Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
File: dBmPcCK5VgUB20SK9gMB-ihekjY.mft (raw, json)
Hash identifier: lVsZvP9Z9tzji3sktRWfwt3ShoxsQUJILKFbvoj2NkQ=
Subject key identifier: D7:93:84:C8:58:97:D4:E3:20:8E:CA:28:BC:A6:9F:70:7B:2D:D5:85
Authority key identifier: 74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36
Certificate issuer: /CN=74198f7022b9560501db448af60301fa285e9236
Certificate serial: 019CE7B75E3843B38128B578346C912A088B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
Manifest number: 186A
Signing time: Fri 13 Mar 2026 15:01:19 +0000
Manifest this update: Fri 13 Mar 2026 15:01:19 +0000
Manifest next update: Sat 14 Mar 2026 15:01:19 +0000
Files and hashes: 1: dBmPcCK5VgUB20SK9gMB-ihekjY.crl (hash: qclQ7m+KHpEDVpCUdLILnoWPf+culHslcN7ujhnm3/g=)
2: x-8swSoHWXn2gEZTtgRDy-vs_DM.roa (hash: ylAYgviMfyC3A9eoEgIb+VgNLg1iORRgtmKdI3QPLJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e7:b7:5e:38:43:b3:81:28:b5:78:34:6c:91:2a:08:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74198f7022b9560501db448af60301fa285e9236
Validity
Not Before: Mar 13 15:01:19 2026 GMT
Not After : Mar 14 15:01:19 2026 GMT
Subject: CN=d79384c85897d4e3208eca28bca69f707b2dd585
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6a:30:ed:3a:19:79:2a:15:2b:72:35:03:3f:
6f:d9:03:a3:54:c3:aa:1d:52:14:1a:a8:d4:02:df:
8a:8d:d0:11:e9:6e:cd:d8:f2:cf:df:df:ac:2a:cb:
f2:41:d9:e6:f1:b9:f2:a7:91:5b:76:63:bd:81:bb:
3f:86:cf:d9:ae:90:d6:40:26:d5:3c:73:a4:2b:67:
f9:49:6e:b4:6b:56:fd:79:f9:50:e6:c0:4d:2e:ac:
14:f5:45:e2:15:b4:76:c5:fe:76:d1:4f:55:10:e7:
54:3b:d0:f6:51:47:80:f0:ed:cc:aa:3c:68:14:1a:
65:c1:9e:05:7e:a4:fa:12:26:67:37:0d:3c:61:cf:
9b:bc:fd:ae:bc:9d:fb:47:c5:87:db:7d:b5:97:e6:
ad:dc:af:07:a3:1b:d6:5a:ee:9e:7f:24:3f:a1:0d:
ec:f9:3b:4e:cd:84:b0:7e:31:8b:77:6a:c9:98:4b:
21:88:fa:3c:5f:47:87:e8:52:b2:dc:ab:b7:a3:61:
55:81:99:10:a8:c1:53:dc:3c:55:47:65:65:85:66:
14:94:36:d5:7f:4f:fa:3e:09:97:dd:7d:a3:59:1d:
0c:5b:b1:68:03:b0:10:89:f7:98:3b:08:b7:60:88:
4e:4c:f6:8c:d2:f4:a8:09:63:22:79:43:35:ff:da:
a0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:93:84:C8:58:97:D4:E3:20:8E:CA:28:BC:A6:9F:70:7B:2D:D5:85
X509v3 Authority Key Identifier:
keyid:74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:e0:93:2f:2b:2e:dc:c8:b9:9e:f7:2e:df:27:7f:e0:7c:1f:
27:85:8d:e1:ad:ff:20:97:7e:cf:f1:1d:6f:db:94:33:03:e1:
52:cc:35:cc:14:a8:86:52:4a:b7:c6:00:5f:c3:c9:52:10:8f:
e4:37:0c:ba:1f:0b:c3:a7:90:ae:5e:be:a7:f5:a7:01:9e:7b:
21:e9:06:5d:1f:89:5c:8d:18:bd:48:9b:15:be:4b:88:b1:8d:
b3:cd:cf:8c:82:de:8a:6f:7a:cf:bf:7b:04:0e:a9:e0:cf:1b:
88:bd:02:4f:07:dc:93:ed:c2:7c:f0:2d:47:17:0a:8e:18:ff:
f7:b4:25:d6:68:c7:a4:a8:16:a4:d9:dd:e6:fb:d1:44:6f:03:
1a:08:5f:e7:f6:7f:67:de:51:74:a3:c5:31:7d:7b:64:9f:46:
23:ce:07:62:12:7d:ce:0f:2c:14:1b:e5:ab:6a:b6:ec:89:18:
ed:44:e5:e7:7d:4d:84:bb:c4:66:fc:e9:26:db:6e:ca:63:f4:
50:f4:6e:36:45:41:f9:e7:93:57:2b:c3:36:8d:c7:cb:84:48:
51:e9:d1:14:83:75:d6:a0:e1:4d:06:85:26:6a:cc:be:16:e3:
dc:08:68:90:81:f5:91:65:01:7e:7a:f3:09:f6:8c:c3:30:9f:
76:25:5b:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 17:26:42 2026 by rpki-client