Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
File: Dv0crRIZAnVQiePKgLptfMxLm3E.mft (raw, json)
Hash identifier: 1g2vkAChyYZhl/NQpUeKLrtth/Y46dKd+qkkgW5+XiU=
Subject key identifier: D1:91:41:16:04:82:7E:E8:18:4B:F7:00:49:8F:25:36:90:01:10:E7
Authority key identifier: 0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71
Certificate issuer: /CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71
Certificate serial: 019D389BF23F9AA14389E3A387D38C1965E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
Manifest number: 0E8B
Signing time: Sun 29 Mar 2026 08:00:37 +0000
Manifest this update: Sun 29 Mar 2026 08:00:37 +0000
Manifest next update: Mon 30 Mar 2026 08:00:37 +0000
Files and hashes: 1: Dv0crRIZAnVQiePKgLptfMxLm3E.crl (hash: YpUj2SVv4Uedmq8W8o7/CxpkxnJSn9fettVvU37YO5E=)
2: Ync302nWoIDxqRaEpHli5zPb-l0.roa (hash: CuUUdJvVMWZ1G3401/kid+n0FU2EaOY59WBjrBRwy1o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:f2:3f:9a:a1:43:89:e3:a3:87:d3:8c:19:65:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71
Validity
Not Before: Mar 29 08:00:37 2026 GMT
Not After : Mar 30 08:00:37 2026 GMT
Subject: CN=d191411604827ee8184bf700498f2536900110e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:00:17:d2:2f:ce:e7:23:31:5a:3b:72:91:f0:
1f:bf:99:35:e2:d5:7c:e2:82:e8:57:06:49:bf:05:
ef:69:79:96:f8:c7:53:0b:e8:87:64:0a:b0:f8:9c:
39:e7:aa:1c:78:50:f7:55:80:5f:e7:c5:ca:1a:b7:
32:31:29:c2:be:82:38:dd:47:e7:e7:92:92:3b:3b:
63:2d:47:a7:ab:db:ca:4e:8a:eb:fa:ef:72:77:4e:
99:90:c4:b8:4f:d7:8a:e5:d5:6f:b9:10:ba:e5:c6:
51:0e:2b:f7:b1:1d:7f:5e:3d:66:8f:5f:64:01:bd:
26:57:1e:92:b3:c2:3a:b3:5a:5c:9a:d1:e0:4c:ca:
01:f0:00:a6:70:29:b8:17:10:cf:d6:82:9f:dc:c6:
1e:f2:c0:68:66:1b:09:3b:69:74:25:13:75:dc:69:
0a:cb:6c:2f:dd:47:56:92:73:57:9a:dc:52:ec:c8:
e7:6c:97:be:fc:2a:30:dd:62:01:de:6e:a8:e2:f5:
1d:c8:a8:db:1d:da:40:6b:21:36:a1:34:a3:30:2e:
31:bd:4f:2d:01:57:93:51:4c:1c:79:6f:a6:95:01:
e1:1b:eb:2b:43:18:09:31:e7:70:4d:ae:c2:2a:e5:
12:32:4a:b2:5e:55:4a:a0:1d:6f:32:bb:dd:ac:74:
4b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:91:41:16:04:82:7E:E8:18:4B:F7:00:49:8F:25:36:90:01:10:E7
X509v3 Authority Key Identifier:
keyid:0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:eb:3a:83:c5:85:7f:93:f0:e6:93:10:80:de:9e:1c:23:c9:
bf:31:76:d8:5d:cd:7a:e0:20:45:ad:52:c9:b7:27:e6:7d:88:
72:45:7c:c2:37:4f:df:1c:58:71:17:90:7c:d6:40:bc:df:97:
74:58:34:05:6f:69:2c:e3:8b:d8:46:64:6f:66:44:1c:08:40:
98:d2:06:f6:03:a7:75:ff:dc:66:2a:9e:62:41:57:01:9c:e7:
26:7b:f3:87:6b:63:b3:05:62:2f:da:00:d4:9e:83:37:0e:c3:
a0:f8:06:c7:9b:3f:1b:34:98:e1:c5:f4:a7:93:44:07:07:ab:
bf:06:3f:f3:7d:d3:fb:91:8d:94:df:d0:69:51:fb:d6:e1:6b:
74:ef:e8:bd:79:9c:d0:b0:7d:00:96:d6:16:ff:14:07:7a:84:
0f:41:8b:d6:c2:23:e0:38:72:fd:c8:c9:5e:e0:53:ae:ff:0a:
79:0d:fa:87:16:b2:22:c8:ea:5e:c7:25:0a:89:93:3e:a8:9e:
a6:af:3a:03:67:c8:07:7a:03:84:0f:ca:02:b9:4e:c5:71:fc:
8e:7e:65:95:df:59:cb:f6:08:51:7b:13:2a:94:0f:ef:b6:46:
c4:0e:02:cb:77:0d:32:65:ee:52:d0:3a:9e:5a:7d:88:4f:0c:
2c:7c:1d:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:47:17 2026 by rpki-client