Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft
File: Dj8xyerObwpezNuN8rAcc1FWhoY.mft (raw, json)
Hash identifier: Wfz054s95UM9pj71v4dOQAOCkZObC2isiN3XTYvn9EY=
Subject key identifier: A8:16:58:DF:4D:1E:87:9F:A9:09:E4:BC:A8:A0:34:43:C0:AD:33:28
Authority key identifier: 0E:3F:31:C9:EA:CE:6F:0A:5E:CC:DB:8D:F2:B0:1C:73:51:56:86:86
Certificate issuer: /CN=0e3f31c9eace6f0a5eccdb8df2b01c7351568686
Certificate serial: 019CC33C73086FD4B948C5CCCB6521C1B2F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft
Manifest number: 1811
Signing time: Fri 06 Mar 2026 13:00:44 +0000
Manifest this update: Fri 06 Mar 2026 13:00:44 +0000
Manifest next update: Sat 07 Mar 2026 13:00:44 +0000
Files and hashes: 1: 1Cbhm5Q8SrrKYeIFm9FmDpjDPv0.roa (hash: rNP5Ce/7PFqUSX09ZQDZG/krcOVkd/Q/rMGkvkaBBMQ=)
2: Dj8xyerObwpezNuN8rAcc1FWhoY.crl (hash: YVztH01sqEmpu9OjMkSa5GSyU8NJkr6Csdc8+LDdB8I=)
3: P36bForyKz3A1xYxUt5uRvnbjGo.roa (hash: CVAU2pcmHNPpR0Ea2g62GxYoWi/yJ4n8I1Gjfyzzm7o=)
4: ZHGn3_tg-Mfmy7H9B_1aaqTZHgs.roa (hash: kp5fhsXFebs7/vXxko2b9o0UIBd+QGOAQRgsqBOjvQA=)
5: a6PACvJLM3s_lwkZeVEGJF5iO_4.roa (hash: 9/sIzT67dfyUZab/hjukKGa1L1/gCDghZ85Kq/KUdZw=)
6: uZHn0r02l2agjVRMRfZ3xICbMLw.roa (hash: YR/6cl0OhmlwCiQwg5TQ7bSWNguLPLl/GP2GOc23T+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Mar 2026 10:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c3:3c:73:08:6f:d4:b9:48:c5:cc:cb:65:21:c1:b2:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e3f31c9eace6f0a5eccdb8df2b01c7351568686
Validity
Not Before: Mar 6 13:00:44 2026 GMT
Not After : Mar 7 13:00:44 2026 GMT
Subject: CN=a81658df4d1e879fa909e4bca8a03443c0ad3328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:47:86:d0:df:36:fa:76:4f:bc:95:2b:42:97:
00:03:e0:1d:9d:4b:6e:d3:ac:a2:19:1f:9e:2c:b7:
cd:d9:15:81:dc:43:d5:43:49:6d:2b:33:6a:6d:a3:
b2:49:9c:ed:ad:f0:b0:f3:c4:e0:b2:68:71:7f:43:
ea:82:a7:7f:50:0d:58:02:1e:c7:2b:ba:0d:b4:39:
be:d9:da:8a:05:bc:e1:9b:bc:ce:77:b9:11:1d:52:
42:5a:c1:53:e2:8d:aa:3a:c4:1e:6e:e2:df:1e:7a:
c2:71:9d:71:a1:8d:d4:dd:14:18:17:d8:e3:ac:95:
f4:17:f8:0c:bf:b6:b9:ad:e1:0f:07:d4:86:dc:af:
2e:f0:d8:6d:82:06:c5:f3:61:10:bc:f7:99:7c:ce:
9d:d2:8d:ca:c2:c5:d8:97:57:b9:38:cc:8e:09:9a:
31:04:e9:39:dd:99:1a:df:76:3e:7d:e2:d4:c9:cd:
c9:2e:fc:60:87:71:52:81:36:d4:51:9f:b0:30:c9:
92:71:05:f0:23:ac:53:9d:eb:ad:bf:fe:83:be:50:
0c:96:04:7f:f7:96:36:e1:60:7d:16:7d:5d:9e:0d:
4a:f7:b0:25:a4:05:67:0b:a9:45:ec:8d:43:2b:f8:
aa:1a:62:aa:5c:f1:3c:cb:9f:0e:f5:a4:0f:c2:bb:
87:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:16:58:DF:4D:1E:87:9F:A9:09:E4:BC:A8:A0:34:43:C0:AD:33:28
X509v3 Authority Key Identifier:
keyid:0E:3F:31:C9:EA:CE:6F:0A:5E:CC:DB:8D:F2:B0:1C:73:51:56:86:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:cf:18:47:0a:fd:34:39:8b:35:e0:c6:0f:67:00:56:fc:92:
85:f0:a1:03:53:df:43:12:78:ec:a2:75:cf:24:58:60:d0:36:
f3:5b:18:35:a7:23:b2:dc:09:13:cf:23:9b:65:15:b4:ac:ca:
3e:fa:7e:e5:8d:d1:ae:1d:99:75:71:a8:ff:cd:1f:1a:3a:78:
6b:4c:bb:bf:5d:82:9a:14:72:c2:03:98:da:50:85:56:a9:f0:
8a:53:74:b0:b5:53:f2:01:67:eb:df:29:57:67:d7:51:f5:af:
60:9d:d6:e4:57:57:ba:f4:34:56:87:af:1c:0f:21:3a:0d:07:
59:8e:af:48:14:b2:26:b1:7e:7a:9a:d0:0c:20:d5:15:f5:ca:
ed:e7:1e:00:5e:f2:c1:f3:f4:06:7b:3c:b2:cf:40:22:84:76:
3c:25:38:e2:74:9e:c0:ab:18:b9:be:28:62:42:b0:65:e4:45:
67:7a:b4:09:d7:26:e0:dd:92:7c:23:0d:67:24:33:82:e1:bb:
c8:2a:cc:75:6d:32:c0:7f:c4:2c:bf:18:9c:f3:a2:8e:ba:09:
67:63:da:59:11:f7:42:e1:a3:45:96:4f:ff:78:1b:91:83:fc:
1a:55:fd:52:f7:c0:04:ff:e9:9d:6a:ce:76:95:3c:c1:87:6e:
13:20:3f:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 6 20:20:14 2026 by rpki-client