Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
File: dHnfUKMVAp6AqhlHr-EtselIYos.mft (raw, json)
Hash identifier: 9cKeXvfLrnicISleSvE7PwovRTLEFVfTVfuvmfAxtww=
Subject key identifier: 21:6F:05:2E:F7:BF:E6:37:AC:16:E1:06:7D:52:3E:7A:60:28:C1:2D
Authority key identifier: 74:79:DF:50:A3:15:02:9E:80:AA:19:47:AF:E1:2D:B1:E9:48:62:8B
Certificate issuer: /CN=7479df50a315029e80aa1947afe12db1e948628b
Certificate serial: 019D397778F62B49F344FA47EE6E65925766
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
Manifest number: 1193
Signing time: Sun 29 Mar 2026 12:00:24 +0000
Manifest this update: Sun 29 Mar 2026 12:00:24 +0000
Manifest next update: Mon 30 Mar 2026 12:00:24 +0000
Files and hashes: 1: BXcJyeoWgagdd3V31mwsVCcQbpE.roa (hash: yQn1/FtH4uOfCzrJXuLEmscMEDI0/UDWaQ5VY5MFs4U=)
2: dHnfUKMVAp6AqhlHr-EtselIYos.crl (hash: fG9Fn3pyPdFB+s6SrJcJ+AzBDPIAQosy3+BCP1AVvsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:78:f6:2b:49:f3:44:fa:47:ee:6e:65:92:57:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7479df50a315029e80aa1947afe12db1e948628b
Validity
Not Before: Mar 29 12:00:24 2026 GMT
Not After : Mar 30 12:00:24 2026 GMT
Subject: CN=216f052ef7bfe637ac16e1067d523e7a6028c12d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:aa:50:13:7b:88:93:c4:99:ff:ba:6e:4e:a8:
be:6f:e2:ad:06:f8:f4:de:a3:0e:81:c3:f9:b6:60:
e5:29:3a:6e:f8:9a:51:39:43:ce:bd:f2:ac:57:13:
18:32:3d:7e:f7:42:31:89:5c:c1:69:92:bf:c0:a2:
d1:4c:67:fb:14:ac:69:2e:2c:54:2f:ba:1d:d3:35:
7d:e6:b2:16:f1:b5:fa:ba:72:19:c8:6b:14:08:c2:
0b:1b:c6:d8:78:ee:07:d0:07:45:8d:86:19:d1:95:
f5:ef:1c:bf:69:6e:34:2a:e3:9b:84:8a:96:02:24:
46:46:6a:00:1e:b0:73:f8:a8:d5:c5:10:74:c3:b9:
b6:c3:fb:e3:fe:cd:25:8f:bb:f4:e4:c2:c7:77:65:
8a:88:0d:ca:c0:b6:9e:75:ef:b7:66:0c:4b:4b:30:
3b:b2:ca:b9:c7:d1:52:16:7a:1c:28:aa:83:65:25:
ce:8b:66:ad:1e:c8:3c:d1:3b:99:c6:e5:c6:33:93:
a7:57:9c:23:91:8f:6c:ff:c0:a2:b5:c4:20:64:93:
31:30:60:dd:e3:4b:ae:14:c4:e1:e8:7d:dd:16:57:
69:5a:6d:41:47:7c:6a:74:6b:d4:5a:5c:a5:8b:26:
31:08:93:98:8e:70:3d:5e:6b:b8:15:21:fe:81:20:
1a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:6F:05:2E:F7:BF:E6:37:AC:16:E1:06:7D:52:3E:7A:60:28:C1:2D
X509v3 Authority Key Identifier:
keyid:74:79:DF:50:A3:15:02:9E:80:AA:19:47:AF:E1:2D:B1:E9:48:62:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:a0:a2:58:4a:4f:fc:ee:76:e7:cc:c4:92:c9:a0:d9:0c:bd:
44:e8:9f:ef:2a:7e:b4:55:15:1d:ef:d1:f5:4d:e2:18:c3:d2:
15:7b:85:b5:77:92:bf:e0:03:0c:bf:a7:b2:11:ad:ce:c0:72:
fb:c0:16:44:b5:a9:14:1b:1b:a1:72:74:d7:79:a0:c4:60:c4:
bf:92:6f:ef:66:0f:15:99:bc:83:e0:61:c0:b6:ca:ca:d4:ee:
8f:d7:03:0d:2f:8a:e0:1a:78:73:f4:3d:85:56:7c:6d:c0:41:
6c:2b:36:18:0e:1e:21:ef:29:75:d0:9e:b9:2e:63:ea:0b:b7:
18:75:ac:de:ed:36:2c:26:b9:46:40:79:02:37:74:fd:04:2a:
e4:ee:4d:4c:a0:9f:ab:fe:f9:d3:81:de:1c:47:ed:f5:0c:65:
93:78:7d:99:b8:68:38:d9:50:75:7a:5e:1e:b6:88:15:53:5a:
c4:17:c0:91:4a:10:ab:84:81:94:5d:e7:5f:43:6f:90:85:bf:
7e:6f:0c:7e:c0:32:24:39:f1:e4:56:1c:8a:01:b0:2b:a5:63:
0f:d7:5e:6c:25:e2:d9:2a:b4:54:b4:52:30:27:cb:37:94:fe:
44:4d:8c:8b:cd:57:06:3a:39:6f:17:c7:73:ff:a7:04:74:e1:
9d:38:03:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:10:28 2026 by rpki-client