Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
File: dyDGcENNpRAiYQmdoQHyXdP3qto.mft (raw, json)
Hash identifier: 1qUZDe2yr3hNbDBJ8draW/4rK3R41lAgOZW7cLnM4Vs=
Subject key identifier: 2F:E5:F7:3A:AE:9C:F7:F7:2A:96:72:34:9F:19:E0:D4:42:38:B9:30
Authority key identifier: 77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA
Certificate issuer: /CN=7720c670434da5102261099da101f25dd3f7aada
Certificate serial: 019CE6DB1612839BE3736B3309BFD50FE67E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
Manifest number: 10A8
Signing time: Fri 13 Mar 2026 11:00:43 +0000
Manifest this update: Fri 13 Mar 2026 11:00:43 +0000
Manifest next update: Sat 14 Mar 2026 11:00:43 +0000
Files and hashes: 1: dyDGcENNpRAiYQmdoQHyXdP3qto.crl (hash: x6btY5eXXtwX+UNT6zTjvEq8EHHNoDEXYFNHWw3GqLY=)
2: fxjDmBMtX4lZXvQ-w62aJNa_wcA.roa (hash: k9PdZxgspVP2JG6hPwNtH2QKs9wDWHLF4meodXKpQn0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:db:16:12:83:9b:e3:73:6b:33:09:bf:d5:0f:e6:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7720c670434da5102261099da101f25dd3f7aada
Validity
Not Before: Mar 13 11:00:43 2026 GMT
Not After : Mar 14 11:00:43 2026 GMT
Subject: CN=2fe5f73aae9cf7f72a9672349f19e0d44238b930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6f:2c:c5:fd:bf:47:3d:30:00:b5:b2:f1:16:
f8:fe:05:fb:88:06:9b:35:ae:bb:b3:5e:14:5b:57:
e8:c3:db:4e:25:10:f7:4f:8b:7c:16:5f:d3:1e:a1:
3c:fd:6f:74:df:96:ff:4f:86:4a:0b:50:8a:8b:21:
1f:0b:67:50:18:c5:78:1a:7a:7c:da:d3:19:24:40:
e3:86:00:e8:0b:45:cf:fb:f6:5e:90:04:aa:f5:06:
46:b2:bf:ec:5c:87:c7:3b:63:96:f6:30:bc:73:40:
ad:c1:61:0e:0f:b4:49:c4:eb:d3:20:71:21:71:f9:
1e:12:a6:13:38:88:ca:e7:3a:8c:bd:d4:9d:63:71:
9b:5b:a8:06:45:09:2e:41:d3:d6:9f:ec:5e:4e:6a:
aa:19:18:fe:f7:1a:87:19:f8:3c:1c:0c:db:9e:c7:
57:32:fe:df:7a:6e:e6:35:78:e9:c2:28:c9:bb:c2:
67:49:e5:88:dd:cc:a0:88:27:0a:16:9c:cd:69:6c:
c8:5a:55:10:b5:41:0c:43:0c:0f:64:9c:e8:bf:fb:
76:f8:eb:cc:79:9f:47:a7:5b:22:db:01:d8:2b:d9:
83:eb:71:94:8b:1b:ad:2c:3b:b7:a0:6c:3c:2e:f9:
4a:77:c9:d1:5b:46:f0:df:0c:89:ee:44:aa:ed:92:
b4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:E5:F7:3A:AE:9C:F7:F7:2A:96:72:34:9F:19:E0:D4:42:38:B9:30
X509v3 Authority Key Identifier:
keyid:77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:50:e2:ba:97:39:1a:ef:d4:03:d1:79:df:59:49:c0:65:c7:
6c:54:5b:23:0d:95:c3:38:e0:3d:d9:92:75:83:ac:82:fb:ac:
