Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
File: doZr5p83cHIKbcxHkuaA_H9zIaE.mft (raw, json)
Hash identifier: nz4dogyn4rEDNLPtU5yEUbdvk8q3w/bbBUok/FU1cZ8=
Subject key identifier: 24:69:2D:C5:7E:C1:86:FC:37:EE:08:F6:C5:84:F5:C4:C3:06:41:60
Authority key identifier: 76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
Certificate issuer: /CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Certificate serial: 019D3941888683BB1E0EBE37330A912E1404
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 11:01:29 +0000
Manifest this update: Sun 29 Mar 2026 11:01:29 +0000
Manifest next update: Mon 30 Mar 2026 11:01:29 +0000
Files and hashes: 1: doZr5p83cHIKbcxHkuaA_H9zIaE.crl (hash: /lykcc/B1tTPRMr4ll/FhqZsLS4Y/l85Fne61Tf4l58=)
2: qyikk7bS12oqKnZ6ZpePEhFi5EA.roa (hash: iJ4m2Ce6hYzteRUMXY0l32a188WmXjWtAniRs3aLn1M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:88:86:83:bb:1e:0e:be:37:33:0a:91:2e:14:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Validity
Not Before: Mar 29 11:01:29 2026 GMT
Not After : Mar 30 11:01:29 2026 GMT
Subject: CN=24692dc57ec186fc37ee08f6c584f5c4c3064160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:87:93:a4:a1:58:a3:5c:2f:90:07:a8:e4:93:
37:e8:93:d3:6f:a6:f9:77:e8:12:ef:40:4d:7c:26:
03:60:93:ca:25:c2:9d:4f:cc:45:2b:18:52:3c:41:
fc:0c:2a:1c:3c:e5:fa:ec:5e:1b:aa:b7:db:62:ca:
f6:0e:6c:a8:45:9b:1a:74:15:b3:22:2b:1f:78:24:
ac:0d:54:49:d3:8b:70:a1:72:22:93:b3:81:19:5c:
a1:8f:ac:7b:37:9c:b2:1b:5f:6d:46:2b:c8:bc:ab:
77:66:fe:f4:2d:95:16:c8:11:1d:9c:ce:1b:86:f8:
5b:2d:98:b8:8b:91:3e:e5:bd:fe:9f:39:93:25:57:
3d:4e:3b:7c:7c:29:00:eb:53:bd:81:0c:21:c2:a7:
fc:02:6f:d0:88:3b:76:4f:e9:9e:8b:02:f0:b8:1a:
08:12:1e:8f:e6:7d:c5:a8:52:e8:d7:22:2d:70:e1:
6e:ca:f1:78:33:2a:d7:4a:a0:90:82:d3:30:aa:70:
4a:60:d4:93:63:bf:d6:83:10:2e:32:6d:c8:f8:16:
e8:4d:8c:18:30:38:12:09:85:82:bf:be:89:19:a1:
94:38:f4:97:59:3d:1e:b8:16:43:73:8f:c0:df:55:
fd:12:1a:22:1e:99:ee:93:c4:cb:6c:06:82:c1:ae:
24:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:69:2D:C5:7E:C1:86:FC:37:EE:08:F6:C5:84:F5:C4:C3:06:41:60
X509v3 Authority Key Identifier:
keyid:76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:06:88:ba:cb:a2:6d:5e:25:a8:a8:e7:42:ca:52:99:b7:4b:
66:ff:bf:b6:27:c7:95:0e:89:c4:aa:2b:63:ab:93:3c:c5:bc:
60:0d:8a:a5:3f:13:31:0a:fa:7a:5f:c8:90:5a:3e:63:a7:f5:
f8:92:31:6c:90:68:d7:c8:00:2b:8f:e4:c7:d1:a4:ba:a2:84:
01:7a:66:35:95:48:71:43:c2:bc:7d:47:88:b6:a2:a9:bb:8e:
ba:2e:67:90:2b:96:f6:a8:2a:a2:fc:9b:7c:07:70:b8:03:c5:
19:16:f6:ce:30:2e:6e:d0:3e:24:cc:24:d9:44:47:59:b4:ec:
4c:7c:b2:b3:af:e8:54:1f:bf:ee:5b:ec:c7:6b:5e:47:ca:7a:
3c:d4:9b:6b:c2:cd:13:30:77:64:b4:95:a4:54:0a:8d:66:4f:
76:41:94:62:68:1f:78:ed:c8:0a:05:c7:03:ae:b8:89:22:9e:
6f:0f:1c:81:50:2a:df:4f:c5:ce:d0:7c:af:7a:e5:2f:17:d9:
37:c1:78:cc:fb:67:01:08:ea:68:13:ce:d6:45:89:a9:e3:e5:
2a:73:37:76:d1:01:b9:10:67:0c:d8:26:a9:d7:f7:ae:bb:ef:
72:d4:50:da:a8:ea:51:8d:04:31:49:e9:a5:a8:04:72:43:da:
cb:1e:85:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:08:40 2026 by rpki-client