Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
File: dpduc3A5pphnL-lSSt0zfR_1LP0.mft (raw, json)
Hash identifier: MZbw0U3bYfyaaR6zsWNT0t/F5JQVVYh32yDALJJpP6A=
Subject key identifier: CF:35:7D:91:E4:76:F5:7C:C1:9B:14:A5:3F:EB:46:9C:34:36:05:FC
Authority key identifier: 76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
Certificate issuer: /CN=76976e737039a698672fe9524add337d1ff52cfd
Certificate serial: 019D38D3AD068D62F942C37AC30B8AA01388
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 09:01:29 +0000
Manifest this update: Sun 29 Mar 2026 09:01:29 +0000
Manifest next update: Mon 30 Mar 2026 09:01:29 +0000
Files and hashes: 1: P3I-kmPN6AuB9rj_rF8BnGgdu-E.roa (hash: 94bU66dX6J/YU6mZi7lnaxiIrZDpbyRdxL2MOQ0QKYQ=)
2: dpduc3A5pphnL-lSSt0zfR_1LP0.crl (hash: LbWPE7BVFvrglSbGixQ58vlpg18WGyflW/WUIKvcZfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:ad:06:8d:62:f9:42:c3:7a:c3:0b:8a:a0:13:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76976e737039a698672fe9524add337d1ff52cfd
Validity
Not Before: Mar 29 09:01:29 2026 GMT
Not After : Mar 30 09:01:29 2026 GMT
Subject: CN=cf357d91e476f57cc19b14a53feb469c343605fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5e:91:19:d9:dd:67:5e:2f:6f:53:92:44:3b:
d6:a3:88:79:e6:98:71:d6:68:dd:65:eb:d0:dd:17:
96:fc:2d:0f:32:f8:f3:c2:40:0c:18:4e:f6:e2:b9:
e8:d0:68:1e:25:15:e8:df:26:af:06:cf:60:0d:db:
8f:5a:73:85:b1:1d:82:ff:82:cf:9d:1d:ff:fd:30:
66:95:23:25:48:9c:35:c1:2f:07:87:34:e9:a1:c7:
e3:23:5e:b8:eb:66:76:f0:e3:3f:2d:ad:ee:c3:3f:
08:d4:10:46:39:46:42:08:af:d1:b0:8a:c1:12:dc:
8e:76:5d:48:a2:33:19:48:bf:d1:68:41:1d:d2:e8:
cf:98:f6:37:6a:b3:c5:13:17:0e:98:83:49:5d:58:
0a:15:9f:a5:76:eb:38:2a:90:cf:b1:db:a5:94:c1:
1f:e1:b3:b0:94:d5:77:de:b3:31:0e:b9:1e:53:1e:
29:5e:96:8c:74:e4:89:cb:5b:8f:ca:e3:c9:48:e5:
96:20:c6:0d:f5:55:bf:63:1c:d5:4e:bd:28:60:d6:
c5:82:0f:5e:0b:29:32:52:fc:55:9d:f1:6e:8c:e7:
b9:da:7c:25:5e:f5:65:2c:72:e2:8c:79:df:f6:80:
b0:01:c7:c4:78:d1:34:03:50:dc:b5:14:a0:44:72:
71:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:35:7D:91:E4:76:F5:7C:C1:9B:14:A5:3F:EB:46:9C:34:36:05:FC
X509v3 Authority Key Identifier:
keyid:76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:51:08:21:7e:6d:0f:6f:6d:69:b7:71:c3:48:45:e5:51:4d:
ed:ef:bb:fe:d8:59:9e:58:fa:44:88:5d:34:70:65:67:2d:f0:
bb:03:55:cf:30:c5:9f:74:d8:9e:2f:cd:a1:9e:8c:f5:42:9c:
fa:ed:df:44:1a:ac:8b:8e:88:84:67:cb:c3:1c:78:05:03:f9:
d0:19:34:ec:a3:90:31:05:07:3d:29:65:dc:a1:26:17:16:78:
87:59:cd:00:c2:3b:58:e1:54:ab:18:b8:5d:e4:9e:68:b0:2e:
06:30:c2:e3:cd:f8:3c:af:0b:d4:7f:fc:2e:48:74:5a:48:6d:
38:e9:13:11:86:8b:e3:1c:e6:68:aa:67:00:6f:8d:54:f6:f4:
38:46:00:ab:b3:a4:6c:47:c9:4a:b0:fd:70:3b:3e:2e:0f:94:
e9:08:09:6b:68:f5:2d:64:8f:ed:82:cb:fe:c2:e9:f7:ed:1c:
a4:f1:5a:6b:11:8c:dd:bf:6d:45:1c:15:9f:f3:53:28:a5:af:
c6:d9:8d:09:2a:0f:6d:d3:02:be:31:55:50:62:49:7b:77:5f:
61:15:69:b5:d2:a5:94:ce:cb:63:db:8e:94:cd:51:bf:26:9f:
29:77:4f:5f:3a:54:85:1d:65:ed:b6:ed:25:26:bc:7a:78:83:
da:dc:ed:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:40 2026 by rpki-client