Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
File: D3jqRswh1F7WEmjUqfVnMsheIVA.mft (raw, json)
Hash identifier: 0aVTEvpY98os3ddfBWQbv1+u4oFq7aBJkTsoMI4OZqA=
Subject key identifier: 11:94:E5:92:2B:DF:92:8B:54:40:E6:3C:C1:B6:0D:57:83:F3:E8:D7
Authority key identifier: 0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
Certificate issuer: /CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Certificate serial: 019D37C02145AA00DB53FFB726181EC7AEE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 04:00:31 +0000
Manifest this update: Sun 29 Mar 2026 04:00:31 +0000
Manifest next update: Mon 30 Mar 2026 04:00:31 +0000
Files and hashes: 1: D3jqRswh1F7WEmjUqfVnMsheIVA.crl (hash: CA2sJ7aGgQLdI3/8UNCTbcTBmpAjeurmjeTHExUxNEY=)
2: hFTnWGImSrItjvTZMgv5Y6qcHWI.roa (hash: pZbkXKYC4cfW4J3LrFAYotHKXZiiOIa/hV0bOys/6DA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:21:45:aa:00:db:53:ff:b7:26:18:1e:c7:ae:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Validity
Not Before: Mar 29 04:00:31 2026 GMT
Not After : Mar 30 04:00:31 2026 GMT
Subject: CN=1194e5922bdf928b5440e63cc1b60d5783f3e8d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8f:8b:7c:eb:1e:96:5a:e9:bc:76:17:4c:6e:
44:63:3d:c2:6e:a2:98:e4:24:ac:65:39:1e:50:36:
b2:5c:fc:a7:d0:b7:06:ae:cb:cd:ea:27:ee:89:2e:
82:33:3a:e0:4b:88:88:b8:7c:2e:9c:42:41:ca:b9:
25:fd:42:c4:bc:4b:bf:f3:33:dc:dd:22:fa:97:84:
a6:64:2a:02:64:c5:d0:4a:1d:10:bf:bb:dc:d3:03:
5e:22:5d:13:24:9f:a4:b0:f3:f7:04:c3:a4:e2:64:
ca:49:b3:d0:a5:8a:37:17:5d:60:91:07:e2:6f:72:
5d:c3:8b:b6:f2:75:ef:b1:09:7d:2f:a5:ce:e2:e9:
41:2a:eb:d4:2d:5b:1e:2c:3a:b7:3d:2c:c6:f2:8a:
47:e8:7a:45:17:aa:08:5d:24:33:d2:3a:73:65:87:
be:d3:58:33:19:47:b6:b4:3e:46:28:81:cd:ba:9c:
6d:9e:fa:36:76:04:fd:8a:43:02:db:40:9b:f7:0b:
44:d1:c9:f9:92:8f:c3:97:2a:4d:3b:53:cb:0d:e9:
e8:bf:52:a9:3d:34:f5:42:1b:83:c1:63:8d:f4:65:
48:d1:9a:94:10:2b:c2:80:e0:b0:2d:31:7d:26:9a:
36:05:97:da:0a:db:e3:34:3c:4f:cb:55:c3:35:ed:
ed:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:94:E5:92:2B:DF:92:8B:54:40:E6:3C:C1:B6:0D:57:83:F3:E8:D7
X509v3 Authority Key Identifier:
keyid:0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:26:1e:c1:9c:a2:eb:85:cb:16:51:e2:47:83:cd:3a:1a:32:
ed:68:94:a6:92:c2:85:d6:00:f6:52:f4:22:76:b9:02:d8:24:
76:74:4a:cb:8f:78:e9:3f:69:4d:7d:74:1a:9b:e9:e4:42:3b:
f8:a5:e2:8d:cf:7b:be:75:b5:c6:37:a5:3d:39:0b:ff:1c:e0:
3c:21:b7:16:8f:2c:b3:a5:73:38:c8:45:a4:56:e2:35:54:b0:
2f:fe:21:71:cc:3c:39:d2:b2:0c:e3:0f:24:d2:cd:f3:91:62:
4a:c6:71:5c:a5:5f:06:c9:51:8e:35:9a:a4:b6:bc:8d:63:24:
da:d8:fe:8d:51:6f:64:93:85:96:06:05:9c:ac:e5:f5:42:a4:
f5:2c:16:13:22:45:39:51:1e:cb:44:d8:cf:ab:2b:b8:a5:83:
0b:66:d4:8f:30:4d:5c:d5:de:5b:3c:6a:c8:e7:3c:8e:f8:6e:
35:75:63:5f:c3:e1:e6:10:43:ba:43:ca:ca:bf:61:49:31:51:
f4:39:1d:9e:90:9b:9e:6c:71:c1:00:a1:f1:41:19:f9:62:e2:
ed:8c:57:f5:78:e5:6b:26:ea:84:4f:a0:d0:ca:d4:6f:18:68:
7a:56:6e:fd:48:6f:2d:5e:7f:63:b3:75:5d:b6:6d:37:a4:cd:
95:49:39:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:46 2026 by rpki-client