Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft
File: dhrP1knI7q2FUZQngfoW9o29EPM.mft (raw, json)
Hash identifier: oemOn5fZw1YUF/4v8iT6PYWoajGrIR4KytLv5JpU0zg=
Subject key identifier: FA:89:7B:FD:1D:62:F8:6D:62:85:EF:A3:28:5A:11:84:E8:65:EE:8A
Authority key identifier: 76:1A:CF:D6:49:C8:EE:AD:85:51:94:27:81:FA:16:F6:8D:BD:10:F3
Certificate issuer: /CN=761acfd649c8eead8551942781fa16f68dbd10f3
Certificate serial: 019D37F76A94D8BA7E27876D82A0C447ED2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dhrP1knI7q2FUZQngfoW9o29EPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 05:00:54 +0000
Manifest this update: Sun 29 Mar 2026 05:00:54 +0000
Manifest next update: Mon 30 Mar 2026 05:00:54 +0000
Files and hashes: 1: 4ZPiF2VO9a8aU0a0A0t3ypNdZ_4.roa (hash: T/Mc1/RVrNSXXxPaHTxn7Si+vyAXxTkGBmRnuF/YEqM=)
2: dhrP1knI7q2FUZQngfoW9o29EPM.crl (hash: o178lodO1AlmRjvKs/RFwdyLBDUIhvhsNfEPRWjaLvM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/dhrP1knI7q2FUZQngfoW9o29EPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:6a:94:d8:ba:7e:27:87:6d:82:a0:c4:47:ed:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=761acfd649c8eead8551942781fa16f68dbd10f3
Validity
Not Before: Mar 29 05:00:54 2026 GMT
Not After : Mar 30 05:00:54 2026 GMT
Subject: CN=fa897bfd1d62f86d6285efa3285a1184e865ee8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2c:0b:8f:6d:27:ae:fc:9e:a1:cf:74:a7:a9:
5a:26:22:59:57:0b:63:36:69:b5:7f:ca:0d:37:c7:
99:31:72:0f:a3:8b:f2:da:8b:a6:20:43:77:b2:59:
03:40:e7:fe:10:87:c0:48:42:d4:da:e8:7d:7d:4b:
ce:ea:2e:d1:9e:47:1f:8b:2c:e5:5a:e4:cd:d5:4f:
86:ff:74:4f:a7:3d:d6:15:58:71:c3:9e:8e:8b:46:
f5:35:e8:66:b9:c3:0a:e9:7d:64:83:00:0d:65:a2:
a1:03:93:19:54:84:10:15:b2:1b:f6:06:bf:75:ef:
3a:00:cf:30:6b:11:21:10:ca:07:3a:1f:80:2f:cc:
d9:1f:3d:e7:fa:8b:0a:79:3e:09:32:e8:c7:4d:fa:
ea:8f:54:0e:d2:1a:d4:7e:59:81:8f:23:43:1c:40:
cb:b8:8d:a3:3f:62:c1:0e:c4:96:21:41:ae:f9:fb:
30:e4:ab:9c:a3:71:e4:fb:99:fd:68:ff:cb:13:5f:
57:ef:75:d2:80:0d:5d:f3:6f:8c:8c:c0:63:fd:21:
5d:f5:13:3a:a9:4d:2e:4a:fe:19:69:d0:b7:f5:3f:
46:01:cf:a0:b2:bb:a1:92:e4:f1:a1:2b:4c:2d:1b:
47:e1:00:55:ae:a3:7c:03:b6:c1:10:97:81:c9:d9:
41:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:89:7B:FD:1D:62:F8:6D:62:85:EF:A3:28:5A:11:84:E8:65:EE:8A
X509v3 Authority Key Identifier:
keyid:76:1A:CF:D6:49:C8:EE:AD:85:51:94:27:81:FA:16:F6:8D:BD:10:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dhrP1knI7q2FUZQngfoW9o29EPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:da:1c:45:71:67:68:fa:1f:41:bc:54:bc:b8:90:d3:56:1e:
5e:64:41:75:25:e2:c0:b5:ca:c9:e2:97:5a:43:ae:21:bb:96:
cd:ad:6e:85:ea:17:96:11:1b:b3:e6:a5:42:3a:14:a2:76:fa:
cf:dc:30:93:ba:00:a9:ef:d3:65:e8:fe:aa:eb:61:ea:e6:56:
68:e8:86:13:01:be:7d:21:74:e0:86:fe:31:ef:17:a8:bf:e8:
be:7c:34:f4:ab:63:75:59:61:65:b1:81:3b:79:86:10:3a:9a:
11:04:b8:28:61:38:a7:0c:0a:ac:95:19:a7:5c:55:ba:b8:c0:
61:d2:a7:a8:44:97:28:9b:59:83:3b:cf:0f:d8:81:2c:90:25:
a3:76:0f:ac:fa:ff:03:77:b1:41:7b:11:05:11:19:36:c2:4c:
1d:21:3e:0e:6c:ba:25:fc:1d:71:75:b2:52:e8:86:b4:b0:3c:
0f:cd:40:c8:8e:f1:88:ca:af:70:4e:f6:fa:db:f5:02:23:0a:
03:1b:53:cb:6f:7d:86:4e:27:0e:fa:ab:59:94:93:a0:dd:d5:
23:ab:f1:1d:a3:eb:53:c6:53:f8:ba:80:3f:2d:f7:ae:8b:61:
c6:4d:4c:9c:80:1c:de:31:72:23:a1:77:2a:28:6b:f9:6d:0f:
02:9d:c8:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:40 2026 by rpki-client