GMT
Subject: CN=9c895b84bfdc871d0daa501bbc49664e1ee852dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:57:ec:ec:b6:54:2a:c4:fd:55:77:86:7b:1a:
56:15:f8:e1:bc:a8:fa:3b:b8:78:f6:0c:ef:cb:5d:
b2:c3:5b:18:37:71:c7:8c:8a:51:5f:24:49:7d:4f:
a8:d5:2f:e0:33:9e:b6:46:07:13:0c:b2:cd:56:a7:
24:d0:80:54:27:4d:37:d7:cf:f0:6b:9e:a5:b7:b1:
86:3c:4b:0a:57:f2:e5:99:a5:9a:80:e0:9f:87:40:
ba:36:2a:55:f0:78:f7:81:4a:18:0d:92:11:f7:3a:
a4:7f:60:6d:0e:87:cb:4c:a7:3c:c0:d2:72:0c:df:
c9:14:28:3c:dd:d3:da:a4:00:cd:36:40:cc:bb:82:
1e:18:3f:57:45:5d:78:8a:ec:29:9e:4d:c4:e3:46:
34:7b:fa:76:ae:08:bb:d2:46:da:80:91:c0:e6:99:
77:d0:5b:a7:58:90:c8:33:30:3e:c2:2b:53:56:c0:
3a:87:7b:1b:3d:4b:7a:5f:59:52:aa:74:28:71:7d:
02:99:8e:da:fb:31:28:5b:76:ad:c4:ad:c2:37:7b:
41:4d:cf:e8:e0:3e:dd:ac:68:19:25:09:30:6e:69:
21:3c:ae:98:d2:b8:36:e2:b6:f3:a5:e1:77:34:04:
3b:09:bc:a1:c3:17:1c:27:6b:75:f5:65:69:2d:14:
3f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:89:5B:84:BF:DC:87:1D:0D:AA:50:1B:BC:49:66:4E:1E:E8:52:DC
X509v3 Authority Key Identifier:
keyid:0E:1D:D5:39:52:5A:39:D8:47:01:4E:8F:EA:3C:64:1D:97:3C:C8:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:48:9e:c1:45:35:fb:f3:4c:5d:50:d5:ae:d2:e8:0f:26:70:
9d:ca:54:09:b7:32:64:06:ca:63:ee:7f:8c:e9:6d:ca:39:19:
39:97:63:19:0f:50:49:df:a2:9a:e6:1c:9a:f3:17:c1:15:c1:
ad:7a:23:fe:29:dc:e3:21:d3:aa:ec:20:34:d6:bb:d7:a5:bc:
60:0e:e7:4e:73:a8:f3:bf:28:63:d6:0d:aa:fd:17:6b:8c:21:
f4:7c:f2:84:e0:61:7f:b9:e2:53:d6:9b:c6:bc:ee:8a:70:5a:
e1:73:60:76:bb:ca:99:6e:a3:64:4f:80:fd:ac:40:a8:4e:40:
c4:7a:3e:3a:1b:75:01:38:54:99:85:5b:04:0f:7c:d0:5d:d1:
56:7d:2b:d0:ad:48:6d:8a:1a:a8:31:3e:77:cd:ee:b8:45:e4:
d3:91:87:00:72:c8:7f:29:ce:1d:a3:c0:6e:5a:be:75:90:17:
ae:15:50:49:3d:3a:a7:99:95:c9:d8:23:bd:30:11:66:ec:53:
bc:6e:f5:0f:0f:fb:39:ba:3f:cf:3d:17:cd:d4:d8:27:ba:55:
d5:8f:20:78:a0:66:28:3b:51:e0:d2:fb:32:e6:64:c5:d7:0f:
fa:61:50:47:6e:c1:35:91:89:b7:bb:73:aa:15:f1:cb:89:71:
b6:21:ad:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 22:40:31 2026 by rpki-client