Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/68c008-69d3-436f-ad33-2dbe785422f8/1/dpoO0TWR1LhMp5qOtXciYHZlGhQ.mft
File: dpoO0TWR1LhMp5qOtXciYHZlGhQ.mft (raw, json)
Hash identifier: oI+0ZNrZuUi3LDzjW7JyDVH5CXZOaogqemEwC5JwOX8=
Subject key identifier: 42:A5:CA:0C:DE:F5:FC:1D:43:66:19:CC:FE:98:97:95:D1:B0:A3:67
Authority key identifier: 76:9A:0E:D1:35:91:D4:B8:4C:A7:9A:8E:B5:77:22:60:76:65:1A:14
Certificate issuer: /CN=769a0ed13591d4b84ca79a8eb577226076651a14
Certificate serial: 019D37C02AE31BAB455B72AFABB5A4153026
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpoO0TWR1LhMp5qOtXciYHZlGhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/68c008-69d3-436f-ad33-2dbe785422f8/1/dpoO0TWR1LhMp5qOtXciYHZlGhQ.mft
Manifest number: 0C9D
Signing time: Sun 29 Mar 2026 04:00:33 +0000
Manifest this update: Sun 29 Mar 2026 04:00:33 +0000
Manifest next update: Mon 30 Mar 2026 04:00:33 +0000
Files and hashes: 1: EN7XiEfKlFXBlZqtNN-oRqqWPD8.roa (hash: hOsYakPKoUo+w1ZXynrtNEWFAogAYXmthy1G2XJLeXc=)
2: dpoO0TWR1LhMp5qOtXciYHZlGhQ.crl (hash: vKTjiBATCHKPMDQDr5+fZcHMGxbhaItGNAjkt3KQ+fA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/68c008-69d3-436f-ad33-2dbe785422f8/1/dpoO0TWR1LhMp5qOtXciYHZlGhQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/68c008-69d3-436f-ad33-2dbe785422f8/1/dpoO0TWR1LhMp5qOtXciYHZlGhQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/dpoO0TWR1LhMp5qOtXciYHZlGhQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:2a:e3:1b:ab:45:5b:72:af:ab:b5:a4:15:30:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=769a0ed13591d4b84ca79a8eb577226076651a14
Validity
Not Before: Mar 29 04:00:33 2026 GMT
Not After : Mar 30 04:00:33 2026 GMT
Subject: CN=42a5ca0cdef5fc1d436619ccfe989795d1b0a367
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:57:f8:30:10:47:38:e8:17:7e:f0:a1:88:be:
9f:8d:83:89:1c:99:30:fe:45:f0:b5:c1:84:d9:fd:
8c:3d:b0:47:f1:7c:11:3f:4a:a5:55:fb:77:9e:36:
c1:97:3f:65:3c:4e:5f:7f:7e:21:19:22:32:14:88:
45:87:ff:d8:62:f6:14:12:c1:3b:8d:b7:4c:e5:6d:
be:13:fa:39:01:b0:6a:36:3c:31:22:1b:a3:e6:fa:
85:6d:27:7a:11:02:91:76:47:c0:03:27:64:4f:db:
7e:1f:2a:17:1b:e1:b4:07:5f:88:e1:f7:14:b1:7b:
69:fe:55:66:fa:7c:67:8b:5c:72:e9:97:2c:0f:03:
cc:b2:93:e8:2f:bc:95:3e:b2:1d:7f:fb:bf:44:5a:
ea:24:ab:20:5d:bc:43:29:76:2c:b9:eb:42:68:bf:
a2:56:03:6c:94:5e:0b:33:15:9f:bc:a9:05:af:1a:
c1:cb:48:0c:60:db:81:d0:f6:72:fd:00:ff:9a:3c:
a3:6e:3a:22:34:ad:45:96:af:3c:54:d6:24:09:7a:
6a:55:af:78:8b:0c:82:3e:1a:4a:5c:ed:57:c4:a2:
db:ac:ab:65:08:9d:0a:4a:49:40:b4:62:15:18:bb:
c7:8b:62:0c:20:56:4c:cd:cf:8b:0d:f2:94:01:c7:
9b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A5:CA:0C:DE:F5:FC:1D:43:66:19:CC:FE:98:97:95:D1:B0:A3:67
X509v3 Authority Key Identifier:
keyid:76:9A:0E:D1:35:91:D4:B8:4C:A7:9A:8E:B5:77:22:60:76:65:1A:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpoO0TWR1LhMp5qOtXciYHZlGhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/68c008-69d3-436f-ad33-2dbe785422f8/1/dpoO0TWR1LhMp5qOtXciYHZlGhQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/68c008-69d3-436f-ad33-2dbe785422f8/1/dpoO0TWR1LhMp5qOtXciYHZlGhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:3f:0c:30:72:d2:41:88:87:cf:33:6e:2a:21:dc:e4:07:59:
f6:1a:2d:03:a6:2b:0c:fc:02:66:1b:12:2e:78:51:64:55:90:
7a:08:de:77:ba:0f:19:d0:5b:a0:1b:06:ee:fd:c6:c8:a4:95:
1f:a3:2a:10:06:d1:89:30:d3:bc:9b:42:90:14:14:c8:5a:a4:
26:f9:9e:51:82:4a:94:0e:d3:dd:ac:26:99:5b:ac:28:7b:31:
cb:2f:e4:05:de:a4:59:cb:ba:d5:2c:48:f3:10:b8:67:89:96:
e5:48:7e:f6:bc:30:2a:7b:a4:93:77:82:33:4f:68:cd:1e:3e:
d1:ed:32:38:74:3f:10:24:33:76:53:35:17:9e:d6:2b:dd:91:
70:d9:89:e6:97:c8:1f:68:b2:1b:6d:bb:3f:12:d9:a1:69:b8:
9c:77:ee:b6:78:a5:1e:47:b8:7c:77:db:9b:e3:67:24:2c:07:
27:62:9b:04:51:b3:d6:b1:3a:60:32:95:4e:31:f4:da:cb:ae:
37:0c:79:86:5c:60:95:13:3d:d9:80:66:e4:4e:97:f3:6b:5c:
11:2c:60:a4:b9:21:41:65:18:73:64:72:b7:29:cb:bb:e5:b1:
b8:5e:24:b4:61:13:fd:9b:6a:d7:19:c2:d6:28:fc:7f:85:b1:
2c:e9:8d:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:10:03 2026 by rpki-client