Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft
File: DkGjlotidBs200i-DSyRxdSxM6I.mft (raw, json)
Hash identifier: fzCE2llfclvJyE8JT6qf7PdF3D9YXiFtJiybZC+XZSg=
Subject key identifier: BD:0C:44:13:C6:D5:56:9F:53:34:D5:D7:79:08:6D:56:D9:73:73:9F
Authority key identifier: 0E:41:A3:96:8B:62:74:1B:36:D3:48:BE:0D:2C:91:C5:D4:B1:33:A2
Certificate issuer: /CN=0e41a3968b62741b36d348be0d2c91c5d4b133a2
Certificate serial: 019CAE6C85F00A1369B6971CB3C00107272C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft
Manifest number: 1849
Signing time: Mon 02 Mar 2026 12:01:13 +0000
Manifest this update: Mon 02 Mar 2026 12:01:13 +0000
Manifest next update: Tue 03 Mar 2026 12:01:13 +0000
Files and hashes: 1: 8zauiXBaFMH5VLxzsSvMEUumaxQ.roa (hash: sJvy2vx8n7/hTOLyUNRFHLLiMRYWbPfkI+7/KsQidiw=)
2: DkGjlotidBs200i-DSyRxdSxM6I.crl (hash: bqRGhomNg6EI5sRfievunWNDZ7Iy+8S0AlPIQQAqrF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft
rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:6c:85:f0:0a:13:69:b6:97:1c:b3:c0:01:07:27:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e41a3968b62741b36d348be0d2c91c5d4b133a2
Validity
Not Before: Mar 2 12:01:13 2026 GMT
Not After : Mar 3 12:01:13 2026 GMT
Subject: CN=bd0c4413c6d5569f5334d5d779086d56d973739f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4a:bd:89:f8:0d:7d:0e:8a:f9:33:85:eb:eb:
0c:99:b3:dd:97:70:23:2f:03:c9:72:5a:d6:68:92:
d7:3f:93:a1:9d:d5:b1:41:69:23:7c:87:b8:1a:2c:
54:57:62:b9:ea:55:0a:03:36:54:80:27:10:bd:a8:
38:f8:dd:9d:be:da:f9:10:c5:6e:8f:e4:97:86:0e:
cd:04:a3:08:2a:f8:b0:de:b8:70:0b:a2:e8:de:6a:
49:d6:72:08:6a:07:c7:81:94:96:8c:59:6f:48:0e:
64:64:27:90:2b:40:16:30:64:ea:42:42:ac:ff:76:
fe:7e:0e:df:89:11:a0:ff:b8:66:d4:b9:be:2e:78:
ca:94:0d:70:95:af:22:0f:46:d5:60:8b:f7:8b:b5:
88:fd:03:c5:39:e5:6b:d2:01:78:13:77:bf:1d:5f:
72:7f:06:8e:b8:9e:f1:31:35:88:3e:0e:f6:e1:3f:
32:4f:74:4e:bd:0a:b1:1a:69:35:ee:92:e1:3b:64:
cb:1a:b9:9f:53:16:ea:f0:0f:20:fb:3c:b6:99:48:
bb:c4:0a:58:f2:f8:4a:88:49:0d:6f:a6:ed:cd:1f:
26:d8:9d:a7:7b:bd:07:a1:05:fe:b1:ac:3b:40:33:
45:cd:9f:15:d1:64:cf:61:c9:4b:2f:a3:88:6a:04:
f5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:0C:44:13:C6:D5:56:9F:53:34:D5:D7:79:08:6D:56:D9:73:73:9F
X509v3 Authority Key Identifier:
keyid:0E:41:A3:96:8B:62:74:1B:36:D3:48:BE:0D:2C:91:C5:D4:B1:33:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e3:3d:cd:ab:e4:6a:88:0c:32:78:63:27:de:de:51:09:b2:88:
