Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
File: dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft (raw, json)
Hash identifier: zEXZnILDXuKiNR5+ZWCdbMnONwu4rOZ0tRjHGOhzYmY=
Subject key identifier: 9D:4A:C2:6A:7C:C6:99:7E:F5:1F:4C:A0:57:C4:81:87:42:70:D1:8D
Authority key identifier: 76:07:F6:9D:EE:43:AC:01:D7:DF:EA:CA:9B:76:A2:40:EA:6E:F3:66
Certificate issuer: /CN=7607f69dee43ac01d7dfeaca9b76a240ea6ef366
Certificate serial: 019D3866AEF582AE81106E71829287D8625B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
Manifest number: 06BA
Signing time: Sun 29 Mar 2026 07:02:26 +0000
Manifest this update: Sun 29 Mar 2026 07:02:26 +0000
Manifest next update: Mon 30 Mar 2026 07:02:26 +0000
Files and hashes: 1: dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl (hash: 5N98RPVAxXcraPma8sYs8J1s/T2nYt/M7PhOhDi3gzI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:ae:f5:82:ae:81:10:6e:71:82:92:87:d8:62:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7607f69dee43ac01d7dfeaca9b76a240ea6ef366
Validity
Not Before: Mar 29 07:02:26 2026 GMT
Not After : Mar 30 07:02:26 2026 GMT
Subject: CN=9d4ac26a7cc6997ef51f4ca057c481874270d18d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1c:0a:33:2d:9f:e9:38:9e:cc:30:25:81:b5:
80:28:7f:48:9f:6f:7e:ed:a1:4e:c8:5a:07:d6:0a:
ae:fe:18:ce:15:09:50:78:da:98:63:ac:29:d5:81:
df:57:d0:ec:2b:d8:2e:7e:e4:cc:e8:79:6b:ac:09:
3d:de:8b:8a:1f:c9:bf:10:b5:7e:57:fe:9c:2c:23:
44:81:fd:91:af:ab:ad:63:5c:8a:50:2c:1c:62:e0:
1d:67:06:fa:75:3d:0c:ae:63:c8:33:eb:da:7c:e9:
3d:86:f7:d1:f4:de:ee:14:8c:b3:3a:db:a9:54:5a:
34:11:fe:97:da:c4:ed:23:f9:eb:be:18:ee:88:e8:
c1:10:68:c6:2e:b0:97:ae:ac:80:fa:ca:d5:15:63:
58:2c:cb:be:93:04:ed:7d:c8:f2:4d:6e:8f:cf:88:
01:f0:97:3a:a5:e2:60:49:d1:7b:a8:bd:ae:29:ff:
6f:50:33:6d:42:2b:26:99:e0:08:61:a6:1a:0d:d2:
d5:30:24:97:63:f8:49:e7:77:d3:a0:d0:71:31:78:
7e:ff:81:9f:be:5d:80:3a:bd:8f:dd:2c:68:ce:4b:
3f:7a:cb:1c:b6:77:2b:c6:a8:3a:be:09:54:ee:07:
cc:d9:1d:5f:1d:87:6d:3a:7d:79:ff:07:af:97:e1:
31:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:4A:C2:6A:7C:C6:99:7E:F5:1F:4C:A0:57:C4:81:87:42:70:D1:8D
X509v3 Authority Key Identifier:
keyid:76:07:F6:9D:EE:43:AC:01:D7:DF:EA:CA:9B:76:A2:40:EA:6E:F3:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:35:ba:8b:95:74:6d:73:54:ce:22:35:02:88:6a:a3:40:07:
9b:7e:e5:8e:ea:59:7d:63:c7:eb:a0:62:7e:14:73:42:af:21:
