Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.mft
File: dzDRbvGVhk8NvoqGca-2N2g7djs.mft (raw, json)
Hash identifier: HPLHQiBuhZefs1lU/0dcAigmO63tw+BGSdVIgaHAxc4=
Subject key identifier: DD:B2:98:4C:52:AB:B2:A4:8F:5D:30:73:75:AC:11:A1:9C:44:C0:77
Authority key identifier: 77:30:D1:6E:F1:95:86:4F:0D:BE:8A:86:71:AF:B6:37:68:3B:76:3B
Certificate issuer: /CN=7730d16ef195864f0dbe8a8671afb637683b763b
Certificate serial: 019F1340D8883ED82484AA2A9FC88EB1864A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzDRbvGVhk8NvoqGca-2N2g7djs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.mft
Manifest number: 02A3
Signing time: Mon 29 Jun 2026 12:00:44 +0000
Manifest this update: Mon 29 Jun 2026 12:00:44 +0000
Manifest next update: Tue 30 Jun 2026 12:00:44 +0000
Files and hashes: 1: dzDRbvGVhk8NvoqGca-2N2g7djs.crl (hash: 4XL8Siq7wlLIcylGJb7RFMjMnxE00HwIvBkSMzrXeE0=)
2: o2VO5oX-mcICPglQ6TuJXF-puG0.roa (hash: QGvRH3mpnPRRYbJ9WRorNDsxj8CF3Y8SPJsGxZhiJ6E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.mft
rsync://rpki.ripe.net/repository/DEFAULT/dzDRbvGVhk8NvoqGca-2N2g7djs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 12:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:13:40:d8:88:3e:d8:24:84:aa:2a:9f:c8:8e:b1:86:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7730d16ef195864f0dbe8a8671afb637683b763b
Validity
Not Before: Jun 29 12:00:44 2026 GMT
Not After : Jun 30 12:00:44 2026 GMT
Subject: CN=ddb2984c52abb2a48f5d307375ac11a19c44c077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:09:bb:6e:0e:72:40:7e:86:55:af:fa:ad:ad:
d9:9c:af:67:60:22:f8:04:53:e4:29:a9:da:86:70:
16:e4:3f:c8:d5:09:d7:ab:b5:0e:71:40:ec:60:06:
86:6b:9a:5c:d0:62:93:1d:47:3e:06:c6:b6:51:47:
51:ac:24:20:3f:b4:d9:3c:dc:e7:63:3d:7b:73:ee:
3b:4e:e2:3b:1c:c6:4b:8d:b3:5d:04:56:b9:7f:aa:
8c:a8:ac:88:62:72:8b:40:a3:7e:af:ec:b9:e8:74:
e7:f9:7a:7b:49:a3:6b:f4:f6:55:fa:75:5a:d2:70:
07:df:ea:0f:39:32:d1:38:42:4b:f5:ca:92:f0:6e:
68:5f:f2:88:bd:38:73:9b:6b:81:00:dc:82:11:01:
f3:ab:d8:a1:a7:54:94:09:f9:9f:cc:da:04:f9:58:
97:d3:44:a6:23:57:6e:e3:f2:3c:1a:db:28:76:c6:
c5:02:60:c5:04:f2:48:9a:3b:6e:18:27:9c:49:1e:
e9:ef:a9:79:fd:4d:6c:4a:3e:13:5c:b1:cf:59:0e:
ca:06:2c:9e:da:86:a7:a6:c2:39:a5:0e:71:f9:3d:
e9:77:17:9a:cc:cb:52:80:d4:fd:ec:4d:1d:6d:fe:
36:8a:4c:96:cf:33:4e:0f:a6:b0:8c:68:93:fb:65:
b0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:B2:98:4C:52:AB:B2:A4:8F:5D:30:73:75:AC:11:A1:9C:44:C0:77
X509v3 Authority Key Identifier:
keyid:77:30:D1:6E:F1:95:86:4F:0D:BE:8A:86:71:AF:B6:37:68:3B:76:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzDRbvGVhk8NvoqGca-2N2g7djs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:10:96:f1:6a:69:15:67:81:b0:1a:63:65:4d:10:e5:97:e3:
03:70:f0:83:e1:7a:ad:78:56:31:d0:70:c5:df:f5:92:69:47:
d8:df:08:f4:8f:b1:57:a2:33:3f:9c:b7:7a:4a:3d:f0:1c:32:
61:2b:36:b4:52:19:ab:12:6b:1c:bc:ac:cf:ae:cc:10:39:ce:
9a:ae:b6:5c:00:34:01:62:a4:31:0c:54:b9:bd:eb:31:16:35:
2a:da:09:8d:ba:a0:d1:a9:0d:ec:27:45:1d:cb:70:0a:21:01:
c1:3b:58:0e:d1:51:19:4d:1f:82:91:47:08:31:1b:3e:5d:37:
4d:22:5d:2c:cb:d5:c6:b1:f0:9a:a2:b7:a2:c1:aa:3a:5a:53:
72:5a:16:ff:f4:25:e9:b6:bd:78:03:71:f0:80:bc:9d:bd:5e:
3b:64:a1:ff:7a:67:b6:e7:d7:fb:88:d2:39:57:2c:20:ba:67:
2d:0a:68:d6:1a:a3:25:3e:2f:79:69:ce:bc:d8:70:39:fe:38:
b4:a2:9b:f0:d8:fb:f6:5a:be:12:8e:d0:b1:0b:6c:15:73:10:
9a:d8:cc:bf:cc:55:0f:4f:07:b5:65:d7:54:65:5b:8d:fc:c3:
1e:a2:bb:c0:2a:88:63:4e:d8:9d:70:06:df:c1:11:8e:49:6e:
2d:02:8a:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 15:42:28 2026 by rpki-client