31:30:e8:2d:34:84:55:4d:33:b3:bc:21:18:99:0d:f8:0b:84:
30:7c:8d:e5:e3:88:7d:fd:0a:0d:7f:1f:e7:3b:5a:d4:da:e2:
bd:6e:1d:49:58:ab:98:54:ab:07:f7:8f:82:17:62:9a:f3:03:
2c:96:bc:3c:5c:87:a0:36:67:ca:f6:c2:78:ad:1e:3e:7d:de:
d6:1c:32:cd:81:48:5a:59:1e:2c:a1:54:1d:c7:e1:2b:86:2e:
f5:50:4c:14:32:c7:08:8a:bc:ca:ca:cb:98:b3:f0:41:ef:45:
a7:3b:41:a7:ae:f7:41:93:7e:f5:c5:c1:a3:78:9b:1e:aa:c0:
2a:cf:7e:3f:5a:2b:c1:5b:8b:79:e3:cd:64:0d:ec:bd:29:86:
06:d6:66:fa:66:5e:c1:04:31:66:e2:e7:12:4a:78:6e:25:c4:
e1:f7:60:3c:56:18:fe:af:ff:59:60:5e:4a:a8:47:a1:5e:4f:
88:e6:88:39:74:1e:80:fb:59:fb:15:c6:af:22:c4:db:9d:6a:
29:37:d3:a1:99:f3:47:4e:ce:43:38:27:14:07:5b:5e:c7:1b:
bb:6d:96:29:aa:0b:83:2b:f1:20:6d:67:f4:7b:b7:03:7b:d8:
0c:74:54:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyubIXwChNptpccs8ABBycsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlNDFhMzk2OGI2Mjc0MWIzNmQzNDhiZTBkMmM5MWM1ZDRi
MTMzYTIwHhcNMjYwMzAyMTIwMTEzWhcNMjYwMzAzMTIwMTEzWjAzMTEwLwYDVQQD
EyhiZDBjNDQxM2M2ZDU1NjlmNTMzNGQ1ZDc3OTA4NmQ1NmQ5NzM3MzlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApUq9ifgNfQ6K+TOF6+sMmbPdl3Aj
LwPJclrWaJLXP5OhndWxQWkjfIe4GixUV2K56lUKAzZUgCcQvag4+N2dvtr5EMVu
j+SXhg7NBKMIKviw3rhwC6Lo3mpJ1nIIagfHgZSWjFlvSA5kZCeQK0AWMGTqQkKs
/3b+fg7fiRGg/7hm1Lm+LnjKlA1wla8iD0bVYIv3i7WI/QPFOeVr0gF4E3e/HV9y
fwaOuJ7xMTWIPg724T8yT3ROvQqxGmk17pLhO2TLGrmfUxbq8A8g+zy2mUi7xApY
8vhKiEkNb6btzR8m2J2ne70HoQX+saw7QDNFzZ8V0WTPYclLL6OIagT1MQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL0MRBPG1VafUzTV13kIbVbZc3OfMB8GA1UdIwQY
MBaAFA5Bo5aLYnQbNtNIvg0skcXUsTOiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGtHamxvdGlkQnMyMDBpLURTeVJ4ZFN4TTZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8wNWIxZjgtNGIzNS00MGJiLWEwMzQt
NzQ3NTIzMTkyMzYzLzEvRGtHamxvdGlkQnMyMDBpLURTeVJ4ZFN4TTZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8wNWIxZjgtNGIzNS00MGJiLWEwMzQtNzQ3NTIzMTkyMzYz
LzEvRGtHamxvdGlkQnMyMDBpLURTeVJ4ZFN4TTZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA4z3Nq+Rq
iAwyeGMn3t5RCbKIMTDoLTSEVU0zs7whGJkN+AuEMHyN5eOIff0KDX8f5zta1Nri
vW4dSVirmFSrB/ePghdimvMDLJa8PFyHoDZnyvbCeK0ePn3e1hwyzYFIWlkeLKFU
HcfhK4Yu9VBMFDLHCIq8ysrLmLPwQe9FpztBp673QZN+9cXBo3ibHqrAKs9+P1or
wVuLeePNZA3svSmGBtZm+mZewQQxZuLnEkp4biXE4fdgPFYY/q//WWBeSqhHoV5P
iOaIOXQegPtZ+xXGryLE251qKTfToZnzR07OQzgnFAdbXscbu22WKaoLgyvxIG1n
9Hu3A3vYDHRUaQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 14:31:37 2026 by rpki-client