Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
File: dBmPcCK5VgUB20SK9gMB-ihekjY.mft (raw, json)
Hash identifier: SrhkFEekv+oyIPOejFPJa4vDqIUCXfR9qFYUw+vxcw4=
Subject key identifier: 07:1E:98:88:C3:FF:54:55:F2:BF:04:10:BC:25:A5:0C:FA:AF:FA:59
Authority key identifier: 74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36
Certificate issuer: /CN=74198f7022b9560501db448af60301fa285e9236
Certificate serial: 019DCF757D5363211DE58CF68A8F3FBB67DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
Manifest number: 18E2
Signing time: Mon 27 Apr 2026 15:01:16 +0000
Manifest this update: Mon 27 Apr 2026 15:01:16 +0000
Manifest next update: Tue 28 Apr 2026 15:01:16 +0000
Files and hashes: 1: dBmPcCK5VgUB20SK9gMB-ihekjY.crl (hash: mvaQzXhPt3GE3bfWYiK4wEtZNIhJsfH2R/QvddwXMSo=)
2: x-8swSoHWXn2gEZTtgRDy-vs_DM.roa (hash: ylAYgviMfyC3A9eoEgIb+VgNLg1iORRgtmKdI3QPLJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:75:7d:53:63:21:1d:e5:8c:f6:8a:8f:3f:bb:67:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74198f7022b9560501db448af60301fa285e9236
Validity
Not Before: Apr 27 15:01:16 2026 GMT
Not After : Apr 28 15:01:16 2026 GMT
Subject: CN=071e9888c3ff5455f2bf0410bc25a50cfaaffa59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f3:37:27:8d:a8:b1:37:53:cc:80:74:84:4e:
64:22:7a:ff:46:50:b7:67:b8:a2:d2:ae:16:c1:6e:
85:5b:1e:cb:f1:00:0d:2c:c8:75:62:cf:d6:99:1a:
a2:b1:79:75:93:bc:91:df:79:a4:05:6b:c2:b7:3a:
06:5f:5c:cc:9b:0e:1d:86:1c:5b:03:bb:1c:c7:e7:
8a:43:d5:1e:06:9a:85:05:e4:9e:2b:54:cc:28:3f:
f6:12:5f:92:74:e2:d2:88:63:eb:ad:99:3c:ac:57:
4c:0d:30:47:7e:1c:78:bf:07:e5:44:90:5a:f3:7e:
b0:4f:38:91:5d:5d:92:92:77:02:52:6c:e4:97:9e:
c7:74:a3:4e:23:58:30:fb:75:4b:e8:f9:3c:9e:92:
1f:50:eb:48:92:b7:eb:fc:57:c3:b9:cb:c1:77:f4:
8e:9f:41:2c:14:44:a8:a1:9d:6d:bf:e6:92:d5:1d:
6f:09:7c:cf:93:6b:b3:e3:6d:83:90:a6:04:04:b0:
9f:e9:29:62:fb:ca:23:3b:09:57:11:9a:19:40:56:
16:21:bf:51:0b:d2:74:3c:97:33:d7:7c:4e:b4:52:
e3:26:c2:48:04:0d:96:e6:71:fa:61:c1:81:d8:b4:
b2:54:ad:8e:35:7f:4a:b6:db:ff:a7:4c:22:ce:b4:
4d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:1E:98:88:C3:FF:54:55:F2:BF:04:10:BC:25:A5:0C:FA:AF:FA:59
X509v3 Authority Key Identifier:
keyid:74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:29:40:b1:0c:11:c8:8b:ab:12:7b:96:7b:1e:31:5a:94:b4:
eb:da:07:ce:ce:e1:fa:9a:0c:85:77:9b:84:d8:61:76:50:f4:
de:be:2d:6d:d7:24:c9:aa:46:e4:dc:84:a1:74:9a:06:fc:8d:
91:54:a8:27:89:92:e4:2c:b9:ad:7b:6e:78:f3:bd:91:a5:17:
42:6e:ce:58:3a:22:8c:6b:99:df:06:24:d9:3f:b3:97:64:99:
2d:32:2f:d9:3f:6d:8b:f3:bd:57:e8:e9:a4:db:72:84:d5:ab:
32:af:e6:53:31:06:3c:31:0c:2b:2f:2a:df:a9:41:bc:d2:91:
e8:aa:1e:d1:38:55:77:ba:57:aa:e5:b7:10:c5:5d:c4:34:79:
42:c4:74:61:8f:fc:ae:cc:10:1c:e2:a0:57:f9:69:0f:1e:20:
fd:32:36:66:58:7c:f8:e4:10:f1:5a:e5:ac:ed:0b:9e:71:13:
fb:7c:9e:22:ac:67:00:8a:a0:6a:ca:7f:22:4f:0f:a2:1e:06:
0a:6b:9b:25:46:67:12:cd:11:6e:e5:f4:25:c4:68:c5:03:f1:
43:3e:1d:89:08:78:af:8c:8a:d6:ee:7c:fc:d1:e0:4d:13:31:
2b:d8:db:a0:c6:3c:0b:81:57:86:1d:15:cf:06:e8:70:67:18:
62:74:43:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 22:32:11 2026 by rpki-client