Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
File: dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft (raw, json)
Hash identifier: qCWnLeTrzpXxGqQoRJfuZF5FX4zdMUfh8cxYMtmGYHU=
Subject key identifier: 91:A0:F9:52:9D:ED:28:9D:7E:E5:0A:D2:CF:7C:E5:31:6C:0A:05:D4
Authority key identifier: 74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
Certificate issuer: /CN=74b975898d10f1a5052133e1e25036c6114d8876
Certificate serial: 019D37C0B760252D34AA6759AC34B8F2984A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
Manifest number: 1529
Signing time: Sun 29 Mar 2026 04:01:09 +0000
Manifest this update: Sun 29 Mar 2026 04:01:09 +0000
Manifest next update: Mon 30 Mar 2026 04:01:09 +0000
Files and hashes: 1: dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl (hash: fN1hv059ZEE7mz55oAXjXhSfIVUgVCWi+8FY7HKNrmU=)
2: p2dX8ZxrxFo5bme0wCXmevmXoFM.roa (hash: z7vq22A/NBz69RT3OwNZlFHGPIzvOhIGUKvXngDLH00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:b7:60:25:2d:34:aa:67:59:ac:34:b8:f2:98:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b975898d10f1a5052133e1e25036c6114d8876
Validity
Not Before: Mar 29 04:01:09 2026 GMT
Not After : Mar 30 04:01:09 2026 GMT
Subject: CN=91a0f9529ded289d7ee50ad2cf7ce5316c0a05d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:97:32:67:e2:a4:be:f8:0c:c6:da:54:b3:3b:
84:b1:1e:20:bc:60:e3:f7:ca:df:fd:5d:bb:b7:be:
21:4f:30:c5:4f:a9:12:d2:a5:7c:74:d6:32:4b:27:
54:93:46:ce:07:33:a9:ae:d9:a0:cf:76:54:00:ed:
c6:c2:94:5b:47:63:11:76:da:dd:f1:d4:28:05:ac:
77:c2:4f:be:66:a8:64:df:ff:3d:7a:f0:30:b9:c9:
12:bd:5f:f2:d2:18:48:02:c0:75:50:df:a4:6b:e0:
7d:0e:f6:39:0f:66:62:42:b4:a6:82:e1:ca:b8:1c:
f7:ae:ed:81:a9:33:01:39:3f:17:39:83:1a:21:69:
83:eb:fb:11:cb:32:96:04:ac:4c:3b:d9:fa:64:9e:
24:60:25:8f:67:58:41:04:80:54:39:c9:23:18:fd:
3b:b2:6c:07:4e:c1:a2:83:79:bb:17:c6:c6:ef:5c:
23:5e:7d:33:8a:1e:7f:38:f7:14:82:26:c6:fc:00:
0b:d4:0e:25:f1:54:ae:61:56:94:fd:36:df:60:7c:
e6:cd:95:4b:15:36:f7:1f:3d:36:25:e1:fc:22:a2:
d6:65:c4:84:d4:06:ef:17:33:f5:dc:aa:37:e2:96:
43:5d:4f:17:21:22:b1:24:f1:c9:aa:fa:68:16:65:
a8:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A0:F9:52:9D:ED:28:9D:7E:E5:0A:D2:CF:7C:E5:31:6C:0A:05:D4
X509v3 Authority Key Identifier:
keyid:74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:4d:2e:d7:86:3b:b7:fc:c9:09:b1:d7:24:c1:c8:94:4d:ad:
a0:72:58:81:f7:81:91:00:51:23:b1:82:be:27:36:ce:ea:3d:
1e:a3:7b:4b:8e:ac:a8:52:f2:5e:96:d7:b4:51:21:0a:35:26:
bf:2a:10:dd:e0:6e:5c:dd:1e:95:f3:cb:92:13:35:fb:bd:f2:
c5:52:d4:7d:9e:a3:0e:f4:54:df:6a:38:2a:68:63:f3:e7:d2:
31:48:1a:c9:6e:01:32:5e:e1:e3:4e:b2:34:90:c6:d1:db:9f:
93:ab:9d:18:1c:64:1a:18:42:f0:30:88:d6:2f:b6:12:80:10:
35:d1:d6:f8:de:44:60:44:75:79:45:2b:b7:32:62:70:38:88:
01:d9:63:8b:6c:69:b6:d8:95:99:db:d6:46:86:22:f5:ef:38:
4d:be:38:f2:5e:ce:ae:58:d5:88:2e:f2:8d:bf:2a:f6:5f:da:
6e:4f:80:f5:80:ea:b0:37:47:b7:df:d8:07:9d:be:b3:ab:f9:
87:72:30:81:c8:c2:9c:34:22:00:78:49:db:42:e2:bc:45:e3:
a5:cb:ec:85:d4:5b:8f:91:b3:8c:88:51:1a:f2:ed:48:71:1b:
48:35:75:de:29:3c:41:ff:7b:3f:6d:ec:bc:37:01:c5:49:7a:
fb:bf:2b:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:54 2026 by rpki-client