Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
File: 1dzeISXwQFitT0eOF4iEFCzy2tA.mft (raw, json)
Hash identifier: IfrS33qfs/YWfeU1cvlHAP8RsBnda9C1OeTbPPV0yPM=
Subject key identifier: 42:A4:B2:1A:6F:8B:34:27:64:97:40:1C:E3:EC:CF:09:D6:26:57:31
Authority key identifier: D5:DC:DE:21:25:F0:40:58:AD:4F:47:8E:17:88:84:14:2C:F2:DA:D0
Certificate issuer: /CN=d5dcde2125f04058ad4f478e178884142cf2dad0
Certificate serial: 019D390A2D28E727C2DDC22CA8115B220C98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
Manifest number: 1258
Signing time: Sun 29 Mar 2026 10:01:01 +0000
Manifest this update: Sun 29 Mar 2026 10:01:01 +0000
Manifest next update: Mon 30 Mar 2026 10:01:01 +0000
Files and hashes: 1: 1dzeISXwQFitT0eOF4iEFCzy2tA.crl (hash: 5eyL+WXHEhB9j9fp6f8l2bdCKZ/aYiRiIrqqTVTNLjs=)
2: 8BYDJuaf2CuIte9znhQTMnQNfzY.roa (hash: /nJhQIQ9VVW/Qtz2O6f+WJOXBH0IlvQwIRyYeoC0B4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:2d:28:e7:27:c2:dd:c2:2c:a8:11:5b:22:0c:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5dcde2125f04058ad4f478e178884142cf2dad0
Validity
Not Before: Mar 29 10:01:01 2026 GMT
Not After : Mar 30 10:01:01 2026 GMT
Subject: CN=42a4b21a6f8b34276497401ce3eccf09d6265731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:6d:37:fe:08:17:e5:a6:9a:8f:30:77:2c:87:
27:d5:76:75:c4:9f:b2:87:5f:ab:b0:c5:c7:a5:67:
a0:a2:86:bd:7d:09:5d:c0:07:7f:62:b6:0f:9e:50:
20:4f:f5:57:2b:3f:5b:2b:57:0d:6d:e7:5a:1e:f0:
be:c1:01:24:95:9b:46:a2:c4:89:27:52:ae:03:98:
8d:80:96:cd:15:ef:3b:e9:33:40:e2:0f:00:af:c5:
97:e3:e7:e5:17:19:d4:83:7e:92:a4:31:53:d0:c3:
48:c5:de:dd:fc:b3:8c:66:7c:2b:62:d2:ec:5e:1a:
03:e2:16:97:20:f9:a4:51:d9:7f:ef:c7:9c:95:0c:
07:de:60:07:80:46:35:e8:07:e1:a7:5b:13:12:2c:
96:9f:dd:59:07:63:b9:7d:6f:da:92:2a:69:76:9b:
1c:8e:07:71:54:33:ee:44:3b:78:6a:59:cf:4f:b0:
5c:1a:93:c1:b3:73:33:0a:53:56:06:70:cc:e9:e9:
5d:66:c1:ce:bc:45:f8:38:27:28:26:64:fd:2c:e8:
f7:1e:3d:67:7c:88:06:9b:e9:f9:28:df:40:e1:82:
b8:7e:bb:cf:fb:fc:f3:d4:60:0d:7f:c2:8f:13:a7:
0a:bf:31:62:c2:14:a2:d9:73:4d:6d:7c:f0:df:38:
a8:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A4:B2:1A:6F:8B:34:27:64:97:40:1C:E3:EC:CF:09:D6:26:57:31
X509v3 Authority Key Identifier:
keyid:D5:DC:DE:21:25:F0:40:58:AD:4F:47:8E:17:88:84:14:2C:F2:DA:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:78:3f:03:b3:aa:14:a3:df:8d:40:ba:31:fd:d8:06:7b:35:
f4:7b:7e:7f:c3:24:57:9c:f8:db:0b:52:59:67:97:80:1c:cc:
4f:aa:f3:06:33:02:7e:66:37:f2:fc:c3:4e:da:e7:36:c6:95:
77:81:14:ed:26:c4:95:e1:ae:c8:ea:28:bf:9f:79:a0:b1:87:
44:30:07:61:28:38:f3:46:bb:d3:23:b2:d7:d9:29:9e:ca:17:
4c:36:ac:25:a7:4c:53:9e:a3:81:71:7f:3a:ee:26:e3:d4:96:
0a:1d:80:34:10:e1:33:ba:0b:95:4b:91:18:97:ec:72:59:ed:
36:54:5c:fa:c6:80:46:a6:65:75:0a:f6:13:49:c6:05:23:11:
12:b8:66:4f:43:3c:ed:9e:ad:77:4f:b4:48:46:40:bc:93:df:
02:f9:59:fb:1c:16:b1:15:5c:3e:4a:d0:f6:5a:7d:65:6f:e7:
e4:d3:18:e5:17:7e:68:fc:8f:f2:b1:ec:10:d6:d8:68:72:12:
a3:fd:e9:22:b4:40:f1:85:c4:e3:17:8b:a4:0f:58:b6:6f:28:
5d:9a:e6:8f:eb:6d:0b:58:b1:01:6e:33:43:1e:38:f1:a4:b7:
c0:d8:5b:5e:b7:1f:2f:0f:52:e4:17:fc:9a:a3:fa:e4:e1:79:
88:28:18:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:32:23 2026 by rpki-client