Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.mft
File: dLCDZQKVGJ8AmqdMEsvGHuI_p1M.mft (raw, json)
Hash identifier: I/Cs5XLRG2rBTkIWXfwt0hVpHQw0uTLHogNJlUYmiW4=
Subject key identifier: 53:39:BE:8C:16:69:A1:EF:D9:73:AB:75:91:45:25:C3:C1:CE:37:70
Authority key identifier: 74:B0:83:65:02:95:18:9F:00:9A:A7:4C:12:CB:C6:1E:E2:3F:A7:53
Certificate issuer: /CN=74b083650295189f009aa74c12cbc61ee23fa753
Certificate serial: 019D38656F96AD14A6D53D6C02ACD6F287C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 07:01:04 +0000
Manifest this update: Sun 29 Mar 2026 07:01:04 +0000
Manifest next update: Mon 30 Mar 2026 07:01:04 +0000
Files and hashes: 1: dLCDZQKVGJ8AmqdMEsvGHuI_p1M.crl (hash: VwTJNZjNxBhBX5taVOb3zavQHLNdsSi6K6WWqqxOYM4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:6f:96:ad:14:a6:d5:3d:6c:02:ac:d6:f2:87:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b083650295189f009aa74c12cbc61ee23fa753
Validity
Not Before: Mar 29 07:01:04 2026 GMT
Not After : Mar 30 07:01:04 2026 GMT
Subject: CN=5339be8c1669a1efd973ab75914525c3c1ce3770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2d:40:bf:15:bc:07:49:e0:dc:5c:7f:cb:8b:
77:3f:d5:43:dd:7a:58:10:e9:92:bf:e5:1f:ee:b7:
07:7e:3d:85:16:64:e8:5f:5b:61:22:18:a8:a1:be:
2b:b1:68:5f:39:90:83:9e:99:92:e6:0a:e9:d8:13:
aa:f9:46:6a:4f:8a:a8:aa:95:4c:ee:74:7b:2d:ae:
79:bf:1b:c2:fe:f4:fe:af:af:74:78:6b:1f:e1:79:
ff:b1:47:98:88:28:43:8f:c8:54:c1:a9:50:bd:e1:
ad:73:fc:f7:58:aa:b8:87:95:ac:8f:cd:65:11:18:
9e:97:fa:3a:22:3d:f2:39:3e:76:d9:85:e9:16:7e:
7c:55:51:e6:25:c6:c1:f7:8e:ee:53:41:bb:da:70:
2b:1f:ea:36:07:5f:9d:fe:6a:e9:d8:4e:a1:5d:21:
de:0f:29:12:9b:7e:83:9d:4e:9c:d5:94:ee:ff:c1:
3e:33:55:a9:a4:84:84:f6:65:8d:b1:5f:37:a1:56:
76:64:41:38:fd:97:97:b3:5d:7d:94:31:65:87:ce:
70:ce:77:95:2c:fe:ea:f8:96:80:21:d1:c4:5a:98:
8a:0c:b6:50:c5:f7:76:df:30:97:0a:03:7b:8f:d9:
0a:a1:94:4d:6c:a1:64:50:cf:25:b1:b3:ed:bb:54:
39:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:39:BE:8C:16:69:A1:EF:D9:73:AB:75:91:45:25:C3:C1:CE:37:70
X509v3 Authority Key Identifier:
keyid:74:B0:83:65:02:95:18:9F:00:9A:A7:4C:12:CB:C6:1E:E2:3F:A7:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/d531a8-02ae-4b0b-8f44-5287698aff3c/1/dLCDZQKVGJ8AmqdMEsvGHuI_p1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:b2:82:2c:f3:52:0c:db:9b:d5:20:a9:e6:4a:df:6e:64:e7:
79:32:19:67:3d:20:2b:59:58:33:ee:4a:9e:ac:41:4f:d9:0a:
2c:df:aa:c4:b3:e9:e7:e3:3f:0a:4a:bf:55:05:8c:63:f4:87:
8a:94:eb:1c:00:8e:ef:1b:60:7d:85:8a:90:af:5e:e8:34:1f:
65:45:66:d8:55:08:f5:0c:41:e2:31:f0:1e:40:6c:47:f5:59:
9b:00:1d:00:d5:50:dc:f6:cd:bd:97:70:4f:80:fa:cd:11:60:
6a:3c:0c:f1:4f:f7:7c:a6:91:30:8d:d7:99:fa:5f:3f:e5:f6:
58:bb:0f:d8:bf:85:73:18:a7:23:a7:3f:95:f9:f0:c7:38:63:
c9:0c:82:9a:e6:19:66:81:09:3c:b2:ee:44:63:b4:3a:93:61:
2e:99:48:e8:41:29:d8:18:3e:30:e7:17:c9:89:e6:1c:fc:6a:
75:cf:fd:95:3c:a0:c1:31:f9:f7:5f:14:18:6c:aa:96:88:e7:
94:30:12:94:ca:6a:c6:85:ba:5e:d3:ab:88:73:22:d8:9c:92:
4c:87:70:02:0e:c0:be:a4:4b:0c:48:62:68:f1:d4:db:98:c0:
4f:6e:e5:97:fb:21:cd:6e:d6:55:10:b3:55:57:5a:b4:ab:5a:
04:46:f4:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:45:57 2026 by rpki-client