Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
File: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft (raw, json)
Hash identifier: fh8+hYAv3H+o4kd7cL9cpFhsEz1YrWVnvOXigjZWSug=
Subject key identifier: B9:83:D1:6E:F5:FD:CE:62:AF:0C:62:50:91:CA:86:F6:F9:75:9B:40
Authority key identifier: 74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07
Certificate issuer: /CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907
Certificate serial: 019DCE637461D0C9EA9C537222C32638BEED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
Manifest number: 18DB
Signing time: Mon 27 Apr 2026 10:01:57 +0000
Manifest this update: Mon 27 Apr 2026 10:01:57 +0000
Manifest next update: Tue 28 Apr 2026 10:01:57 +0000
Files and hashes: 1: T4BJnDBfE6AyBSAWAjPZ1GzLlMM.roa (hash: SXBhd3/vnyIoPB/kDRi62FVnMbysfno7J5T9Eftc8tY=)
2: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl (hash: DsNKxu7FaKtX03VQaLfO/3Fq7vSqtEv8xvaS1XoVehc=)
3: tSpDrZGtdp0mH1aXKivR6nDrhuY.roa (hash: xkSEr+C7WhhCLocSo1zhSLhZi6gcFYi1jnV4sR3gnUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 10:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:63:74:61:d0:c9:ea:9c:53:72:22:c3:26:38:be:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907
Validity
Not Before: Apr 27 10:01:57 2026 GMT
Not After : Apr 28 10:01:57 2026 GMT
Subject: CN=b983d16ef5fdce62af0c625091ca86f6f9759b40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:18:d5:ca:d7:81:aa:65:f0:90:fa:1f:c5:85:
7e:4a:0c:ff:b0:65:ee:38:07:6d:88:6f:9a:8a:73:
b8:ce:43:a6:12:b5:93:6e:d5:45:b1:79:55:a3:26:
be:47:19:43:93:26:ac:31:68:49:6c:40:dd:9d:1c:
86:d3:c1:67:f3:45:70:f3:05:1a:25:63:42:f0:f4:
39:fe:cb:78:b8:30:4b:ba:5e:ff:a7:9a:e2:1f:9d:
29:09:e8:52:5f:0e:38:55:9e:0c:7e:0c:3b:86:16:
1c:7c:17:ed:08:3d:04:14:73:25:7a:dd:1d:3a:65:
85:6d:98:8a:c1:b0:b4:b1:34:9c:a3:f4:b0:d3:5b:
2b:cf:82:e3:82:a7:c4:83:c0:32:a3:dc:ce:29:0c:
db:4f:7d:f9:3d:b8:e7:9b:31:4a:a9:4f:fa:f7:40:
e9:c5:1d:c0:4c:0b:37:17:2c:7a:c7:be:e2:01:10:
a5:08:07:19:fc:46:b2:24:33:24:42:42:f7:e0:50:
90:75:05:16:39:fc:88:d2:05:4c:9d:fb:de:e4:93:
41:af:12:e3:24:b5:ae:88:2b:ab:40:c0:3d:4a:c2:
75:d7:9b:2b:03:03:19:5c:a5:92:34:e2:99:78:66:
4e:8d:ad:22:12:41:4f:3e:82:cf:67:50:dd:8e:d1:
4a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:83:D1:6E:F5:FD:CE:62:AF:0C:62:50:91:CA:86:F6:F9:75:9B:40
X509v3 Authority Key Identifier:
keyid:74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:bf:4d:60:83:2f:38:d5:e8:d6:44:8e:c4:23:7e:83:bb:c1:
93:b8:ba:d3:85:8c:8f:61:a4:35:21:2a:58:c9:3e:46:36:33:
46:76:84:85:1a:d6:26:53:57:1d:c9:83:da:59:41:9c:0c:7c:
2a:23:3c:60:90:00:a8:02:d1:96:66:63:a2:a9:f3:e8:75:2b:
7f:9e:b8:70:ae:68:68:67:12:b4:eb:7a:e7:60:7b:72:e8:89:
59:6b:c4:8c:70:11:50:92:e3:7f:4a:08:f0:fd:c1:06:a8:3d:
18:6a:17:63:05:60:c9:1a:c5:1c:f3:1e:2d:d7:d5:38:71:76:
80:0d:0e:3e:7f:43:09:49:3c:55:fe:7e:09:dd:d6:cb:c7:4c:
77:b7:9f:d3:43:00:5c:67:0d:4e:b2:85:e7:b7:53:06:7a:a4:
2b:7d:9e:88:29:6b:8b:2c:fc:d1:0d:f7:99:62:75:eb:81:ed:
95:20:e2:86:c9:d4:45:4e:f1:0a:85:73:a5:5e:0e:3c:ad:dd:
fc:68:4b:bc:ba:36:9e:f2:80:0a:17:c3:fd:15:35:db:fe:5c:
ff:be:14:b7:c1:20:99:e7:64:5f:29:78:b8:0c:d9:7a:be:ed:
35:8b:62:f4:56:35:fb:e2:c5:bf:aa:4d:02:3e:4e:3e:e8:71:
72:5d:b3:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:05:41 2026 by rpki-client