Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
File: dAThbzM9iWUMZhOsbJXTSNxLeVA.mft (raw, json)
Hash identifier: 9p16qofqyh5uIUXdfciXXHkmIrpnrONi3/ckYiTM2+k=
Subject key identifier: 0F:8F:1D:FB:D1:1E:0E:FC:4F:5C:A7:6C:08:FE:11:2F:2D:04:15:EC
Authority key identifier: 74:04:E1:6F:33:3D:89:65:0C:66:13:AC:6C:95:D3:48:DC:4B:79:50
Certificate issuer: /CN=7404e16f333d89650c6613ac6c95d348dc4b7950
Certificate serial: 019CCA1AA921836E3999C287392FF164054C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
Manifest number: 03E0
Signing time: Sat 07 Mar 2026 21:01:10 +0000
Manifest this update: Sat 07 Mar 2026 21:01:10 +0000
Manifest next update: Sun 08 Mar 2026 21:01:10 +0000
Files and hashes: 1: aON68VTwskogSIwfK0by-nZp_Rg.roa (hash: dkh8/Wbv+HTgUBFM4ZbuS+fZuVAjLH6qIB6RVSRMT9M=)
2: dAThbzM9iWUMZhOsbJXTSNxLeVA.crl (hash: TANHmp9jZ32A7W+xeVgWPQmSuv1UOBO13WWedNHLH70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 20:09:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ca:1a:a9:21:83:6e:39:99:c2:87:39:2f:f1:64:05:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7404e16f333d89650c6613ac6c95d348dc4b7950
Validity
Not Before: Mar 7 21:01:10 2026 GMT
Not After : Mar 8 21:01:10 2026 GMT
Subject: CN=0f8f1dfbd11e0efc4f5ca76c08fe112f2d0415ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:95:6a:a2:d6:30:7b:d8:fc:ed:77:02:7f:9f:
f5:6e:54:88:58:84:01:0e:bd:e8:3d:51:60:21:02:
4e:11:a1:e2:0b:de:59:d0:0e:e1:cb:11:b2:80:ac:
e5:a9:ab:d2:41:55:ad:c8:94:ea:c8:47:33:99:c3:
8b:6b:46:ff:58:df:5e:35:9c:d7:d0:66:d4:74:87:
b6:d3:b3:13:e1:28:36:78:50:8a:b0:98:88:da:05:
ee:31:d5:1b:d5:88:0f:fe:cc:fb:45:ff:42:f4:a9:
0a:b5:f3:52:02:80:92:70:67:01:b9:64:49:36:ff:
09:65:4e:10:fb:59:70:43:5d:cb:aa:53:cd:75:31:
06:ca:dd:39:5b:e8:46:1e:84:4e:04:9b:af:7a:23:
bb:15:de:be:16:d7:47:48:a9:e4:bd:33:5f:9d:1e:
19:7e:56:3d:e9:80:90:77:c0:4b:b2:cc:b1:f5:78:
3d:e9:9d:0c:07:0d:b0:4e:30:22:8c:c0:76:0b:0e:
a3:bd:04:ab:00:e7:e1:8f:62:e2:0e:c3:7a:2d:9f:
40:e4:f6:a2:27:09:22:cd:46:bc:dc:09:6a:30:9c:
be:2f:55:f6:bb:51:f8:27:8b:82:81:96:b0:43:7b:
21:e2:b8:d3:10:eb:7e:a3:7d:45:76:e5:1e:ea:77:
77:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:8F:1D:FB:D1:1E:0E:FC:4F:5C:A7:6C:08:FE:11:2F:2D:04:15:EC
X509v3 Authority Key Identifier:
keyid:74:04:E1:6F:33:3D:89:65:0C:66:13:AC:6C:95:D3:48:DC:4B:79:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:a2:59:e2:1e:5c:0e:fe:6f:1d:2c:8c:84:1d:45:61:56:ee:
