Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/a63d6d-5453-4c01-98b8-6c020968e75a/1/DGZbHrEnmK4OUTDZpLXIYPMn-xo.mft
File: DGZbHrEnmK4OUTDZpLXIYPMn-xo.mft (raw, json)
Hash identifier: eqIItqQYLBxClfEMeyusUnhqRSatmNVTyckdqgwgYMY=
Subject key identifier: E4:FF:0B:73:06:57:06:BF:90:D4:42:A3:E1:E0:20:16:9E:1F:AD:FA
Authority key identifier: 0C:66:5B:1E:B1:27:98:AE:0E:51:30:D9:A4:B5:C8:60:F3:27:FB:1A
Certificate issuer: /CN=0c665b1eb12798ae0e5130d9a4b5c860f327fb1a
Certificate serial: 019D39409771E9AFF9D9877F7741A429D60C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DGZbHrEnmK4OUTDZpLXIYPMn-xo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/a63d6d-5453-4c01-98b8-6c020968e75a/1/DGZbHrEnmK4OUTDZpLXIYPMn-xo.mft
Manifest number: 2D
Signing time: Sun 29 Mar 2026 11:00:27 +0000
Manifest this update: Sun 29 Mar 2026 11:00:27 +0000
Manifest next update: Mon 30 Mar 2026 11:00:27 +0000
Files and hashes: 1: DGZbHrEnmK4OUTDZpLXIYPMn-xo.crl (hash: 0Ru5Mm1fhAT66rGeJYXKYCWYs3kPF5IoD0hI10LJnqI=)
2: HWDXKcpeYuIm0JZrEg_ziDSr5-U.roa (hash: nvDBJqWAeki2gr4Pm4DWKQgwgBSew3rmSC0QFEN6mlQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/a63d6d-5453-4c01-98b8-6c020968e75a/1/DGZbHrEnmK4OUTDZpLXIYPMn-xo.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/a63d6d-5453-4c01-98b8-6c020968e75a/1/DGZbHrEnmK4OUTDZpLXIYPMn-xo.mft
rsync://rpki.ripe.net/repository/DEFAULT/DGZbHrEnmK4OUTDZpLXIYPMn-xo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 11:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:97:71:e9:af:f9:d9:87:7f:77:41:a4:29:d6:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c665b1eb12798ae0e5130d9a4b5c860f327fb1a
Validity
Not Before: Mar 29 11:00:27 2026 GMT
Not After : Mar 30 11:00:27 2026 GMT
Subject: CN=e4ff0b73065706bf90d442a3e1e020169e1fadfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4f:35:0e:db:88:b5:e4:3f:fd:14:45:3b:67:
c5:6f:9c:e6:56:b4:51:af:da:ce:12:f6:b3:00:2c:
2e:f2:4f:13:80:7e:28:be:6d:dd:37:f4:d9:ea:74:
92:ed:1e:f2:27:0f:34:58:87:58:fd:c8:5d:2e:b5:
2b:26:81:0b:fd:94:28:30:df:93:a9:48:12:c9:98:
50:23:8a:1d:c8:2d:64:0c:1d:26:b2:f4:6c:dd:f5:
82:6c:2b:9b:ae:ee:ec:45:f6:5d:cb:94:bc:8b:cc:
54:7a:f1:2f:dc:e5:f8:ba:90:e7:2a:ba:63:42:ce:
91:66:d7:76:c9:cf:8c:32:f6:2b:f9:d1:5a:24:5e:
9f:93:81:da:46:cc:64:f2:85:68:25:56:47:fa:1a:
f0:28:8d:20:d7:1a:fa:36:66:c5:02:e9:01:ba:d3:
9b:e5:cd:df:1a:61:b1:bb:6c:9b:14:a9:6c:06:d0:
e7:bb:e8:58:23:9b:28:36:b0:7d:99:57:27:a3:d1:
a7:8c:17:09:04:7b:55:f0:16:de:c4:3e:34:ea:31:
28:7e:7f:75:46:df:d1:81:e8:3c:f5:84:00:e5:23:
8a:2d:d8:df:ae:b9:f1:de:67:6b:da:9a:fd:47:c1:
c4:32:c9:4e:ca:a1:77:2a:72:9b:6b:95:b0:4a:2c:
e1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:FF:0B:73:06:57:06:BF:90:D4:42:A3:E1:E0:20:16:9E:1F:AD:FA
X509v3 Authority Key Identifier:
keyid:0C:66:5B:1E:B1:27:98:AE:0E:51:30:D9:A4:B5:C8:60:F3:27:FB:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DGZbHrEnmK4OUTDZpLXIYPMn-xo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/a63d6d-5453-4c01-98b8-6c020968e75a/1/DGZbHrEnmK4OUTDZpLXIYPMn-xo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/a63d6d-5453-4c01-98b8-6c020968e75a/1/DGZbHrEnmK4OUTDZpLXIYPMn-xo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:75:fa:c3:db:4f:ff:93:14:4a:06:55:14:df:a4:68:1d:2b:
92:e0:aa:33:5e:d8:16:38:6c:1b:ca:e0:ce:ef:dc:2c:29:2b:
09:5a:d7:70:03:fa:92:ac:4b:be:35:6f:d0:85:03:8b:a5:e8:
dc:b8:60:fb:31:fc:ad:81:f4:dd:de:85:c0:06:21:b4:05:a0:
e9:57:40:c4:65:62:d2:f3:e0:e3:77:8e:2a:50:5f:15:d4:83:
ca:ca:62:d9:bd:90:a2:bc:ea:b3:f7:f5:97:fc:94:46:7c:b2:
79:67:98:7d:f4:8f:e0:0b:bb:a1:60:76:32:cd:42:f8:03:f0:
80:d5:a4:c2:dd:e6:05:ea:e9:86:08:38:54:0e:b5:31:93:6a:
cc:bc:31:62:cc:98:aa:1c:9b:39:84:b6:ea:cc:c0:7a:f7:69:
ff:28:d0:05:fc:f4:5b:a1:73:b1:62:33:29:02:5c:27:b7:e2:
05:13:50:80:a0:19:d1:c9:f5:45:b4:3f:8f:dd:21:de:f1:ee:
15:1a:18:6b:65:bc:15:d1:05:15:a0:a3:51:19:e3:ed:70:13:
c0:82:2e:60:70:ec:2a:50:08:b2:0b:d9:20:71:ef:80:0b:f5:
c4:f5:91:71:21:b9:b5:4c:ae:ea:59:3b:26:ff:93:19:a8:c3:
20:d4:86:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:14:28 2026 by rpki-client