Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
File: DA96BN1ySaXRS33gVCpBlzgABsw.mft (raw, json)
Hash identifier: Udle5mF5Ty6BcuL1E0B6lRPGXRBcAKJa2ameE4bqIw4=
Subject key identifier: 10:1A:4A:CF:84:33:98:5D:64:9B:6C:FE:09:18:84:3B:6A:A9:22:1D
Authority key identifier: 0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
Certificate issuer: /CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Certificate serial: 019D378969CF66C86F5874753753A1D4FB58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
Manifest number: 1432
Signing time: Sun 29 Mar 2026 03:00:45 +0000
Manifest this update: Sun 29 Mar 2026 03:00:45 +0000
Manifest next update: Mon 30 Mar 2026 03:00:45 +0000
Files and hashes: 1: DA96BN1ySaXRS33gVCpBlzgABsw.crl (hash: 16OpfFfzN4JWUoMLdDimr9oMagwj9/RuVTx86if6d2k=)
2: MGxIjp6odA89mKCCoAoK4gOBECQ.roa (hash: WV1c3KgNpfTE3JHTiidL4UKk6xN2JAg5ninbZPlQg+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:69:cf:66:c8:6f:58:74:75:37:53:a1:d4:fb:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Validity
Not Before: Mar 29 03:00:45 2026 GMT
Not After : Mar 30 03:00:45 2026 GMT
Subject: CN=101a4acf8433985d649b6cfe0918843b6aa9221d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a3:20:d0:83:99:a3:06:82:f2:d9:c8:cf:6f:
33:f5:1f:71:9c:d1:d2:d2:4a:f5:a6:55:d1:ba:71:
45:30:7d:00:e5:c6:8d:ca:c1:d1:2e:5a:68:c7:2a:
6f:b2:24:ff:17:80:f3:0b:39:a8:26:61:57:67:4c:
89:90:7f:0a:57:2f:d0:f7:e6:b7:50:a6:f8:06:28:
37:2b:c0:35:78:89:23:50:b4:8a:58:de:28:b1:64:
50:0e:b5:fd:dd:af:89:0b:45:b0:b2:36:b0:f8:da:
d7:c1:be:a8:73:01:45:e8:71:c7:a6:9a:c5:47:fd:
82:1d:2d:e0:c6:da:6c:95:51:99:89:62:bf:84:35:
61:a4:c3:b8:48:ff:c7:75:cc:e6:ff:7b:c9:c2:f8:
0a:0a:33:ac:b8:0c:ef:03:84:74:33:73:5e:be:d5:
fc:73:02:ae:16:bb:7d:fc:89:bb:8b:ec:08:5a:4a:
f4:86:6c:19:01:66:f4:a9:93:ad:71:b8:c5:fa:07:
96:81:80:e2:8a:80:58:6b:2b:ce:63:ab:63:10:b3:
90:44:31:ed:38:81:87:64:c8:6b:23:8f:b7:bf:9e:
51:38:0e:7d:eb:97:ee:46:cb:d0:a0:e7:c0:e1:b4:
e1:f1:e6:f1:c9:71:3a:e0:50:b9:98:1a:5b:fa:20:
51:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:1A:4A:CF:84:33:98:5D:64:9B:6C:FE:09:18:84:3B:6A:A9:22:1D
X509v3 Authority Key Identifier:
keyid:0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:21:a7:d9:59:cb:72:c5:ec:0c:35:77:dd:8b:3a:c7:95:84:
54:fc:a6:fa:c7:0f:75:00:4a:27:a5:63:d1:01:41:48:13:24:
d7:e0:da:ab:f4:06:12:99:a9:00:c5:2d:c4:28:5a:36:2b:6f:
fb:9b:98:62:a0:53:c4:66:dd:4d:46:f4:d7:dd:21:87:39:15:
12:04:88:da:fe:71:a9:c3:36:c7:3b:3a:80:f5:3c:f1:c5:08:
6a:69:77:3b:80:f7:00:27:a8:e3:bc:96:36:c9:d8:34:08:d6:
44:99:45:df:a4:08:bf:52:69:59:aa:92:56:4a:62:c6:ac:ec:
7f:be:ac:97:b6:06:c9:79:6d:42:37:42:47:63:ca:d8:d0:61:
6b:31:a3:bc:0c:1a:4a:11:09:1e:d8:d5:ae:26:e6:db:1c:b3:
7d:f9:9b:86:e7:ca:cd:ce:32:d5:c4:ac:fc:a0:5c:69:0d:ab:
d7:7d:d9:dc:1c:0a:6e:d8:8e:fc:65:71:3a:e0:fb:aa:31:ea:
c2:2b:75:44:99:94:0a:2d:0f:e2:c1:d4:98:db:c2:4c:95:c6:
91:d0:88:37:03:e6:7b:0c:a0:42:fd:5d:0f:b3:79:19:b2:72:
03:23:aa:f0:09:ad:1d:ee:a8:37:ae:75:c5:67:d2:45:f2:12:
9e:38:a5:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:41:32 2026 by rpki-client