Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
File: cDbgTlO505Z8-dQY54tgu60HWDE.mft (raw, json)
Hash identifier: XJuEeJALTSRNCcE9+MVT7cTPWt3Wj48eW9xzTmkFJME=
Subject key identifier: 6D:72:E6:87:58:57:A9:5C:AF:FE:B5:FF:79:39:3B:86:29:51:77:BC
Authority key identifier: 70:36:E0:4E:53:B9:D3:96:7C:F9:D4:18:E7:8B:60:BB:AD:07:58:31
Certificate issuer: /CN=7036e04e53b9d3967cf9d418e78b60bbad075831
Certificate serial: 019D3940A8583649FB7917133005AA8B6615
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cDbgTlO505Z8-dQY54tgu60HWDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
Manifest number: 0433
Signing time: Sun 29 Mar 2026 11:00:31 +0000
Manifest this update: Sun 29 Mar 2026 11:00:31 +0000
Manifest next update: Mon 30 Mar 2026 11:00:31 +0000
Files and hashes: 1: S00d78TItkDHq888CPL8snBiq8U.roa (hash: xbbWOfkY4EBmGgNTfua9nJ1QvCvgAkZPsqc/WKzPEio=)
2: cDbgTlO505Z8-dQY54tgu60HWDE.crl (hash: nzwxwQGet+lARPNKiEt7UWNXaOr2gwcC2z+XG/zlLCg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cDbgTlO505Z8-dQY54tgu60HWDE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 11:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:a8:58:36:49:fb:79:17:13:30:05:aa:8b:66:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7036e04e53b9d3967cf9d418e78b60bbad075831
Validity
Not Before: Mar 29 11:00:31 2026 GMT
Not After : Mar 30 11:00:31 2026 GMT
Subject: CN=6d72e6875857a95caffeb5ff79393b86295177bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:18:f5:f3:a2:1d:75:25:6e:b5:34:81:f9:c8:
40:f8:0a:ff:bb:18:b8:8d:8a:b5:4a:e8:ee:15:ff:
5a:17:29:bf:33:99:8b:e3:90:b1:c1:f2:b7:5b:fc:
f6:93:ae:4d:ec:b5:0a:5f:1b:5a:ac:55:a7:19:f6:
af:e8:55:a4:63:46:fa:bb:7b:f2:42:df:57:3b:98:
ca:af:aa:c2:85:1c:ea:0e:a1:78:7f:b8:fa:c4:b7:
2c:d9:07:65:65:22:14:eb:c8:2a:49:fb:44:19:2a:
e6:32:0e:ef:88:9d:06:ad:8e:31:db:31:c2:ab:fd:
6d:55:65:51:c7:3c:f1:76:15:35:1b:8e:70:28:db:
64:5f:ea:cb:77:59:1f:31:bb:46:96:ce:be:c0:25:
33:45:7a:5f:c7:12:12:b4:9e:b3:9c:15:df:86:19:
ff:67:18:98:32:de:52:0e:d2:9c:85:b8:d0:ac:69:
75:b7:ed:c9:b3:70:51:77:42:13:3a:41:67:98:ae:
38:95:2a:40:75:f7:92:73:0d:38:1b:16:f3:01:50:
8a:6f:12:fb:93:70:04:ea:e6:36:4b:ee:08:15:04:
4f:c0:68:0a:cc:e2:31:fa:86:4f:4d:9b:98:27:b1:
8b:e9:83:64:1f:ba:e8:58:d0:28:9a:44:4c:80:65:
5b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:72:E6:87:58:57:A9:5C:AF:FE:B5:FF:79:39:3B:86:29:51:77:BC
X509v3 Authority Key Identifier:
keyid:70:36:E0:4E:53:B9:D3:96:7C:F9:D4:18:E7:8B:60:BB:AD:07:58:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cDbgTlO505Z8-dQY54tgu60HWDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:b1:dd:59:ce:63:d4:e6:76:bd:32:7b:24:83:44:3d:1f:77:
c6:25:6b:a4:8e:82:13:6b:46:e0:5f:f0:35:6c:0b:55:27:39:
78:15:ed:6a:7d:58:1a:df:74:eb:13:2f:f5:c9:0d:05:27:63:
71:86:58:14:60:6e:b5:4c:a0:5f:b1:4e:01:84:64:8d:72:cf:
3c:5e:a7:07:90:6a:5e:0e:b4:70:86:3b:0c:38:28:89:d4:cd:
00:71:ad:92:1f:ff:d2:9b:76:e3:6b:64:44:45:87:98:b0:80:
21:39:42:f9:9e:39:31:ce:5d:4b:e6:ff:7c:08:c3:c2:5b:60:
ef:21:8e:5e:1d:d1:c1:ac:c6:55:64:aa:e0:53:d3:00:8c:52:
3f:14:a2:8e:d2:a5:6e:6c:7a:a4:57:a8:96:a2:f6:99:ec:ad:
5e:c6:ef:b5:52:42:49:4d:6d:2c:16:b1:d0:9a:79:de:c9:64:
b5:ad:28:45:1a:8c:52:d9:92:96:17:d1:2a:cf:b6:1d:e7:c3:
b3:3d:b8:34:2b:3d:f5:54:13:23:30:ce:78:70:f0:cb:73:14:
fb:0d:d2:94:24:b3:c5:c5:46:93:72:60:da:cd:05:fd:92:65:
67:66:7e:b1:40:10:a2:dd:5c:12:13:24:3a:e1:a5:19:fc:76:
01:54:94:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:53:07 2026 by rpki-client