Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
File: 1DsiEwqpp3NCVHaewTv-Fx-h4os.mft (raw, json)
Hash identifier: 6AfQ7A8q5qDgQ1xSFsbPtnAX5qCBVj3vCV6DhjDkHtw=
Subject key identifier: 34:2E:A0:7C:2C:DD:A9:30:1B:B0:27:BD:CA:B9:FC:CE:56:90:6D:31
Authority key identifier: D4:3B:22:13:0A:A9:A7:73:42:54:76:9E:C1:3B:FE:17:1F:A1:E2:8B
Certificate issuer: /CN=d43b22130aa9a7734254769ec13bfe171fa1e28b
Certificate serial: 019D37F7234547A7045A9B6595F2AE994BA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
Manifest number: 0D99
Signing time: Sun 29 Mar 2026 05:00:36 +0000
Manifest this update: Sun 29 Mar 2026 05:00:36 +0000
Manifest next update: Mon 30 Mar 2026 05:00:36 +0000
Files and hashes: 1: 1DsiEwqpp3NCVHaewTv-Fx-h4os.crl (hash: wyLm6Y1rXHpW7SDgqNkLPeEqRERtXKjUxZSv+vtUdMw=)
2: tTSKZ9SBm5TzwVGPFr99l5iaN7Y.roa (hash: 6iyRKX1ykzt8wMyhT1hUZtasJQSEcc9fv+Jwo+YKOD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:23:45:47:a7:04:5a:9b:65:95:f2:ae:99:4b:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d43b22130aa9a7734254769ec13bfe171fa1e28b
Validity
Not Before: Mar 29 05:00:36 2026 GMT
Not After : Mar 30 05:00:36 2026 GMT
Subject: CN=342ea07c2cdda9301bb027bdcab9fcce56906d31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:ec:46:41:8d:0a:fe:33:b4:46:65:d5:cc:53:
f6:30:c7:fd:d5:15:7c:53:3e:c2:22:86:5c:11:41:
11:4d:8e:ae:77:b2:ee:2d:f7:3d:07:fa:e4:2d:5c:
b9:01:bd:b2:c0:ca:26:67:3e:e0:18:da:f3:4a:ce:
cc:07:e2:5a:c9:89:9d:39:0f:60:aa:62:30:e3:34:
cd:37:ed:56:f7:55:bf:b9:41:c9:6d:9d:b0:e4:dc:
26:99:d1:b1:eb:69:d0:0e:54:95:5e:3d:5f:5f:52:
ab:95:1c:f7:39:70:4d:0d:6f:64:6a:02:76:a7:22:
75:ac:57:c7:c4:63:b9:ad:e1:02:e3:e6:60:d0:f6:
89:88:f9:30:8f:04:c3:80:e2:5a:13:d3:c6:61:3a:
6b:6f:66:51:7e:12:7d:fd:39:cf:07:69:74:06:c8:
2d:06:aa:01:29:ef:51:00:11:c3:2f:af:13:e1:c3:
b1:8e:1d:0f:1c:11:5c:09:28:25:a8:aa:8e:55:20:
3a:0b:5d:d0:c2:d2:40:47:59:fe:c2:f5:b6:f7:93:
a2:f8:7f:73:91:5b:a7:35:d5:68:3f:c7:24:e6:7c:
e2:e2:ff:d8:48:eb:a6:cd:6b:ab:60:b9:7a:0f:e9:
f1:0c:c6:dc:71:8a:55:7c:3d:71:02:f2:ab:ce:5d:
a6:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:2E:A0:7C:2C:DD:A9:30:1B:B0:27:BD:CA:B9:FC:CE:56:90:6D:31
X509v3 Authority Key Identifier:
keyid:D4:3B:22:13:0A:A9:A7:73:42:54:76:9E:C1:3B:FE:17:1F:A1:E2:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:8c:5e:66:ee:59:64:5a:4d:1b:99:1a:74:57:55:5e:0a:ee:
82:a4:48:8e:cb:fc:b8:b8:63:a9:ac:92:e1:7a:e1:c6:84:b8:
e9:ca:28:29:59:a1:52:23:a3:4d:34:d5:e0:ed:32:cf:3c:b1:
d1:f6:76:ce:c8:a4:7e:75:4e:90:00:97:21:d3:11:07:34:cb:
be:6c:2a:13:16:09:df:f9:07:95:4d:b2:f0:a2:65:d7:94:ab:
8f:a7:d3:01:39:0d:67:4a:06:dd:1f:3b:1f:9e:95:53:a5:29:
0a:a7:20:4e:c1:2d:61:3a:11:9e:c9:a0:5c:04:ed:1d:c4:2b:
41:16:52:c4:e6:37:fa:69:fb:37:58:8a:cb:9b:c2:08:9b:98:
77:4a:fc:c6:28:c4:05:4c:3b:2f:e7:0a:6b:79:02:ff:e0:d6:
5f:07:c7:42:fe:2c:8a:c6:88:64:bd:30:8c:bf:d2:31:21:0b:
a6:19:4e:5f:1d:bd:98:6c:50:0f:8d:89:fa:f6:61:be:85:eb:
8d:2d:3c:f0:3c:fe:c5:91:e0:f0:b6:55:a7:66:ea:1c:1f:3d:
ff:ea:24:96:fe:f4:bc:89:47:82:63:f1:28:1a:dd:9d:26:31:
ad:49:38:f7:97:b8:43:09:da:83:76:3d:a0:eb:39:90:b1:ab:
92:e2:35:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:26:13 2026 by rpki-client