Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft
File: DC-bLoowUI05GSr9WzTuVvd1l54.mft (raw, json)
Hash identifier: xGRO5HwsVoO3JfuK3nDHV5yoeL3cOtRVUpKZjlczF+U=
Subject key identifier: 89:D2:69:80:A1:74:69:D0:CC:9D:8E:04:D3:A5:46:6E:F6:D4:FB:C4
Authority key identifier: 0C:2F:9B:2E:8A:30:50:8D:39:19:2A:FD:5B:34:EE:56:F7:75:97:9E
Certificate issuer: /CN=0c2f9b2e8a30508d39192afd5b34ee56f775979e
Certificate serial: 019D382E6CB1CA85DF995ADC30CEFA9A5EDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft
Manifest number: 106B
Signing time: Sun 29 Mar 2026 06:00:59 +0000
Manifest this update: Sun 29 Mar 2026 06:00:59 +0000
Manifest next update: Mon 30 Mar 2026 06:00:59 +0000
Files and hashes: 1: DC-bLoowUI05GSr9WzTuVvd1l54.crl (hash: g4MWuzDMU3puTcKI8b3ZWY2vVz/p6U5vRCfACBes9u8=)
2: DiPUcYeYMMKBJ6pco8Genqou5P4.roa (hash: k19Q1QHBDALtzKkWkQIrCed59UccTXEghHZXW9Dj4JM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft
rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:6c:b1:ca:85:df:99:5a:dc:30:ce:fa:9a:5e:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c2f9b2e8a30508d39192afd5b34ee56f775979e
Validity
Not Before: Mar 29 06:00:59 2026 GMT
Not After : Mar 30 06:00:59 2026 GMT
Subject: CN=89d26980a17469d0cc9d8e04d3a5466ef6d4fbc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:96:1a:44:f7:a2:7f:f3:b0:7e:3e:cf:6f:cb:
a8:7c:d2:cf:98:4d:c2:45:2f:d9:1e:ea:d6:23:4e:
34:f3:4a:49:e4:12:36:2b:af:2e:10:2a:52:d8:0f:
13:79:ee:ac:6a:75:d4:51:42:f9:55:31:56:11:93:
42:e1:d8:b7:6e:43:52:b3:1e:a5:87:24:87:55:8a:
f5:a3:9d:b0:02:c6:28:b0:e0:dc:a0:eb:37:7b:1a:
58:09:c7:20:57:34:05:15:8d:df:eb:04:f9:a4:76:
ca:69:48:9f:7f:75:be:79:6a:c3:f1:27:43:cc:ab:
11:8d:d5:00:98:6a:e1:c4:8a:0a:46:6a:b5:a4:31:
cc:ce:7e:4c:58:4a:1a:47:5d:fb:25:78:d5:d9:3a:
16:0b:36:ca:15:ec:5b:66:21:04:5c:3c:8a:22:a9:
cb:ec:ad:c6:3c:12:87:02:f4:9b:3a:c0:10:75:69:
92:fc:24:71:01:9f:49:09:36:63:46:b6:98:72:9d:
ad:ec:13:a2:a7:23:26:7d:b6:9c:23:32:a8:74:40:
fa:9d:74:26:b3:aa:bf:9e:0b:a6:a8:b1:66:2c:97:
b5:d1:45:6b:1a:63:1e:2e:1d:e1:46:5c:aa:65:d4:
8c:75:4e:cf:a0:7b:99:d4:25:97:ea:99:1b:f7:56:
7f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D2:69:80:A1:74:69:D0:CC:9D:8E:04:D3:A5:46:6E:F6:D4:FB:C4
X509v3 Authority Key Identifier:
keyid:0C:2F:9B:2E:8A:30:50:8D:39:19:2A:FD:5B:34:EE:56:F7:75:97:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:5e:ad:63:0d:db:e7:92:3e:4f:ff:4e:34:67:e5:38:1a:bd:
6d:40:14:25:cb:09:a5:48:9e:75:63:4b:ef:20:ad:6e:68:68:
6a:ba:3d:42:dd:e7:26:06:ca:78:da:ec:b6:45:8f:89:9d:23:
6d:35:33:7d:b2:17:83:cf:d7:77:e1:fd:7f:19:d9:35:77:01:
84:43:04:d7:01:3f:2c:fe:d1:f1:ad:a3:57:65:b1:65:3b:15:
03:be:b4:57:b0:97:a0:3e:d9:4d:5c:ae:51:2d:34:c5:c7:18:
84:e3:ed:38:c2:c5:13:98:32:59:d0:62:0d:ea:a0:40:29:da:
6a:87:c5:16:a2:cf:9e:f1:10:51:0d:4b:f8:f2:d8:b7:08:c6:
ab:d8:4b:99:ab:84:ab:d3:4e:2c:fc:a6:24:a7:08:00:12:12:
1c:4c:5b:ea:aa:9a:e7:71:42:6c:87:9a:70:c2:a6:8a:bb:63:
e4:d5:8c:17:f6:fc:ed:bc:3e:44:4f:2e:3e:16:21:cd:70:57:
94:65:82:d1:c5:f4:59:14:90:67:b0:b5:a2:fb:54:1a:1d:4a:
62:cc:4b:0c:3d:e5:cc:15:34:5d:15:51:4b:33:50:5e:99:d6:
2b:60:f0:84:33:a6:cc:2b:a6:f7:83:a2:6f:76:5a:53:f0:d0:
12:0f:80:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:01 2026 by rpki-client