Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
File: diY1mUnOzyQYxaLbIayrhd2Rk9g.mft (raw, json)
Hash identifier: NGO9+8z9/CUP9NoJU9XqeXtI+fQ6b8PVRf6OjVTYLsI=
Subject key identifier: 81:39:2E:59:42:E6:88:E4:64:97:5F:E6:23:6B:EE:8E:6E:DE:80:CF
Authority key identifier: 76:26:35:99:49:CE:CF:24:18:C5:A2:DB:21:AC:AB:85:DD:91:93:D8
Certificate issuer: /CN=7626359949cecf2418c5a2db21acab85dd9193d8
Certificate serial: 019CE5C936EB4C7E63D43A93AE1CAA3BB8AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
Manifest number: 1865
Signing time: Fri 13 Mar 2026 06:01:35 +0000
Manifest this update: Fri 13 Mar 2026 06:01:35 +0000
Manifest next update: Sat 14 Mar 2026 06:01:35 +0000
Files and hashes: 1: Ra_O1tJPqxceyq_rAhiwFMOrKjw.roa (hash: Rmyhdy6TeiiXlYpWyq2MVfXDcJgMeLMhA0axqCrhBSg=)
2: diY1mUnOzyQYxaLbIayrhd2Rk9g.crl (hash: r9N4HKFASvOjc6AWtacRhhTeS7v/wQnsz4wJCH4jUfY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:c9:36:eb:4c:7e:63:d4:3a:93:ae:1c:aa:3b:b8:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7626359949cecf2418c5a2db21acab85dd9193d8
Validity
Not Before: Mar 13 06:01:35 2026 GMT
Not After : Mar 14 06:01:35 2026 GMT
Subject: CN=81392e5942e688e464975fe6236bee8e6ede80cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fc:a2:91:4b:fc:0e:6f:de:fb:22:f4:8d:cb:
74:54:77:bb:85:26:99:b2:9b:dc:90:b5:9d:b4:ef:
ac:15:f7:a7:a0:e2:7a:0b:b6:c7:97:7e:08:75:5d:
eb:9a:59:cc:7b:0f:88:77:e4:5b:6c:26:b3:1b:bd:
9a:8a:40:7d:ec:de:ec:22:0f:6d:06:76:82:99:78:
da:3e:96:a3:9c:15:be:c6:bd:88:3f:e7:4a:48:a3:
a0:65:a0:dc:b2:82:b2:55:df:6e:f5:bd:b3:c7:74:
a7:2f:6b:18:10:be:d6:7f:8d:37:44:47:fa:07:cc:
c4:d1:e1:b3:04:ed:91:44:0a:09:a4:1f:6c:52:4b:
32:7c:68:a1:aa:34:01:19:4b:31:29:31:f9:30:9d:
cc:0f:45:d2:aa:31:a5:bc:60:43:12:0f:25:51:7c:
3f:db:ab:80:d5:b7:d3:2e:11:08:4a:79:2f:91:92:
f1:89:8e:50:95:5b:4b:37:e7:27:04:db:75:ab:3d:
6c:f7:58:7f:07:6a:86:f0:cc:1d:a5:45:12:0d:cb:
d2:34:9f:8d:79:ed:5a:3c:98:77:32:b1:38:cb:4e:
66:1a:39:a2:c4:d3:ff:c9:e1:d8:19:e7:9c:fd:40:
a0:67:16:03:ce:76:aa:79:fd:72:11:4c:63:9d:94:
25:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:39:2E:59:42:E6:88:E4:64:97:5F:E6:23:6B:EE:8E:6E:DE:80:CF
X509v3 Authority Key Identifier:
keyid:76:26:35:99:49:CE:CF:24:18:C5:A2:DB:21:AC:AB:85:DD:91:93:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:31:ee:0c:d7:43:4f:72:61:ea:53:78:db:e5:83:34:b8:a1:
f9:4f:0d:ca:e5:10:c5:30:e1:95:82:ed:87:46:11:8f:3f:34:
cb:8c:3d:54:5c:91:ae:23:dd:b7:33:54:8c:a9:4d:4a:64:bf:
c3:68:72:37:07:d7:00:a9:68:25:ef:4a:23:36:f4:6b:0c:27:
1b:3c:32:69:f0:45:a3:ec:06:5e:88:76:cd:34:21:01:3f:8c:
de:dc:ed:3b:c8:56:cf:3d:22:bd:a2:d4:9d:2f:af:15:7c:08:
1f:c3:9d:f7:4a:0a:68:99:55:b3:32:ef:9a:86:ed:0b:03:a4:
0d:dd:c8:5a:16:e9:1f:28:97:60:ed:dd:73:96:42:fa:9d:95:
eb:70:56:9b:2d:f9:03:4e:53:96:15:ed:43:80:07:f3:ea:84:
b3:de:c0:87:f1:94:ba:e5:2b:a3:2d:53:da:70:54:72:83:21:
b5:1d:46:10:f3:c4:1b:57:39:a6:35:46:7a:73:b8:12:56:52:
40:a4:67:99:3e:a4:9e:db:bf:66:da:33:82:a1:1e:67:9f:29:
f6:83:f9:1c:3b:b0:b2:5b:29:77:fc:f9:f8:19:7b:af:3b:81:
b1:af:3a:50:9a:95:2d:b6:c4:d6:61:0b:c5:95:68:c1:e0:9f:
f1:41:88:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 09:27:16 2026 by rpki-client