Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
File: dAThbzM9iWUMZhOsbJXTSNxLeVA.mft (raw, json)
Hash identifier: FOYyW/bmySGveFluZaQBLVJoI5u0Doy0dga096TyY0E=
Subject key identifier: 67:70:CE:71:C5:0F:54:E6:AF:2B:53:36:55:FD:13:83:29:A1:9B:91
Authority key identifier: 74:04:E1:6F:33:3D:89:65:0C:66:13:AC:6C:95:D3:48:DC:4B:79:50
Certificate issuer: /CN=7404e16f333d89650c6613ac6c95d348dc4b7950
Certificate serial: 019DB1D90685FC67A56051C4A0AA5D636229
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
Manifest number: 0458
Signing time: Tue 21 Apr 2026 21:01:23 +0000
Manifest this update: Tue 21 Apr 2026 21:01:23 +0000
Manifest next update: Wed 22 Apr 2026 21:01:23 +0000
Files and hashes: 1: aON68VTwskogSIwfK0by-nZp_Rg.roa (hash: dkh8/Wbv+HTgUBFM4ZbuS+fZuVAjLH6qIB6RVSRMT9M=)
2: dAThbzM9iWUMZhOsbJXTSNxLeVA.crl (hash: Cb1dpzOs8WncSZfz/ANDZQmvYcdW/PZiw1HyUVzXxbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 21:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b1:d9:06:85:fc:67:a5:60:51:c4:a0:aa:5d:63:62:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7404e16f333d89650c6613ac6c95d348dc4b7950
Validity
Not Before: Apr 21 21:01:23 2026 GMT
Not After : Apr 22 21:01:23 2026 GMT
Subject: CN=6770ce71c50f54e6af2b533655fd138329a19b91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:78:d4:b7:13:b0:39:6f:42:f0:f7:bf:86:48:
73:4f:bc:67:7c:bc:bf:08:b1:3a:d1:34:00:46:40:
bb:98:2b:df:ec:bb:85:6a:96:a4:01:36:76:21:88:
a6:6d:34:9a:05:c8:a0:90:a4:4b:14:92:23:8b:0c:
cd:26:4e:a2:31:a4:f2:4e:9f:12:cf:74:85:8f:34:
a0:c8:d8:c7:2e:20:6a:63:46:f2:9f:71:e2:ad:0f:
6a:68:3a:16:21:1d:28:f2:89:8a:a8:d0:76:15:1d:
6e:28:7c:2c:90:8b:cc:64:b3:32:d5:33:1e:07:41:
37:72:a2:13:e0:45:d9:ee:6a:00:8b:4a:f0:b3:6d:
db:90:cd:e6:49:c9:48:d1:52:4a:0e:1c:f5:37:7b:
ed:31:ac:a8:bb:dd:41:39:c8:ca:0b:7c:60:9e:9b:
51:24:ce:8e:f2:c6:2c:a2:f8:af:7f:84:4b:2c:ff:
1b:18:a0:13:d2:b7:3e:2b:66:e3:eb:d7:3e:26:12:
4c:0e:58:6f:b1:63:04:00:e6:e9:0d:11:27:f8:17:
26:b5:18:1a:65:dc:7d:4e:eb:63:9d:3b:20:01:36:
4c:e8:29:79:39:fb:7c:29:0b:9a:a9:8b:90:be:8a:
0b:0c:cd:a3:87:8f:7e:d4:4a:df:c8:ba:6d:d1:f4:
a9:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:70:CE:71:C5:0F:54:E6:AF:2B:53:36:55:FD:13:83:29:A1:9B:91
X509v3 Authority Key Identifier:
keyid:74:04:E1:6F:33:3D:89:65:0C:66:13:AC:6C:95:D3:48:DC:4B:79:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:fa:29:4e:b7:73:db:67:36:c7:51:dd:18:f9:2e:bb:17:25:
d4:2d:78:3f:41:48:9c:6d:1f:3b:36:61:0e:d8:d1:8f:c7:4e:
f2:22:8b:32:9f:ae:6a:db:28:b4:b5:0c:1b:33:07:40:ce:4c:
ac:34:eb:9b:df:95:6a:13:c4:77:fe:37:15:4f:5a:02:24:00:
c2:72:57:20:1f:2c:29:17:d0:7d:11:7a:9a:d7:fc:8f:01:c6:
08:40:ee:8e:bf:52:4e:c8:aa:fc:8e:ff:ed:65:b3:39:84:cb:
9f:cf:2b:1e:a5:40:43:99:da:06:dc:e2:d5:36:35:ec:ea:14:
eb:78:f5:0c:f6:e3:3b:49:09:e1:cc:62:70:5f:a6:98:13:2a:
32:40:4e:99:19:e7:1e:9e:6a:0b:c4:5d:70:9f:99:94:2c:5e:
7b:a9:da:3b:e2:df:02:7d:bb:42:05:bb:ab:06:b5:17:f4:9a:
ac:19:ed:2f:9d:5f:7f:60:13:de:80:e9:48:ae:63:a5:c6:b7:
41:f2:3d:01:81:0e:ee:28:ea:32:2d:fc:92:04:62:0c:6a:29:
aa:b6:c6:0b:17:40:ec:14:d8:ba:35:67:c0:3c:cd:45:76:82:
49:37:44:b6:98:d8:82:2e:08:bb:a3:b3:c3:c7:fb:fc:6e:ab:
8a:3c:73:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 05:38:01 2026 by rpki-client