Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
File: dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft (raw, json)
Hash identifier: kxabk0m9cMRQtVzPvpUIfMAupZhkztzLGXAF+PV5dE4=
Subject key identifier: 94:F4:3B:9D:DF:94:06:F1:14:35:DE:C3:1B:7B:E6:65:BB:8A:A9:78
Authority key identifier: 74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9
Certificate issuer: /CN=74d7da63929999603395877448ce50ac6e0213a9
Certificate serial: 019DB16B66E7393A92B9F49D9922CA77A4FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
Manifest number: 1135
Signing time: Tue 21 Apr 2026 19:01:39 +0000
Manifest this update: Tue 21 Apr 2026 19:01:39 +0000
Manifest next update: Wed 22 Apr 2026 19:01:39 +0000
Files and hashes: 1: SwOC6LWRUnc-Ogb7u3vxF_0mea4.roa (hash: /q8N1XNG3IXyW6BA6haLHv1Ug3hcBfXRJEVoULv8zlE=)
2: dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl (hash: OnRB3Ynw/jrP8n4Ri92EYQTBexiVHPriMTSQr9KqQMA=)
3: iGjEi-RetR317ng4nZLQERiyp5Y.roa (hash: VlJirjJKzaqO+FqHC1L2a0e5Ten97AODI8Xgtdno6FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 19:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b1:6b:66:e7:39:3a:92:b9:f4:9d:99:22:ca:77:a4:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74d7da63929999603395877448ce50ac6e0213a9
Validity
Not Before: Apr 21 19:01:39 2026 GMT
Not After : Apr 22 19:01:39 2026 GMT
Subject: CN=94f43b9ddf9406f11435dec31b7be665bb8aa978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:70:10:00:cf:d0:45:0d:09:54:e0:b3:d5:62:
97:1c:ce:0f:b0:25:37:96:82:a1:ec:83:ad:48:9b:
20:5c:c3:e3:3c:8e:57:c3:62:71:82:d8:b4:75:77:
a4:23:cd:8f:61:4a:3b:53:7c:2f:a5:5e:5f:13:86:
5c:58:e2:d3:c7:21:9e:ee:cc:2f:17:b2:66:0b:48:
bc:5e:f9:df:7a:19:33:fd:a7:d6:45:f3:58:fb:b0:
8c:cc:d8:6c:9d:00:bb:1c:53:62:b7:77:67:82:db:
f7:3a:c4:01:b1:58:7b:6c:81:bf:d3:a6:51:aa:54:
18:7c:34:1c:99:b2:36:14:9a:06:90:85:29:51:81:
6f:86:a4:f1:63:d9:2f:d1:1d:40:95:42:60:69:42:
69:c8:16:74:13:ea:89:86:53:c2:66:20:c3:f1:27:
fc:93:f0:a1:93:88:2b:f0:c1:a2:9d:54:98:14:26:
8b:82:8a:2d:f2:95:d9:a4:fe:f9:15:a7:53:eb:f6:
4a:2f:5a:01:04:4e:b4:a0:4c:83:7c:8e:2a:ae:0f:
c0:79:33:1f:90:92:3b:f5:bc:2a:da:5b:80:79:3f:
4e:7e:b2:60:51:05:1a:64:3d:8d:fd:3d:66:59:ae:
cf:93:45:00:97:a6:36:22:72:e0:da:d9:ed:d8:90:
d0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:F4:3B:9D:DF:94:06:F1:14:35:DE:C3:1B:7B:E6:65:BB:8A:A9:78
X509v3 Authority Key Identifier:
keyid:74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:a5:95:46:9e:65:7a:62:98:9f:aa:2b:e9:8f:b9:ea:b3:f1:
34:4e:31:06:0a:e6:77:cc:d6:66:ca:b3:be:e2:b8:b5:fc:c5:
7c:d7:e9:89:03:83:4c:a5:44:d6:a9:66:98:48:21:90:06:a6:
9b:ab:91:cf:6c:2d:59:8f:25:df:53:4d:b6:d4:75:b1:a8:07:
4d:3a:9a:9f:c9:b3:28:fc:be:cf:4a:74:95:6b:de:2b:28:12:
78:f8:46:b8:41:9d:7c:bf:e7:0b:2d:d3:5d:73:f9:b4:42:00:
89:3a:5c:9e:1e:63:50:2e:88:fa:d2:2e:40:bd:7e:47:bc:f3:
ef:ec:bf:9e:d9:66:5d:dd:e3:80:65:0c:58:b6:29:6e:61:f4:
39:33:41:66:d3:81:e0:a1:a6:46:e5:f3:6c:1a:ed:4e:31:f6:
74:c0:9e:c6:3d:21:13:d1:9f:79:84:9b:cb:0d:74:e8:33:af:
a2:4a:d6:9b:b0:95:46:b5:ec:09:a2:be:37:1a:5e:ee:80:f8:
2e:43:b4:80:32:ed:3d:c9:09:82:ef:a2:13:75:a6:53:7d:fc:
95:bc:55:43:d3:e2:31:5d:7f:53:3b:b6:b4:1c:9e:84:37:51:
6d:e9:f2:e3:fc:ce:00:f8:f0:35:8b:bb:c1:86:f8:53:30:20:
88:3b:b0:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 04:09:16 2026 by rpki-client