ac:5e:70:03:de:73:a6:a1:ec:e4:75:14:c9:27:47:13:20:9f:
68:56:66:b6:7b:38:a6:f1:4a:37:71:49:bc:60:57:cf:a7:e1:
47:ae:83:7c:0c:99:b5:4e:e7:7e:5d:b5:a8:f5:d8:1b:95:2a:
78:83:fb:1d:8d:c8:4c:f8:b0:33:bc:88:14:39:92:b7:d7:c7:
d3:c4:dd:11:4a:25:e2:8e:1d:9d:23:ea:c5:20:99:33:6c:36:
c6:d4:ff:9a:ea:ad:ca:3d:04:e8:0c:7c:a3:73:73:77:32:6d:
c8:23:e2:ed:af:23:a9:72:08:0e:ab:c2:56:e9:8d:72:06:53:
32:6c:e9:c5:f0:3b:5e:15:1c:c3:d9:3b:77:d7:a1:55:67:58:
c8:6d:8a:fb:11:c2:de:7d:e3:50:40:2c:a7:c4:6e:83:af:16:
9d:77:15:5f:55:2a:1e:9f:ae:dc:ca:e1:ea:e8:5f:89:87:86:
34:98:6c:cd:72:f0:cd:52:a2:a7:7d:4f:76:9e:01:78:27:a2:
70:e8:54:af:22:9c:36:c6:c3:1d:31:59:ba:82:2c:6c:4e:2e:
a1:bd:d3:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzm2xYSg5vjc2szCb/VD+Z+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3MjBjNjcwNDM0ZGE1MTAyMjYxMDk5ZGExMDFmMjVkZDNm
N2FhZGEwHhcNMjYwMzEzMTEwMDQzWhcNMjYwMzE0MTEwMDQzWjAzMTEwLwYDVQQD
EygyZmU1ZjczYWFlOWNmN2Y3MmE5NjcyMzQ5ZjE5ZTBkNDQyMzhiOTMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuG8sxf2/Rz0wALWy8Rb4/gX7iAab
Na67s14UW1fow9tOJRD3T4t8Fl/THqE8/W9035b/T4ZKC1CKiyEfC2dQGMV4Gnp8
2tMZJEDjhgDoC0XP+/ZekASq9QZGsr/sXIfHO2OW9jC8c0CtwWEOD7RJxOvTIHEh
cfkeEqYTOIjK5zqMvdSdY3GbW6gGRQkuQdPWn+xeTmqqGRj+9xqHGfg8HAzbnsdX
Mv7fem7mNXjpwijJu8JnSeWI3cygiCcKFpzNaWzIWlUQtUEMQwwPZJzov/t2+OvM
eZ9Hp1si2wHYK9mD63GUixutLDu3oGw8LvlKd8nRW0bw3wyJ7kSq7ZK0kwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC/l9zqunPf3KpZyNJ8Z4NRCOLkwMB8GA1UdIwQY
MBaAFHcgxnBDTaUQImEJnaEB8l3T96raMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHlER2NFTk5wUkFpWVFtZG9RSHlYZFAzcXRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9jZjc1M2YtNzc4MS00ZGZlLWEzOGUt
ZDg0NTk5NTk5MWFjLzEvZHlER2NFTk5wUkFpWVFtZG9RSHlYZFAzcXRvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9jZjc1M2YtNzc4MS00ZGZlLWEzOGUtZDg0NTk5NTk5MWFj
LzEvZHlER2NFTk5wUkFpWVFtZG9RSHlYZFAzcXRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAVDiupc5
Gu/UA9F531lJwGXHbFRbIw2VwzjgPdmSdYOsgvusrF5wA95zpqHs5HUUySdHEyCf
aFZmtns4pvFKN3FJvGBXz6fhR66DfAyZtU7nfl21qPXYG5UqeIP7HY3ITPiwM7yI
FDmSt9fH08TdEUol4o4dnSPqxSCZM2w2xtT/muqtyj0E6Ax8o3NzdzJtyCPi7a8j
qXIIDqvCVumNcgZTMmzpxfA7XhUcw9k7d9ehVWdYyG2K+xHC3n3jUEAsp8Rug68W
nXcVX1UqHp+u3Mrh6uhfiYeGNJhszXLwzVKip31Pdp4BeCeicOhUryKcNsbDHTFZ
uoIsbE4uob3TNA==
-----END CERTIFICATE-----
Generated at Fri Mar 13 13:52:03 2026 by rpki-client