Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0eed2b-2057-45e7-9f00-5ee18588df59/1/dSRUOKK2IJyBZ17zV4PYmhm3B_o.mft
File: dSRUOKK2IJyBZ17zV4PYmhm3B_o.mft (raw, json)
Hash identifier: UzEt3W2jK9UShL0vC1lP/Iip0D3QlTErOr2uuhdR/XQ=
Subject key identifier: 1E:8F:CD:68:47:FD:FE:BD:CA:DD:92:3C:FA:0B:83:73:FE:31:B1:06
Authority key identifier: 75:24:54:38:A2:B6:20:9C:81:67:5E:F3:57:83:D8:9A:19:B7:07:FA
Certificate issuer: /CN=75245438a2b6209c81675ef35783d89a19b707fa
Certificate serial: 019D371BE0C7518B3BF87DB9F793B0277245
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dSRUOKK2IJyBZ17zV4PYmhm3B_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0eed2b-2057-45e7-9f00-5ee18588df59/1/dSRUOKK2IJyBZ17zV4PYmhm3B_o.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 01:01:07 +0000
Manifest this update: Sun 29 Mar 2026 01:01:07 +0000
Manifest next update: Mon 30 Mar 2026 01:01:07 +0000
Files and hashes: 1: 1-rduehBiSXoXtEjm13X_baLg9hg.roa (hash: w3JHE4zjBQCl+As/2Jf4pROYK6+W2f/IVxYPRcpmzD0=)
2: dSRUOKK2IJyBZ17zV4PYmhm3B_o.crl (hash: i7ZhZeepBcx78nESru8YuuyX1eCCC829y47JImm+M3U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/0eed2b-2057-45e7-9f00-5ee18588df59/1/dSRUOKK2IJyBZ17zV4PYmhm3B_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/0eed2b-2057-45e7-9f00-5ee18588df59/1/dSRUOKK2IJyBZ17zV4PYmhm3B_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/dSRUOKK2IJyBZ17zV4PYmhm3B_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:e0:c7:51:8b:3b:f8:7d:b9:f7:93:b0:27:72:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75245438a2b6209c81675ef35783d89a19b707fa
Validity
Not Before: Mar 29 01:01:07 2026 GMT
Not After : Mar 30 01:01:07 2026 GMT
Subject: CN=1e8fcd6847fdfebdcadd923cfa0b8373fe31b106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0f:91:79:89:da:6f:d4:08:e9:93:d3:94:75:
42:e3:f6:2d:0b:f0:d5:a5:a3:ba:0a:8d:28:11:f8:
cb:81:73:1d:23:47:19:93:47:73:1f:e7:db:ea:c7:
b3:18:f1:db:a2:af:11:de:dd:fd:e1:c5:39:8d:c1:
11:a0:41:91:b7:75:de:57:b0:f8:de:ae:2e:82:50:
40:0e:34:21:6e:00:ad:75:b6:55:7f:40:45:aa:3b:
64:a1:b6:98:4d:03:dc:8e:3b:02:a1:56:9d:80:19:
d1:27:47:8d:43:52:67:3f:20:e4:4f:64:99:2b:2a:
19:71:30:81:f0:ba:4f:3f:bb:c5:cd:29:87:d2:b7:
15:c7:71:e8:11:b1:10:eb:c2:8d:53:be:df:c6:6b:
86:34:10:fa:a9:e3:56:be:39:3b:d9:e3:91:85:9e:
71:d7:6a:27:0e:a9:12:27:61:18:05:c4:74:04:1a:
71:d2:52:a4:c4:a9:bb:21:5f:42:ae:a4:06:9f:83:
34:88:b4:de:d1:75:1e:c8:a7:1e:2a:61:34:00:f8:
54:85:4d:3d:c5:b6:24:0e:0e:67:ce:b0:96:14:0d:
9f:58:11:ab:cc:aa:53:19:93:32:51:85:b6:d3:4b:
61:be:09:4e:66:aa:65:a0:62:53:2c:14:7b:f7:49:
e6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:8F:CD:68:47:FD:FE:BD:CA:DD:92:3C:FA:0B:83:73:FE:31:B1:06
X509v3 Authority Key Identifier:
keyid:75:24:54:38:A2:B6:20:9C:81:67:5E:F3:57:83:D8:9A:19:B7:07:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dSRUOKK2IJyBZ17zV4PYmhm3B_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0eed2b-2057-45e7-9f00-5ee18588df59/1/dSRUOKK2IJyBZ17zV4PYmhm3B_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0eed2b-2057-45e7-9f00-5ee18588df59/1/dSRUOKK2IJyBZ17zV4PYmhm3B_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:43:a9:07:6c:14:a4:6e:41:cc:88:1c:df:6f:a7:38:a1:f8:
2d:fa:72:51:5c:51:9f:4c:fb:9a:11:c7:28:b3:7f:19:32:d0:
e0:e2:4f:a4:5e:58:39:f2:36:63:51:f5:cf:07:ef:d1:32:5a:
bb:a5:db:54:6d:a1:0c:84:be:12:27:8a:ed:d8:89:02:c0:22:
ac:e5:ef:b6:3c:c6:b6:61:67:44:e1:31:4a:03:0f:83:c5:8d:
a3:e6:20:00:d3:39:0f:bc:d8:03:ff:36:db:e9:70:44:09:24:
3e:93:9e:c1:8b:c2:16:d6:34:5c:a7:1c:3c:fb:58:ba:d9:69:
7d:c6:84:a6:fd:2d:11:f2:3d:dd:30:1c:fc:ed:3e:fd:70:48:
db:30:dc:b2:68:82:99:29:98:b2:cf:78:58:dd:fd:c6:ab:5b:
6e:38:d2:05:55:20:62:60:21:a2:0e:c6:67:6e:a7:15:77:fa:
cc:3e:13:39:c5:ca:ef:90:a9:68:0f:73:70:89:a7:56:0e:99:
73:3e:f1:26:a6:af:6c:8f:e3:e3:01:a8:e2:66:9e:d1:78:a9:
6f:4b:94:ef:0a:4d:12:1e:98:56:10:5a:52:33:db:44:d8:51:
bb:90:a0:6d:aa:13:71:2f:22:c9:cf:64:09:8b:cc:89:00:9d:
c2:4d:6d:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:37:46 2026 by rpki-client