Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
File: dzW3DconD8uOS5CStyADZBOPXfE.mft (raw, json)
Hash identifier: /X0MiuXDn9nz7l0fzc7MP9xFdsC+na4Cq9RPljfxjXY=
Subject key identifier: 15:06:97:15:BF:45:07:CD:5B:8C:D7:B0:BC:76:22:A2:07:0F:95:5E
Authority key identifier: 77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1
Certificate issuer: /CN=7735b70dca270fcb8e4b9092b7200364138f5df1
Certificate serial: 019D38D2F99E9FFC0525BA1C2A1717638CB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 09:00:43 +0000
Manifest this update: Sun 29 Mar 2026 09:00:43 +0000
Manifest next update: Mon 30 Mar 2026 09:00:43 +0000
Files and hashes: 1: AOBKl1z9iGQ7udCEUVrOWOKRRJM.roa (hash: szJEeXPbG7L6V12RPqYR0G9jxj6sIKpxCqCIcFUY2rQ=)
2: dzW3DconD8uOS5CStyADZBOPXfE.crl (hash: 0NjNkFoVI1tG7rHyOZVmNN/sEpSjrutt3bFGKzXEyts=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:f9:9e:9f:fc:05:25:ba:1c:2a:17:17:63:8c:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7735b70dca270fcb8e4b9092b7200364138f5df1
Validity
Not Before: Mar 29 09:00:43 2026 GMT
Not After : Mar 30 09:00:43 2026 GMT
Subject: CN=15069715bf4507cd5b8cd7b0bc7622a2070f955e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d9:0d:83:15:d9:78:ef:db:2f:3b:99:93:70:
a4:ce:f6:f7:08:29:ad:ca:bf:d0:b5:2f:36:2d:17:
af:a1:98:00:82:01:f2:a1:f5:62:20:c7:35:ea:a3:
58:f1:35:1b:b2:e1:59:0a:87:f7:19:6e:36:20:43:
2d:e3:18:66:24:23:1c:45:a9:58:a2:7d:87:92:2a:
6b:1f:f9:79:93:c1:e7:c2:61:d1:52:12:d8:83:32:
4c:50:5b:d3:75:62:68:f1:37:8d:8c:7a:ed:d4:1b:
05:03:7b:4a:18:5f:64:34:20:9b:2c:c8:31:94:0c:
ce:96:0b:4a:81:d8:c8:ed:e9:e3:01:d0:41:5f:d6:
be:e6:d6:2b:59:9c:19:2c:88:85:2c:c4:38:e6:49:
71:d6:40:5f:d0:bc:c7:4e:22:7f:1f:32:07:37:0c:
c8:14:2c:d6:bd:f4:0b:79:60:cb:13:cc:58:a7:b5:
43:a9:2b:d3:b2:cb:b2:6a:a1:8d:7f:28:95:f6:1d:
34:3f:98:db:3f:20:50:dd:31:2e:e1:ef:93:71:af:
bc:df:96:1a:eb:7f:6d:45:42:75:25:85:32:be:45:
67:7a:3f:f7:2b:9e:f3:9c:f6:1f:83:95:9c:28:94:
1d:df:42:6f:32:1a:f9:62:da:6f:cc:a4:58:16:59:
59:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:06:97:15:BF:45:07:CD:5B:8C:D7:B0:BC:76:22:A2:07:0F:95:5E
X509v3 Authority Key Identifier:
keyid:77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:9c:7d:2a:25:f0:8d:76:27:25:88:0e:3a:72:2a:47:9b:1f:
5d:85:1c:d5:b1:b7:84:db:71:ea:e0:30:3c:40:69:77:ca:61:
1a:f0:60:16:ea:4d:bd:09:3a:46:e2:6f:22:81:f5:bf:2a:39:
dc:34:bb:94:9e:af:b8:70:4f:de:c0:12:3a:6b:ca:6b:ed:3e:
06:0e:67:b8:de:34:ef:e1:67:df:47:ff:03:30:6c:bc:38:cd:
8e:ff:41:3e:22:db:65:57:fa:2e:88:47:45:9b:69:d6:56:60:
ab:a1:8c:9d:9a:34:7f:57:09:be:cb:fb:67:26:af:dd:a6:8d:
79:46:7f:ed:a2:7a:84:5f:f9:0a:43:76:c0:fb:19:d9:fa:79:
5a:66:00:db:59:10:25:e9:4c:5b:88:a1:25:56:62:7e:d3:71:
ce:d5:4b:05:93:2e:af:0b:b8:f3:64:ce:f6:85:60:91:44:b2:
6a:56:93:ed:6c:5a:0b:e0:d6:36:99:a0:11:2e:30:19:e0:9d:
1f:3e:c6:e7:22:1e:ac:ae:c5:f0:64:87:b4:82:13:6a:c1:aa:
b6:86:38:7c:33:07:4f:09:01:6f:f5:0a:8d:70:15:c1:db:32:
57:e0:d1:79:1e:f4:99:00:33:e9:d2:5a:ae:2a:4b:57:48:03:
27:9b:68:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:23:35 2026 by rpki-client