Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.mft
File: dHWiyViPxpXSdUKD3NPRI9H3eBE.mft (raw, json)
Hash identifier: Zi4vQDcJbw10z7usxGQ8+/xdYcEmsM+Cz2aUbmNu4gs=
Subject key identifier: 68:42:BA:48:31:55:2B:1B:41:74:E3:83:0E:9D:5F:70:F3:0E:F8:F5
Authority key identifier: 74:75:A2:C9:58:8F:C6:95:D2:75:42:83:DC:D3:D1:23:D1:F7:78:11
Certificate issuer: /CN=7475a2c9588fc695d2754283dcd3d123d1f77811
Certificate serial: 019D382E58A11D4ABC77E795C41AB8ECEB67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHWiyViPxpXSdUKD3NPRI9H3eBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 06:00:54 +0000
Manifest this update: Sun 29 Mar 2026 06:00:54 +0000
Manifest next update: Mon 30 Mar 2026 06:00:54 +0000
Files and hashes: 1: B6KgFpwvViQTEk9Dmhs8MfS-w7s.roa (hash: OhVWCZDoCQizES2xkeCkzPUeD4jK/eG28KZNwsfJC3Y=)
2: dHWiyViPxpXSdUKD3NPRI9H3eBE.crl (hash: uoWjjNhwfXGn6+zwyrSw3+qsOWHztQaYSnBhvBicpyM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dHWiyViPxpXSdUKD3NPRI9H3eBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:58:a1:1d:4a:bc:77:e7:95:c4:1a:b8:ec:eb:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7475a2c9588fc695d2754283dcd3d123d1f77811
Validity
Not Before: Mar 29 06:00:54 2026 GMT
Not After : Mar 30 06:00:54 2026 GMT
Subject: CN=6842ba4831552b1b4174e3830e9d5f70f30ef8f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:97:b4:68:45:62:d1:c7:bf:1c:2d:03:2b:53:
4d:21:de:c5:db:0f:e0:44:15:90:dd:a1:fb:38:8e:
fb:59:09:d8:3b:8a:6e:94:d7:ce:f5:58:2a:95:88:
af:c1:ea:eb:ce:24:27:10:99:cd:7f:3f:9f:d4:ad:
ff:b6:7b:53:5d:a9:e2:a4:48:23:48:ac:ec:0a:0e:
2c:16:a1:0a:0a:2e:8a:67:e2:8d:ba:99:11:8c:84:
b4:38:53:7d:42:f2:70:6d:16:b0:0b:16:19:8f:8e:
fd:e9:88:1f:2c:6b:a7:8a:b8:0c:3b:a2:39:b9:52:
14:b1:7f:0a:e2:96:0e:a3:0e:81:cc:b2:36:09:a2:
99:86:11:d7:20:e2:b3:f9:1f:86:3d:3b:c9:59:ec:
ed:24:5c:28:3e:8d:e2:6a:5b:6b:97:d5:38:15:8d:
9b:24:91:e8:44:ff:49:21:2c:18:1b:0a:02:15:03:
c3:61:4c:74:b1:95:35:ab:0a:53:94:53:6b:4d:c8:
eb:9e:46:b2:26:3d:65:96:f6:96:89:77:15:6b:74:
42:0e:89:d1:50:46:a1:4f:ee:ed:dc:63:dd:71:8f:
8e:ad:77:21:0b:11:a4:61:d6:74:b8:f1:16:f6:0b:
de:97:2d:23:6b:d3:67:ba:37:e0:60:5e:d5:a7:e2:
30:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:42:BA:48:31:55:2B:1B:41:74:E3:83:0E:9D:5F:70:F3:0E:F8:F5
X509v3 Authority Key Identifier:
keyid:74:75:A2:C9:58:8F:C6:95:D2:75:42:83:DC:D3:D1:23:D1:F7:78:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHWiyViPxpXSdUKD3NPRI9H3eBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:22:cd:d8:25:b4:61:08:93:20:67:70:00:f0:3b:60:e9:fd:
41:86:e1:51:c8:6c:8e:a1:54:17:6f:d1:99:18:fe:ac:6b:61:
a0:f8:5b:62:e2:bc:1d:62:b8:a3:33:57:fb:1d:4c:e2:18:51:
b1:f3:d9:43:92:52:8d:ee:42:15:f4:c9:7f:eb:30:aa:ba:d7:
84:d8:1f:95:a9:67:65:f5:d1:f8:dd:83:40:d9:88:16:fd:7c:
78:f5:a0:c8:f2:cc:82:19:50:56:19:f2:ce:6e:fe:9e:73:1b:
16:be:a7:97:0d:f4:77:b3:63:fc:71:8f:e2:a8:40:e6:e9:f4:
46:04:96:6f:4e:73:f6:fc:7f:79:24:40:98:93:eb:4a:46:93:
5d:ed:f2:d9:11:35:5b:91:f6:58:5b:70:28:c2:fa:07:ed:e7:
52:95:96:9a:40:7f:bc:1d:cb:66:af:de:22:af:d0:fc:96:2e:
e2:a9:11:fe:48:27:49:d4:90:88:25:e2:c5:9f:2e:b1:53:23:
2f:8c:dc:a3:46:98:c1:78:d1:66:d6:25:27:99:30:1b:91:46:
88:a0:75:ad:82:e6:7a:2f:b6:09:07:0d:ae:ef:76:9b:d6:38:
14:72:5c:2c:fd:b1:f0:e4:99:0f:3f:60:bd:fe:4c:3e:1a:47:
56:55:df:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:58 2026 by rpki-client