Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
File: dyDGcENNpRAiYQmdoQHyXdP3qto.mft (raw, json)
Hash identifier: w99UJblo7rYMXfS5OUxrbq0nCH2fTvV1lt9mK+mbO3o=
Subject key identifier: 08:BE:59:38:57:2C:C1:D8:27:BD:D9:FF:3C:04:E8:6D:84:46:76:11
Authority key identifier: 77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA
Certificate issuer: /CN=7720c670434da5102261099da101f25dd3f7aada
Certificate serial: 019DCE9930524D2A4E862DFFA396201D9A47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
Manifest number: 1120
Signing time: Mon 27 Apr 2026 11:00:38 +0000
Manifest this update: Mon 27 Apr 2026 11:00:38 +0000
Manifest next update: Tue 28 Apr 2026 11:00:38 +0000
Files and hashes: 1: dyDGcENNpRAiYQmdoQHyXdP3qto.crl (hash: kB0FNJKeiylDy/HqGkmSUVHjttyPYNNM9DRg/Eka/b0=)
2: fxjDmBMtX4lZXvQ-w62aJNa_wcA.roa (hash: k9PdZxgspVP2JG6hPwNtH2QKs9wDWHLF4meodXKpQn0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 11:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:99:30:52:4d:2a:4e:86:2d:ff:a3:96:20:1d:9a:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7720c670434da5102261099da101f25dd3f7aada
Validity
Not Before: Apr 27 11:00:38 2026 GMT
Not After : Apr 28 11:00:38 2026 GMT
Subject: CN=08be5938572cc1d827bdd9ff3c04e86d84467611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:08:b3:20:58:ff:97:b8:76:20:9c:4f:4b:5b:
53:08:80:40:ed:a0:2c:1d:90:23:b8:71:6b:16:d5:
9a:83:62:79:7a:88:99:a5:ce:03:35:de:7c:7b:5d:
d7:85:8e:76:7c:fc:77:4b:f3:d5:e1:a3:4f:28:27:
1c:94:b8:17:45:f5:b7:c8:79:b3:f2:e2:01:fc:d3:
ba:f9:c4:c7:e3:9d:c1:9e:bd:40:27:fb:ab:99:a0:
db:4c:fe:07:24:f7:f5:aa:79:13:35:e3:37:5f:f0:
1b:a9:26:52:38:aa:c8:ed:62:13:04:bd:70:b8:ff:
c6:0c:43:9f:1d:5d:ed:72:a7:31:7a:a2:24:4f:f8:
f4:23:a2:24:65:01:34:60:e6:5c:61:98:48:ce:8d:
ad:e3:5d:45:47:72:93:dd:2b:ce:2e:9c:c6:74:41:
d9:17:bc:ef:7d:fd:bd:ac:18:b6:08:82:ee:78:28:
28:f7:9c:33:f9:13:30:0f:b9:83:14:2b:14:23:46:
3f:6c:a3:26:81:e2:16:3b:a1:48:70:21:2d:66:79:
b6:52:27:2c:d4:58:9d:6e:a7:32:cd:4a:42:a6:af:
8b:0c:77:f3:72:49:45:cd:6b:73:ad:d7:6c:02:79:
fd:09:b2:c0:2b:11:89:70:f6:93:a1:b9:d4:e7:b5:
5e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:BE:59:38:57:2C:C1:D8:27:BD:D9:FF:3C:04:E8:6D:84:46:76:11
X509v3 Authority Key Identifier:
keyid:77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:a0:82:5f:23:46:74:2e:58:66:56:57:a9:e4:f5:53:fe:e0:
49:0e:fa:ff:8d:cd:85:ec:38:b1:41:3e:fa:71:83:22:4e:39:
a8:25:88:47:c1:0c:8d:f4:82:4b:36:74:cf:eb:75:14:ac:f8:
db:73:6f:73:44:38:f8:03:fc:8c:44:d2:6f:d2:78:79:3c:c6:
f9:4b:71:4d:e5:37:4d:91:74:7f:51:5f:a1:c9:86:f0:c0:17:
d0:22:7d:ec:3e:0f:91:55:c1:88:e9:3a:25:60:b1:e3:e1:f2:
53:6d:8b:88:da:98:19:52:6f:cd:dd:38:e0:3e:7c:6c:65:a5:
16:6f:7e:5f:24:a3:c4:af:2c:7d:55:d3:85:57:13:23:50:bb:
29:92:1d:b5:6a:de:0c:ea:3a:ad:74:bc:03:13:0f:94:48:52:
7d:71:f8:3c:5e:c3:7a:5a:56:62:75:bb:26:73:ab:51:65:86:
dc:ff:2a:f8:93:ab:0e:f9:ef:37:2d:9d:08:b4:dd:45:13:88:
d6:c0:53:38:5a:ee:a7:de:10:47:2d:64:77:62:43:df:ec:1d:
a0:25:9c:09:4c:70:7a:ea:5d:fd:4d:c7:d6:f9:3b:12:24:e1:
30:d6:21:eb:b0:b4:d8:3c:53:a2:6c:2e:38:e2:24:36:1f:de:
70:62:83:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:07:29 2026 by rpki-client