Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
File: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft (raw, json)
Hash identifier: sb0+6s/o689iN9loxZQRnl7rQeRZr/v/OB8onpqL8eM=
Subject key identifier: 7D:BE:04:46:99:C6:5D:EC:7E:F2:E9:A4:67:33:F7:98:E8:20:80:84
Authority key identifier: 74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07
Certificate issuer: /CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907
Certificate serial: 019CE4B659190AD69E0647CD070E44EC7DCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
Manifest number: 1862
Signing time: Fri 13 Mar 2026 01:01:21 +0000
Manifest this update: Fri 13 Mar 2026 01:01:21 +0000
Manifest next update: Sat 14 Mar 2026 01:01:21 +0000
Files and hashes: 1: T4BJnDBfE6AyBSAWAjPZ1GzLlMM.roa (hash: SXBhd3/vnyIoPB/kDRi62FVnMbysfno7J5T9Eftc8tY=)
2: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl (hash: /3FGbzWU6LGoihYpkpIMjxo5HSPyA6KaApv3WAic6Dc=)
3: tSpDrZGtdp0mH1aXKivR6nDrhuY.roa (hash: xkSEr+C7WhhCLocSo1zhSLhZi6gcFYi1jnV4sR3gnUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:b6:59:19:0a:d6:9e:06:47:cd:07:0e:44:ec:7d:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907
Validity
Not Before: Mar 13 01:01:21 2026 GMT
Not After : Mar 14 01:01:21 2026 GMT
Subject: CN=7dbe044699c65dec7ef2e9a46733f798e8208084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:39:80:d6:74:68:06:92:a3:a8:52:cb:d8:61:
3a:df:be:0a:93:1a:5d:d0:9e:d4:c0:8c:c0:59:53:
e3:c8:b3:fd:50:7e:ce:09:5a:ae:36:08:a0:31:c9:
68:ce:9a:51:4e:46:d8:0a:6d:f5:b5:9e:ad:a1:ba:
f8:c1:ce:29:f0:2e:1a:fd:68:fb:63:f7:21:ed:ba:
2c:88:be:a8:60:ed:c2:67:07:7a:3c:e6:ef:d2:62:
a2:d7:7c:ee:08:d2:97:dc:72:90:8f:ab:71:ca:82:
24:e5:f7:b2:21:e9:24:8e:cf:81:a1:c8:9e:e4:e7:
7a:ac:61:e7:16:7d:a0:8b:c6:c9:a1:2b:39:13:9e:
dd:a8:a8:31:e9:0f:01:b5:a6:1d:cb:d1:24:e6:2f:
fb:05:e0:96:bf:2f:52:74:97:f0:4d:04:1e:ea:bb:
78:4c:33:94:3a:95:95:33:6d:79:47:c3:49:67:35:
d8:7c:50:c3:16:73:e1:bc:f9:02:36:8b:ae:07:a3:
db:e8:a4:41:b8:63:a7:a9:43:36:87:35:64:fb:fa:
3a:72:07:87:ae:bb:7f:9f:a7:a6:78:b1:1f:ed:b9:
81:b8:d5:a5:40:6f:82:73:2f:6c:cc:d4:08:88:62:
8b:da:36:72:36:8a:bb:fb:72:59:6c:79:6c:9c:18:
0f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:BE:04:46:99:C6:5D:EC:7E:F2:E9:A4:67:33:F7:98:E8:20:80:84
X509v3 Authority Key Identifier:
keyid:74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:b9:00:07:a6:3f:4e:06:2d:31:cd:5f:89:ba:b4:9d:a6:24:
3a:6e:04:2d:3b:3a:ca:74:2a:eb:7c:bc:1c:db:35:30:3b:9c:
2a:3c:f3:97:76:03:31:2d:df:62:d8:ef:04:4b:53:a6:74:f3:
51:ea:cb:c0:10:ad:ce:2b:48:f0:cc:15:88:3c:4e:98:66:71:
55:4e:eb:63:f8:28:3f:e5:a0:4e:47:42:67:f7:bc:64:ed:87:
6a:1c:60:bb:31:00:a8:31:1c:d4:a3:e7:2d:9b:94:87:4a:da:
2c:eb:e7:ba:d6:9a:2e:2c:fe:ff:87:2d:34:20:79:a3:7a:72:
06:be:de:d9:4a:74:b5:7a:53:04:1c:02:0b:99:35:ee:20:3e:
7d:fb:3a:c8:45:4a:11:0f:62:5c:73:15:9a:70:79:06:a3:31:
d4:94:b6:e2:7a:3d:37:c9:88:de:fb:8c:29:15:c0:4d:7b:2d:
7d:33:c1:39:30:b3:12:3b:b4:46:dd:b6:d0:fd:70:5c:71:9d:
25:71:55:be:85:90:1d:44:15:48:3a:f4:48:25:39:a4:56:01:
09:8e:18:e6:9e:29:35:f6:16:cc:72:5f:c6:df:1e:a0:16:fc:
bf:a7:89:0e:c8:77:81:3b:ed:d6:8b:35:f2:50:b0:0f:e1:44:
6f:a2:6c:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 10:40:05 2026 by rpki-client