da:a2:73:fa:d9:1e:04:67:08:54:48:60:5b:d7:68:50:fc:28:
37:15:41:54:ec:13:46:fa:5f:78:c4:d4:65:75:93:f5:89:29:
d2:fa:32:25:1f:c6:8d:04:95:c8:c9:e9:f0:33:58:55:61:91:
13:bd:1e:32:22:aa:7f:66:d0:bf:59:cb:7f:ca:da:0b:23:f7:
bd:2b:4f:91:2f:13:75:76:ea:66:e8:a2:3f:22:b1:71:73:bd:
8f:47:8e:e4:b2:a2:4c:50:99:43:79:06:89:c2:88:da:74:7d:
bb:d7:8f:ed:06:84:cd:0c:1e:ba:c8:52:65:8b:11:78:9a:c3:
35:74:03:0d:a4:aa:02:c1:84:af:8d:79:af:76:b3:1f:de:7c:
5f:bd:60:71:21:88:46:8c:b7:99:3f:ae:0f:7a:bb:47:94:d3:
dd:72:17:fa:8d:63:ce:10:a3:8f:e1:8b:dc:d9:e7:49:35:1d:
46:52:c7:e7:f7:52:38:97:25:2a:7d:5a:34:bd:6b:51:3a:c2:
13:40:25:a9:ce:7b:8a:fa:11:04:dd:41:c3:50:0d:2e:68:6a:
bf:07:54:aa:c2:c0:9a:34:9e:e5:d3:cc:81:ac:37:de:96:1b:
94:cb:9c:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzKGqkhg245mcKHOS/xZAVMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0MDRlMTZmMzMzZDg5NjUwYzY2MTNhYzZjOTVkMzQ4ZGM0
Yjc5NTAwHhcNMjYwMzA3MjEwMTEwWhcNMjYwMzA4MjEwMTEwWjAzMTEwLwYDVQQD
EygwZjhmMWRmYmQxMWUwZWZjNGY1Y2E3NmMwOGZlMTEyZjJkMDQxNWVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxpVqotYwe9j87XcCf5/1blSIWIQB
Dr3oPVFgIQJOEaHiC95Z0A7hyxGygKzlqavSQVWtyJTqyEczmcOLa0b/WN9eNZzX
0GbUdIe207MT4Sg2eFCKsJiI2gXuMdUb1YgP/sz7Rf9C9KkKtfNSAoCScGcBuWRJ
Nv8JZU4Q+1lwQ13LqlPNdTEGyt05W+hGHoROBJuveiO7Fd6+FtdHSKnkvTNfnR4Z
flY96YCQd8BLssyx9Xg96Z0MBw2wTjAijMB2Cw6jvQSrAOfhj2LiDsN6LZ9A5Pai
JwkizUa83AlqMJy+L1X2u1H4J4uCgZawQ3sh4rjTEOt+o31FduUe6nd3rwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA+PHfvRHg78T1ynbAj+ES8tBBXsMB8GA1UdIwQY
MBaAFHQE4W8zPYllDGYTrGyV00jcS3lQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEFUaGJ6TTlpV1VNWmhPc2JKWFRTTnhMZVZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8xNTMyYzYtYTJmNS00OGU2LWIwMzct
MThjNWViZWYyN2E4LzEvZEFUaGJ6TTlpV1VNWmhPc2JKWFRTTnhMZVZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8xNTMyYzYtYTJmNS00OGU2LWIwMzctMThjNWViZWYyN2E4
LzEvZEFUaGJ6TTlpV1VNWmhPc2JKWFRTTnhMZVZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADqJZ4h5c
Dv5vHSyMhB1FYVbu2qJz+tkeBGcIVEhgW9doUPwoNxVBVOwTRvpfeMTUZXWT9Ykp
0voyJR/GjQSVyMnp8DNYVWGRE70eMiKqf2bQv1nLf8raCyP3vStPkS8TdXbqZuii
PyKxcXO9j0eO5LKiTFCZQ3kGicKI2nR9u9eP7QaEzQweushSZYsReJrDNXQDDaSq
AsGEr415r3azH958X71gcSGIRoy3mT+uD3q7R5TT3XIX+o1jzhCjj+GL3NnnSTUd
RlLH5/dSOJclKn1aNL1rUTrCE0Alqc57ivoRBN1Bw1ANLmhqvwdUqsLAmjSe5dPM
gaw33pYblMuc9Q==
-----END CERTIFICATE-----
Generated at Sun Mar 8 00:26:04 2026 by rpki-client