Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
File: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft (raw, json)
Hash identifier: lEcCHCE/YunHugUEGf6dmxVSs7dy8fek2qeL1r9nc+U=
Subject key identifier: A8:0C:5F:33:BC:CF:4C:B4:F7:A7:FD:86:98:8B:5D:1B:52:D2:28:09
Authority key identifier: AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
Certificate issuer: /CN=ac328756dece8f29f97f41b81a087db524e159b7
Certificate serial: 019D386645DAD89FB638AB7A5283FF27EFF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
Manifest number: 14DA
Signing time: Sun 29 Mar 2026 07:01:59 +0000
Manifest this update: Sun 29 Mar 2026 07:01:59 +0000
Manifest next update: Mon 30 Mar 2026 07:01:59 +0000
Files and hashes: 1: W3MdpZwq4nd-n5ES7yDiCOVHqpo.roa (hash: 8BK9ZS1JvVx0ZUCH1KW40WgG0466nVGYcl484oqJH48=)
2: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl (hash: bT0f4/3+uR+y/2VIcL0MQOXWwVvmH799dn6GqEaSVFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:45:da:d8:9f:b6:38:ab:7a:52:83:ff:27:ef:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac328756dece8f29f97f41b81a087db524e159b7
Validity
Not Before: Mar 29 07:01:59 2026 GMT
Not After : Mar 30 07:01:59 2026 GMT
Subject: CN=a80c5f33bccf4cb4f7a7fd86988b5d1b52d22809
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:31:2e:13:3c:c0:c7:39:cd:2f:14:0d:f9:51:
69:92:04:00:77:ea:2c:99:ad:94:02:10:c1:70:77:
c7:1f:9c:ee:d6:e4:c4:05:e7:20:a3:76:c6:ff:bb:
88:53:ad:3d:e7:c9:f3:87:86:07:d8:8d:c1:84:41:
a8:a4:62:61:71:19:2a:d1:a8:52:ce:8f:d8:1e:a9:
1c:a5:32:fa:8b:d5:33:15:80:fb:67:5c:0f:c2:14:
9f:8b:36:e7:79:be:16:78:28:fd:0a:7d:4c:d5:bf:
22:33:ee:e8:13:85:ba:94:c5:8a:dc:6c:75:66:35:
02:44:99:79:b5:d6:2d:73:f0:be:40:8c:0d:fd:a6:
02:7c:a8:cf:3e:6e:8e:9b:79:d9:84:06:d1:6c:94:
d6:88:13:d7:56:96:43:cd:43:b1:2e:cb:9a:67:7e:
cb:8f:47:3a:05:78:71:9b:7b:d3:a6:18:83:6e:b6:
8a:ac:08:5c:59:4b:2e:e3:c1:3c:e4:8e:21:08:3f:
3c:36:1e:bf:c9:08:60:d3:45:f7:31:2f:53:82:69:
9c:6d:1f:a7:e8:6a:e9:07:9b:c3:e9:c2:5c:b6:94:
ac:ea:5b:84:fa:3b:6a:b4:0a:d4:54:35:6f:0c:f1:
25:e1:d9:65:23:fc:d6:a7:79:ec:ae:f7:ef:6a:da:
0d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:0C:5F:33:BC:CF:4C:B4:F7:A7:FD:86:98:8B:5D:1B:52:D2:28:09
X509v3 Authority Key Identifier:
keyid:AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:f5:49:22:ad:13:9e:4d:50:a8:d8:15:fd:e2:5d:69:f9:6c:
eb:82:3c:1e:d1:a9:ad:fc:79:33:18:8b:5f:5c:8b:02:2c:89:
03:a8:00:ea:e8:a8:1c:49:4d:0e:11:32:04:a0:84:18:94:08:
77:74:57:4b:da:86:ef:9f:32:fa:c6:50:6b:b9:a0:40:73:ef:
dc:53:b3:93:56:9a:c5:f1:6c:5f:bc:1a:17:4c:e8:78:d5:27:
5f:c1:ab:41:73:26:45:71:ac:7e:0d:74:60:5a:00:b7:2b:c6:
f5:33:6e:25:7f:cd:6f:24:25:d1:a7:69:d2:9a:ea:47:02:d0:
69:cd:5c:20:93:4b:5f:07:46:40:d1:e8:1f:a7:e6:78:c5:13:
84:e9:89:75:15:96:99:b1:80:37:9c:8d:b8:3a:b2:44:3a:0d:
1a:98:e7:93:8f:d6:ef:33:3f:a5:a7:f9:db:00:60:41:0d:b8:
66:0e:23:27:0c:40:b2:05:fe:ec:0f:0a:1f:23:f8:c4:bd:44:
59:c0:1c:38:3a:06:5c:59:8f:6d:23:81:85:94:0f:29:51:ce:
31:e4:b1:b1:a6:99:36:5a:7e:94:59:48:e4:18:2a:15:3b:34:
bd:7c:3f:26:18:57:b3:62:7c:0f:46:08:2f:fc:86:0a:42:dd:
4c:57:d3:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:46:28 2026 by rpki-client