Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
File: dCnR70knCBDhAgzqhhmGQjORMaA.mft (raw, json)
Hash identifier: 61FuMRFQ9oe1jg9okvNOLJ1lPKoBV6f1IzdOi/f6vvo=
Subject key identifier: 89:E9:7F:0F:83:49:91:AE:AC:87:FA:EC:F6:5A:C8:5C:52:E1:B6:26
Authority key identifier: 74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0
Certificate issuer: /CN=7429d1ef49270810e1020cea86198642339131a0
Certificate serial: 019D38661ECD877F2A60E105D98DEFE51FF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
Manifest number: 0D5B
Signing time: Sun 29 Mar 2026 07:01:49 +0000
Manifest this update: Sun 29 Mar 2026 07:01:49 +0000
Manifest next update: Mon 30 Mar 2026 07:01:49 +0000
Files and hashes: 1: dCnR70knCBDhAgzqhhmGQjORMaA.crl (hash: tmAbXWcyVhGo7+mNUaz6MZGWwqTIbcLBxmiKP/pgm90=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:1e:cd:87:7f:2a:60:e1:05:d9:8d:ef:e5:1f:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7429d1ef49270810e1020cea86198642339131a0
Validity
Not Before: Mar 29 07:01:49 2026 GMT
Not After : Mar 30 07:01:49 2026 GMT
Subject: CN=89e97f0f834991aeac87faecf65ac85c52e1b626
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d4:93:0f:35:2f:99:52:57:ac:13:e4:27:6a:
49:47:62:44:eb:3c:76:6f:d8:8a:45:3c:23:74:07:
d2:fb:a7:1d:f8:54:8c:1e:bf:81:14:04:96:c8:52:
cf:4f:82:c5:b9:28:a8:73:04:b4:dd:13:ee:5c:07:
a7:1c:4e:99:9e:d9:9c:07:f0:eb:be:d0:35:90:74:
a2:ee:aa:2c:3c:f7:47:14:f2:3b:06:9e:f8:5f:5f:
c8:ba:26:c1:d8:9f:83:93:8a:6d:a2:c3:4a:d0:30:
d6:a9:ba:50:dd:a0:df:a4:42:a2:17:84:ae:25:28:
85:a8:8a:2a:2b:f5:85:fa:ba:9f:07:94:ed:70:dc:
39:08:e5:b0:20:30:69:aa:eb:74:9c:b6:58:7d:b9:
9a:7f:24:61:b7:f8:4a:dd:d5:e6:4b:ce:a0:ec:15:
72:70:19:29:14:b4:e6:ee:d2:5a:e2:b7:04:fc:4d:
62:b7:d2:75:27:4b:e3:a2:5a:8f:ce:c6:a4:48:c1:
a3:86:e2:5b:24:16:b7:b5:e5:22:76:24:b5:d3:6d:
15:28:a2:4c:17:12:82:1c:a8:5f:46:d3:e7:c5:93:
a3:72:bc:a1:5e:a8:3c:ef:08:7b:51:2b:6b:ad:54:
e8:a0:3d:a5:ad:34:e7:fd:cc:e1:55:44:c3:8c:9a:
21:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:E9:7F:0F:83:49:91:AE:AC:87:FA:EC:F6:5A:C8:5C:52:E1:B6:26
X509v3 Authority Key Identifier:
keyid:74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:e4:00:30:d2:65:65:46:71:3f:35:d0:12:80:c9:59:50:d6:
36:71:81:de:95:37:37:d5:04:29:e5:06:4d:46:22:15:ce:15:
52:45:e5:14:3c:68:f4:2a:d1:1d:06:75:4a:ee:79:24:c2:f1:
77:64:87:55:6f:0f:0e:14:83:ff:b1:b5:65:08:1b:82:5c:e4:
9d:65:32:2c:d3:fc:af:72:09:be:65:96:a2:b0:dd:67:f5:5f:
02:8c:3c:a8:00:6e:e0:fa:18:c2:c7:e5:55:e2:01:81:41:92:
50:56:ad:c1:16:26:34:04:00:e1:71:97:b3:1a:b3:16:6e:ff:
fb:4d:2c:7f:b1:53:d7:b2:09:9a:f4:80:ad:aa:00:86:8e:32:
64:57:45:6b:e2:c5:45:4f:58:63:ef:34:66:a6:5a:cd:1e:71:
93:26:62:74:54:1d:d4:87:de:30:4a:0d:df:4b:ef:54:01:d7:
6f:cf:a4:94:64:1e:d7:05:02:34:72:15:52:bc:b5:cf:06:8f:
e3:6d:02:8b:62:f7:24:b3:76:71:ac:09:e4:41:8a:84:17:72:
1b:52:42:2c:9a:85:f9:4d:d0:b8:08:70:e1:f5:4a:46:9f:56:
19:41:b9:5d:ac:92:84:f1:85:be:d1:77:31:0d:7e:59:4c:07:
7a:c0:f8:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:24:54 2026 by rpki-client