Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.mft
File: DloI_DRpD1LbDCt-R-jlOIMUWpg.mft (raw, json)
Hash identifier: iu0Wp+C6OzF7jhIDW7i/Qrga6AQR4YERnblTmdvRrsg=
Subject key identifier: B2:E9:3D:20:49:72:F2:80:3D:E0:FA:57:3F:0B:34:88:4F:7C:EE:25
Authority key identifier: 0E:5A:08:FC:34:69:0F:52:DB:0C:2B:7E:47:E8:E5:38:83:14:5A:98
Certificate issuer: /CN=0e5a08fc34690f52db0c2b7e47e8e53883145a98
Certificate serial: 019D389C69080FD3F8AE2AF068E89EA346D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DloI_DRpD1LbDCt-R-jlOIMUWpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.mft
Manifest number: 03A0
Signing time: Sun 29 Mar 2026 08:01:07 +0000
Manifest this update: Sun 29 Mar 2026 08:01:07 +0000
Manifest next update: Mon 30 Mar 2026 08:01:07 +0000
Files and hashes: 1: DloI_DRpD1LbDCt-R-jlOIMUWpg.crl (hash: SWGs7BbNy5XdW7JusI9Dx4iooFl5jGP7rnjpO3ZzkuE=)
2: ZHi1ZhCdWfH9BoGN5VcU78t29bk.roa (hash: SRJcc4sRWkIGgmHfVj6UPyJviHaRkjxeQWqok2u9PGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/DloI_DRpD1LbDCt-R-jlOIMUWpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:69:08:0f:d3:f8:ae:2a:f0:68:e8:9e:a3:46:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e5a08fc34690f52db0c2b7e47e8e53883145a98
Validity
Not Before: Mar 29 08:01:07 2026 GMT
Not After : Mar 30 08:01:07 2026 GMT
Subject: CN=b2e93d204972f2803de0fa573f0b34884f7cee25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:62:b0:b4:f3:6a:c1:5b:c6:e3:3e:16:b6:fd:
cd:cd:53:f9:f3:0c:f8:69:63:1c:09:42:4f:60:61:
c0:fc:15:35:39:c1:e1:29:c4:2d:10:ec:b2:ad:7f:
f9:b7:a2:65:8f:3c:e6:ec:3c:41:c4:c1:4d:24:22:
8a:96:9c:27:14:0b:05:44:96:1c:37:a7:09:18:f2:
a7:10:e7:04:68:49:7d:a0:fe:c3:74:60:45:d3:fd:
61:76:1b:86:83:a0:15:ba:a6:bc:c9:8d:ae:9f:cc:
55:ba:99:db:b2:41:c2:e8:89:b0:d0:c2:e3:6b:c7:
14:cf:00:8e:23:38:d3:c4:14:6a:cc:92:2d:eb:32:
7f:d0:78:1e:8b:c1:4d:d9:bd:51:67:4c:0c:51:68:
9e:81:39:45:fb:cf:3f:09:4b:16:dc:b2:5d:71:bf:
7f:98:6c:d2:f9:6c:0c:d4:c0:7b:b6:86:aa:3b:58:
12:de:67:fd:10:d1:85:d9:bc:78:ef:7b:36:e7:97:
d8:5c:b8:a7:19:9e:4d:3c:96:01:2e:37:c8:79:c5:
76:86:f1:53:f2:fe:19:46:ff:59:22:18:e6:07:d7:
60:f1:80:3a:19:87:ef:ba:0f:69:64:15:e0:2d:d8:
bf:b5:25:22:df:97:d2:d0:94:80:48:04:be:40:7d:
aa:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E9:3D:20:49:72:F2:80:3D:E0:FA:57:3F:0B:34:88:4F:7C:EE:25
X509v3 Authority Key Identifier:
keyid:0E:5A:08:FC:34:69:0F:52:DB:0C:2B:7E:47:E8:E5:38:83:14:5A:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DloI_DRpD1LbDCt-R-jlOIMUWpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/017849-7ccf-4815-bc69-a77f0b32144e/1/DloI_DRpD1LbDCt-R-jlOIMUWpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:6c:5e:13:09:08:40:26:94:2f:f7:ea:e7:f9:30:5d:69:51:
a6:10:b3:98:ef:1e:2a:66:c1:22:5f:53:4a:84:8f:f2:01:63:
aa:cc:1d:9f:93:7b:da:c1:fa:af:c2:7c:69:ac:a1:b3:37:44:
e1:e2:4e:89:eb:c1:cf:f2:69:d4:3e:38:df:63:b1:94:c4:38:
49:76:64:04:c4:0a:7e:0e:0a:36:a8:ac:e9:31:87:e5:9c:59:
c9:dc:9c:b3:d2:8c:c3:8a:dc:c5:20:4d:a6:2f:f3:db:e0:68:
a6:1a:0d:a1:dc:c7:b4:f5:1c:c1:23:17:20:58:a9:7a:cc:00:
1c:85:66:7c:1a:68:de:2f:42:b9:a2:3d:88:ad:45:f1:74:f6:
53:71:68:0a:72:ea:14:c5:09:de:f0:79:05:56:e7:cb:6f:a7:
81:a0:df:23:eb:88:ae:ce:66:aa:45:9f:ef:57:16:9c:d8:9f:
a4:67:db:45:7e:f7:5e:8d:4e:fe:e9:24:32:a8:68:9a:8a:a1:
9d:90:fc:47:6e:35:47:e7:ed:e7:01:ea:ec:bb:3b:2c:d8:4d:
8a:f7:ba:06:83:77:a3:44:39:08:f8:f0:d1:e8:30:91:2a:da:
ea:5a:41:23:4b:4f:c3:39:ba:1a:17:53:43:4d:bc:67:e6:9c:
d9:46:09:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:24:50 2026 by rpki-client