ca:22:37:13:75:85:bc:d3:16:7b:86:83:bf:c1:e7:12:a0:37:
f9:72:ee:b1:5c:8c:14:06:57:9e:8d:05:70:4b:4e:84:c6:c2:
0f:ad:f9:6f:6e:19:84:6f:1e:2b:18:b1:71:e9:b3:61:e5:ab:
0c:79:ed:cd:e3:79:e1:d7:2f:68:e1:da:38:2f:92:6a:d2:93:
5f:ef:04:fb:0a:0e:96:39:64:28:b4:35:e3:f2:03:cd:99:01:
5d:0a:6d:5f:37:98:e6:29:8d:cc:e5:ba:ec:dc:67:16:9d:62:
66:df:67:ac:a6:2a:ec:56:25:1d:ce:fd:d6:57:ec:32:c6:a8:
f7:dd:6a:02:a8:95:00:e7:69:ca:dc:46:cf:40:3b:e8:9e:cf:
d4:39:39:c2:d2:74:46:2e:6a:54:14:7f:30:cd:4d:ad:2c:ab:
6f:bd:f8:d7:62:78:1e:59:72:6c:5f:c6:ae:a7:c8:34:df:0f:
94:0f:b4:59:22:16:e7:0a:3b:a2:65:9c:d8:54:47:b3:16:d9:
9d:0c:8f:a7:0e:0d:3f:c3:f5:52:b7:10:26:6c:3d:ff:22:9c:
19:8e:24:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04Zq71gq6BEG5xgpKH2GJbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2MDdmNjlkZWU0M2FjMDFkN2RmZWFjYTliNzZhMjQwZWE2
ZWYzNjYwHhcNMjYwMzI5MDcwMjI2WhcNMjYwMzMwMDcwMjI2WjAzMTEwLwYDVQQD
Eyg5ZDRhYzI2YTdjYzY5OTdlZjUxZjRjYTA1N2M0ODE4NzQyNzBkMThkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2RwKMy2f6TiezDAlgbWAKH9In29+
7aFOyFoH1gqu/hjOFQlQeNqYY6wp1YHfV9DsK9gufuTM6HlrrAk93ouKH8m/ELV+
V/6cLCNEgf2Rr6utY1yKUCwcYuAdZwb6dT0MrmPIM+vafOk9hvfR9N7uFIyzOtup
VFo0Ef6X2sTtI/nrvhjuiOjBEGjGLrCXrqyA+srVFWNYLMu+kwTtfcjyTW6Pz4gB
8Jc6peJgSdF7qL2uKf9vUDNtQismmeAIYaYaDdLVMCSXY/hJ53fToNBxMXh+/4Gf
vl2AOr2P3Sxozks/essctncrxqg6vglU7gfM2R1fHYdtOn15/wevl+Ex1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ1Kwmp8xpl+9R9MoFfEgYdCcNGNMB8GA1UdIwQY
MBaAFHYH9p3uQ6wB19/qypt2okDqbvNmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGdmMm5lNURyQUhYMy1yS20zYWlRT3B1ODJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8yY2RiM2QtYWI0My00NTI2LTgzNTct
YzAyNDNhM2JkYWZiLzEvZGdmMm5lNURyQUhYMy1yS20zYWlRT3B1ODJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS8yY2RiM2QtYWI0My00NTI2LTgzNTctYzAyNDNhM2JkYWZi
LzEvZGdmMm5lNURyQUhYMy1yS20zYWlRT3B1ODJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIzW6i5V0
bXNUziI1Aohqo0AHm37ljupZfWPH66BifhRzQq8hyiI3E3WFvNMWe4aDv8HnEqA3
+XLusVyMFAZXno0FcEtOhMbCD635b24ZhG8eKxixcemzYeWrDHntzeN54dcvaOHa
OC+SatKTX+8E+woOljlkKLQ14/IDzZkBXQptXzeY5imNzOW67NxnFp1iZt9nrKYq
7FYlHc791lfsMsao991qAqiVAOdpytxGz0A76J7P1Dk5wtJ0Ri5qVBR/MM1NrSyr
b73412J4HllybF/GrqfINN8PlA+0WSIW5wo7omWc2FRHsxbZnQyPpw4NP8P1UrcQ
Jmw9/yKcGY4kow==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:29 2026 by rpki-client