Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft
File: dThqb64eVfV2pAW9dLfwjnpsRlM.mft (raw, json)
Hash identifier: ptIWFXmoGM2agn6ko9/FwKm5sM0vE/qKCYBxu54Vqg8=
Subject key identifier: 0C:6C:53:AF:7D:89:95:B2:20:DF:9F:12:2A:EF:1C:6D:15:BA:E1:98
Authority key identifier: 75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
Certificate issuer: /CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Certificate serial: 019CFAE57DB9E623C23DBA9F68CEB2D17417
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft
Manifest number: 0B1C
Signing time: Tue 17 Mar 2026 08:24:29 +0000
Manifest this update: Tue 17 Mar 2026 08:24:29 +0000
Manifest next update: Wed 18 Mar 2026 08:24:29 +0000
Files and hashes: 1: EySyBrJAYfrjCqEYxsmXvPf3H5s.roa (hash: nhjndHhWgofWmTA2EVlrwEYSs042l2huk+iYyhoh+2o=)
2: YjThpUKY8dmKpHgsGQ94ajjW1mw.roa (hash: mU028HajfQlA+sa9l/YSlDKUMFBYx7IaDAclqqbnoIg=)
3: dThqb64eVfV2pAW9dLfwjnpsRlM.crl (hash: h5J34zoH6RRAS1+3EW6hqcddTMHzM6zWkHbauxPmOrE=)
4: iC9fUn104zY4OEHwbqWBMRhqfeY.roa (hash: G+diZWtaeUYf2mFGQ7Kk9MtmoUpwbZKTbE2sRgcMjNs=)
5: zyy7DFvxeNDAh4pOqGvmANgdfpY.roa (hash: hmel/U2e/Q6evOOJkJluvCudwlyZpvn4SGB/ShoJCY0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft
rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Mar 2026 08:24:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:fa:e5:7d:b9:e6:23:c2:3d:ba:9f:68:ce:b2:d1:74:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Validity
Not Before: Mar 17 08:24:29 2026 GMT
Not After : Mar 18 08:24:29 2026 GMT
Subject: CN=0c6c53af7d8995b220df9f122aef1c6d15bae198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e2:ca:0f:ba:cd:3e:f4:d8:fc:60:b1:78:46:
6c:c3:5d:d8:47:53:46:9b:f9:6e:41:89:20:44:92:
c4:52:ec:39:d5:ce:a5:b7:0b:f5:59:e9:9c:7c:5b:
af:cb:22:c5:6f:e0:72:aa:48:ce:93:18:55:7a:20:
33:9c:75:ec:6f:0c:bd:04:e6:27:e7:c4:e4:c7:36:
fa:be:b8:cc:2b:5d:5f:dd:95:4b:a1:43:53:05:e8:
10:5d:cd:a1:e4:32:8b:aa:7c:c0:57:64:bf:ff:c2:
d5:d7:1c:a4:dc:00:02:74:45:9d:d5:12:b2:43:bf:
8d:3f:82:cf:38:1e:81:ec:cb:cb:d5:de:4d:da:67:
7e:91:a0:63:45:b4:27:76:6d:13:d4:ce:f1:8c:72:
d1:de:27:55:1a:82:2e:d0:90:83:27:d7:d9:ec:e9:
f7:d8:ed:52:14:b1:d9:a4:45:81:8f:2d:16:20:fd:
98:d8:21:1d:e1:d0:fd:58:57:c6:e2:e2:cc:d0:e8:
58:4b:27:de:bd:6f:aa:52:96:77:62:fe:d7:ea:da:
ef:a7:56:e6:c9:f4:6a:7c:62:91:71:e5:d1:b5:c1:
e8:63:e4:9a:33:af:e6:af:bf:c2:a3:23:1a:bf:76:
00:6e:ae:7a:d9:38:75:36:22:bb:c8:cb:df:b5:89:
07:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:6C:53:AF:7D:89:95:B2:20:DF:9F:12:2A:EF:1C:6D:15:BA:E1:98
X509v3 Authority Key Identifier:
keyid:75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:de:5f:ed:0d:71:9b:8a:8d:07:7b:b1:f9:41:8e:9b:38:b7:
fe:5f:20:e0:e1:53:f3:a2:9d:11:68:9e:6f:1f:d4:c4:c1:b1:
06:b7:48:a9:45:42:a0:e3:c9:e7:a7:3b:92:2b:aa:2c:16:a3:
f0:77:70:e8:5d:1e:cc:77:44:ef:73:69:43:b5:72:2a:09:bc:
0d:b4:8e:5f:24:f2:1b:78:c0:03:c1:56:4a:1a:42:96:b8:2b:
1d:a3:b1:d3:7d:6c:8c:69:40:d9:df:f2:1e:35:83:82:3b:41:
fa:5e:c5:59:03:05:2d:59:d4:ce:e1:e8:d2:c6:7b:a6:02:eb:
90:e2:31:74:8d:47:68:87:92:cd:bb:ac:e1:e5:88:13:1d:20:
0b:6c:c4:ee:cc:d6:6a:a2:cf:e8:30:08:b8:49:6b:bd:21:f2:
e0:98:21:b0:31:73:10:35:37:02:03:15:7b:90:19:18:f5:d2:
b6:d3:db:6c:13:81:d1:8f:24:41:68:67:36:48:a3:ad:53:15:
90:e6:e1:26:9d:d5:8c:c2:57:5e:3a:28:18:00:76:6c:99:50:
65:ba:cc:17:a8:9a:55:81:58:70:bd:a2:a9:12:5b:b4:21:60:
b1:91:6c:00:f9:42:56:8d:91:be:dd:89:94:02:30:b0:83:fa:
6f:6c:57:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 17 14:01:24 2026 by rpki-client