Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.mft
File: D4nIaX93ksqvWZZk6JrOZSRPiug.mft (raw, json)
Hash identifier: scUD10AS+v7683nTEo8CAeUm3jR3yXZ4GfNIyQoXoac=
Subject key identifier: A0:18:5C:0A:10:5D:77:EF:D6:5B:F4:5A:02:7C:A4:60:A8:6B:14:2A
Authority key identifier: 0F:89:C8:69:7F:77:92:CA:AF:59:96:64:E8:9A:CE:65:24:4F:8A:E8
Certificate issuer: /CN=0f89c8697f7792caaf599664e89ace65244f8ae8
Certificate serial: 019D37F781C5CAD8229145593F1028E209A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D4nIaX93ksqvWZZk6JrOZSRPiug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 05:01:00 +0000
Manifest this update: Sun 29 Mar 2026 05:01:00 +0000
Manifest next update: Mon 30 Mar 2026 05:01:00 +0000
Files and hashes: 1: 3gWQQGBcbMv1PcGiymFULbhDgQk.roa (hash: R5FpPwb0TIXhum/MUuquZBI0EvROR3vjJFQryTKsboI=)
2: D4nIaX93ksqvWZZk6JrOZSRPiug.crl (hash: u0a4Par1OK1rcz+CvKjmDUYjju77flv5iraIuEvkF0M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.mft
rsync://rpki.ripe.net/repository/DEFAULT/D4nIaX93ksqvWZZk6JrOZSRPiug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:81:c5:ca:d8:22:91:45:59:3f:10:28:e2:09:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f89c8697f7792caaf599664e89ace65244f8ae8
Validity
Not Before: Mar 29 05:01:00 2026 GMT
Not After : Mar 30 05:01:00 2026 GMT
Subject: CN=a0185c0a105d77efd65bf45a027ca460a86b142a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:15:20:b3:5d:91:f6:d3:d6:f7:58:62:67:5f:
3c:1b:a1:00:4f:a7:ec:a2:a6:d5:c9:83:22:cf:e9:
9f:db:be:0b:c5:0f:85:79:d2:12:a7:f0:ac:5f:5e:
29:a7:bd:ad:5a:6e:19:29:02:5b:09:d6:88:d6:15:
63:cf:fd:fb:e2:72:5c:d0:55:a4:ec:47:e6:16:18:
bd:bd:85:52:e9:b2:76:6e:7b:ae:69:22:6f:1e:5a:
77:52:20:3b:6e:29:47:2e:ff:8f:1d:48:b2:dd:f1:
64:61:4e:3a:21:db:38:f1:3f:14:e6:51:9d:99:f8:
b6:46:26:ab:83:0e:c8:a0:c0:14:a5:61:01:48:a2:
12:e5:94:ad:c3:d8:da:49:fd:f3:74:96:86:0b:3b:
c2:df:30:90:db:9d:da:f8:da:3a:e8:cf:69:04:1d:
ca:85:65:7a:68:b2:71:0c:41:04:d8:59:55:1c:71:
14:4a:aa:b4:6a:19:38:71:ca:e9:dd:40:b1:98:8c:
ed:a9:22:57:fa:10:6e:f6:f9:e7:a4:ac:8a:8b:a7:
7e:8d:92:21:77:7c:b8:13:0c:84:ad:62:a4:69:46:
aa:e9:d9:1b:f9:93:5b:df:ec:80:a0:8d:ab:7e:e0:
a3:d9:e9:09:ed:ff:b9:1d:9c:8f:86:f9:db:ed:61:
1b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:18:5C:0A:10:5D:77:EF:D6:5B:F4:5A:02:7C:A4:60:A8:6B:14:2A
X509v3 Authority Key Identifier:
keyid:0F:89:C8:69:7F:77:92:CA:AF:59:96:64:E8:9A:CE:65:24:4F:8A:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D4nIaX93ksqvWZZk6JrOZSRPiug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:6d:58:fc:3b:06:41:03:b2:f0:d4:11:46:d7:ff:7d:eb:c8:
d1:e0:fa:bc:88:9b:6a:3b:52:a9:0b:dc:86:11:ec:44:95:3c:
cd:4f:1e:52:7d:4d:be:42:20:f3:99:99:cc:a9:3d:0d:16:15:
a4:d5:c2:6c:2c:24:58:49:ee:3d:77:fe:e7:84:52:0b:20:9a:
5e:2f:d4:6e:e9:9c:20:35:64:34:d5:0f:4e:29:44:e9:f9:d1:
e3:60:51:f0:59:c3:3d:ba:06:b8:fe:6e:74:d5:f9:5f:7b:c2:
2b:77:92:e8:e5:49:78:9a:d6:d6:4e:a0:41:ba:dc:30:5d:f7:
0a:eb:cc:b2:03:8a:bd:95:9b:8a:1a:0d:fa:80:e6:42:da:81:
a6:2b:ed:b3:a8:ef:c2:82:ae:2b:ad:74:6d:71:2a:98:6f:d7:
2e:88:d0:08:b2:5a:3a:4a:99:fe:37:2b:1c:09:c8:9c:31:53:
86:a3:28:a9:ee:74:e9:1d:33:e8:59:63:65:ee:27:f2:5b:7e:
7a:2e:5e:d0:17:e1:53:4f:33:3d:cb:5d:be:23:b7:68:cc:e3:
43:1b:e5:68:2d:25:df:41:17:fa:df:0d:d2:dd:1b:ff:67:78:
52:ba:e0:1f:59:48:3e:10:8e:9f:42:53:0a:65:4c:65:05:ba:
e1:08:7e:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:50 2026 by rpki-client