Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
File: D97nlErE2jERKV2B4p3roAwWOpY.mft (raw, json)
Hash identifier: CW3y63FxISE8Bd4KU5BTfGIFrSYHQTuc1QaRRRa+oDk=
Subject key identifier: C1:6D:1E:32:39:64:58:F8:95:FE:ED:D4:D2:A9:89:8E:39:F1:1D:36
Authority key identifier: 0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96
Certificate issuer: /CN=0fdee7944ac4da3111295d81e29deba00c163a96
Certificate serial: 019D38655847F702E2AA70285945E9F53105
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
Manifest number: 128A
Signing time: Sun 29 Mar 2026 07:00:58 +0000
Manifest this update: Sun 29 Mar 2026 07:00:58 +0000
Manifest next update: Mon 30 Mar 2026 07:00:58 +0000
Files and hashes: 1: D97nlErE2jERKV2B4p3roAwWOpY.crl (hash: L6Lg9YtfrCFU+mp1QNK9pGDdIDsY2jCP8USz46rOQhY=)
2: WgNv7-eEqKwSW95Nva_O1MQX1iY.roa (hash: 9ipqetu8ePvj0pp7eCO9cwEQqK0gXGR/o2mUfaHu77U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:58:47:f7:02:e2:aa:70:28:59:45:e9:f5:31:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fdee7944ac4da3111295d81e29deba00c163a96
Validity
Not Before: Mar 29 07:00:58 2026 GMT
Not After : Mar 30 07:00:58 2026 GMT
Subject: CN=c16d1e32396458f895feedd4d2a9898e39f11d36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b5:af:b7:fe:b6:d1:ce:4f:20:45:f0:be:97:
1b:e6:9b:16:ec:a5:65:ab:7f:f4:e4:58:ac:db:8a:
62:db:c1:4c:c9:45:fa:d5:0c:b4:91:4d:c1:0d:9a:
be:07:96:b4:52:8e:83:58:69:eb:a3:9f:cb:ef:f7:
05:0f:fc:01:85:01:cf:6e:36:a2:e0:f4:8d:71:9c:
b3:fe:3f:c1:34:af:8f:62:f9:40:7c:fc:7c:29:13:
41:d6:f6:71:61:ed:d3:d8:e6:da:32:55:9f:f1:3b:
89:41:10:c6:68:02:41:16:3c:e7:ea:d0:a8:59:9a:
b1:b5:7c:22:fd:d6:96:df:8a:34:ad:67:ed:27:c1:
d9:86:0c:ee:8e:3c:35:c5:8e:20:4e:0d:11:52:a7:
0c:77:95:01:66:ed:23:fb:8c:f4:80:09:b2:86:54:
12:e6:1b:a1:dc:10:da:23:c3:ae:2c:e0:23:8d:c4:
e4:f3:e4:53:e4:36:e8:8d:72:2d:86:0f:5f:04:8d:
27:48:9a:0c:f3:9a:c0:11:d8:69:87:b2:ec:3f:3f:
96:d8:1a:ff:11:d7:46:6b:f0:4c:12:d8:67:33:45:
bc:7d:08:f2:aa:1d:07:25:cc:71:97:5a:ba:2a:99:
6b:91:b1:80:a0:c3:c7:cb:57:18:2d:35:46:05:52:
b2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:6D:1E:32:39:64:58:F8:95:FE:ED:D4:D2:A9:89:8E:39:F1:1D:36
X509v3 Authority Key Identifier:
keyid:0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:c6:5c:20:7b:2d:f6:3a:08:ed:13:d3:b4:44:5f:55:d8:b0:
82:3b:1e:af:d2:b6:eb:9a:e4:87:32:82:39:a9:bd:a9:10:28:
00:26:0c:57:3d:25:73:c4:db:5c:ea:35:84:2e:9c:3a:da:70:
61:40:18:dd:56:d5:f7:00:df:d9:49:99:0e:52:39:75:18:63:
a1:cd:cf:17:7e:b2:9a:28:f1:f0:2c:9c:de:cd:0d:0d:4c:56:
90:ef:57:8e:e9:67:6f:a9:97:25:4b:17:45:4a:05:70:16:e4:
80:4a:cc:7f:29:e2:ef:09:28:eb:60:b6:5a:6c:c5:83:c5:81:
a9:ae:d9:c9:16:67:2f:b2:be:f7:ce:df:58:51:fb:cf:a4:55:
e2:ce:27:d9:34:31:0a:6a:3f:48:fb:d8:5c:a0:11:cf:2d:e6:
96:de:38:e9:1a:6d:3d:fb:40:4e:35:e8:4c:2b:f6:56:a4:4e:
d6:81:c0:5a:ab:5a:7d:cf:76:44:2b:c6:2e:da:e3:9a:40:7d:
80:b5:e1:9e:81:91:cc:cd:77:83:1a:90:78:89:a3:96:44:74:
bf:1b:32:04:84:8a:fd:26:7a:5f:b1:56:f9:b9:3c:c3:78:46:
57:b8:c1:fa:de:3f:05:04:f3:a7:72:6c:e4:bd:4e:e8:b8:6f:
23:37:2e:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:26:44 2026 by rpki-client