Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
File: dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft (raw, json)
Hash identifier: UsWxspHw+MB/SFoWueK69KUbUptgYu6aQ4vL40q5wlg=
Subject key identifier: 90:5D:2E:AF:38:A5:B7:38:CC:7B:A4:74:2F:4E:CF:A3:02:C4:2F:F8
Authority key identifier: 76:07:F6:9D:EE:43:AC:01:D7:DF:EA:CA:9B:76:A2:40:EA:6E:F3:66
Certificate issuer: /CN=7607f69dee43ac01d7dfeaca9b76a240ea6ef366
Certificate serial: 019D2AE131D07045BB7E36CA3795EA9404E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
Manifest number: 06B3
Signing time: Thu 26 Mar 2026 16:01:34 +0000
Manifest this update: Thu 26 Mar 2026 16:01:34 +0000
Manifest next update: Fri 27 Mar 2026 16:01:34 +0000
Files and hashes: 1: dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl (hash: +zB+yr+7cgs4iR5E97+kvcVg4bhb0Ssiop97CAb4YAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:e1:31:d0:70:45:bb:7e:36:ca:37:95:ea:94:04:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7607f69dee43ac01d7dfeaca9b76a240ea6ef366
Validity
Not Before: Mar 26 16:01:34 2026 GMT
Not After : Mar 27 16:01:34 2026 GMT
Subject: CN=905d2eaf38a5b738cc7ba4742f4ecfa302c42ff8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0e:4d:81:0a:86:9c:68:b4:31:e8:43:70:6e:
6b:dc:4b:5d:29:73:dc:35:2e:bd:f4:53:67:62:f0:
74:8a:c3:50:d1:e4:bc:db:45:b8:b4:47:3f:a6:28:
a4:95:98:d2:b0:5a:1e:03:9d:3f:44:9f:d9:51:71:
c8:18:86:24:5a:1e:92:8e:fd:a9:d4:bc:1d:0f:4e:
b7:f0:3e:22:17:65:ec:c5:cd:a9:45:3d:5c:74:b4:
b6:f0:d2:26:9c:50:8e:ca:44:47:2f:5c:6e:20:54:
c8:c6:d0:da:49:d8:b7:22:dd:5e:08:dc:b0:09:d7:
c4:a1:a9:76:74:15:05:5c:cc:45:56:0e:99:45:09:
c8:10:ab:00:a4:4c:2c:de:b6:42:1d:83:9d:b5:27:
a7:cb:4c:b8:73:cd:f2:5b:c0:c5:37:ec:ae:b7:2f:
7a:f8:12:c3:26:53:7a:df:37:9b:50:34:dd:1f:89:
72:04:62:4d:af:09:74:ea:c2:98:06:b7:fd:91:2e:
e9:2c:ff:6c:48:1d:37:76:ec:51:76:b4:6a:b5:d8:
c8:e4:f8:08:75:f5:c1:3b:46:fc:3e:51:e5:45:5d:
a5:dc:96:a8:3c:7c:2f:3b:78:db:62:ee:42:17:0c:
33:c3:8d:1d:8d:b3:0a:62:65:3e:b1:cb:f6:05:0a:
18:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:5D:2E:AF:38:A5:B7:38:CC:7B:A4:74:2F:4E:CF:A3:02:C4:2F:F8
X509v3 Authority Key Identifier:
keyid:76:07:F6:9D:EE:43:AC:01:D7:DF:EA:CA:9B:76:A2:40:EA:6E:F3:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:5f:ae:a3:0d:02:c5:83:23:7c:cb:a3:78:81:a2:b0:96:be:
5c:16:78:ba:26:c2:c4:a6:94:ca:94:77:95:e8:cb:e1:df:88:
2a:3a:c8:93:5b:16:97:a8:73:ad:31:13:3c:8c:12:e7:50:e5:
2b:4b:3c:cf:90:a4:7d:3c:40:d8:a2:a5:69:5e:4e:13:ee:36:
1f:b6:cc:f2:05:65:a1:18:3e:65:09:fd:a6:0e:1a:46:91:09:
dc:fb:4c:ac:89:09:0b:e9:02:40:6e:a0:67:b8:cb:b7:92:31:
8c:f8:7f:57:23:e5:10:63:ac:89:39:10:59:04:9f:cc:3e:63:
b9:52:68:3a:ee:54:d8:7e:59:28:de:b0:03:c2:44:92:6b:45:
2e:02:b9:d1:9d:33:fa:82:ad:a1:db:71:89:eb:a5:0d:3a:c6:
cf:23:5f:ab:b8:45:47:2f:4d:92:0a:07:23:7f:25:9c:ba:3c:
8d:df:60:2b:6a:68:e9:be:98:fd:c9:a1:18:5b:9b:b8:e8:33:
27:e5:b4:f7:7b:62:7b:bc:30:8c:c8:6a:c9:d7:6e:21:6e:89:
3f:0a:f3:e1:a4:e1:66:ce:42:56:7f:11:24:ad:6d:49:c5:47:
1a:26:71:d4:e7:d4:33:2f:31:5f:e3:bc:f2:1e:cf:9c:6c:98:
89:ce:e7:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 20:24:13 2026 by rpki-client