Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
File: DxgybgAap_xW-DUxMVN2-equCYg.mft (raw, json)
Hash identifier: Rmp8X7IHgF9ZNM9BHdKVFhnWYWuaE+i0b54Flpr48CA=
Subject key identifier: 3F:0B:4E:96:0D:2E:C1:97:E3:8A:2A:E0:59:DD:B4:19:3F:B4:CB:DF
Authority key identifier: 0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
Certificate issuer: /CN=0f18326e001aa7fc56f83531315376f9eaae0988
Certificate serial: 019D9C2C70CA1B67A47A9D3AD833DAB27712
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
Manifest number: 0B3A
Signing time: Fri 17 Apr 2026 16:00:51 +0000
Manifest this update: Fri 17 Apr 2026 16:00:51 +0000
Manifest next update: Sat 18 Apr 2026 16:00:51 +0000
Files and hashes: 1: 64Gcj0h8vNXf7GFNZxmMm2mfr1E.roa (hash: pu8wgjr4VrA4g+LsPAV0cojDn7FfUUvf2NSJDNpkiw8=)
2: DxgybgAap_xW-DUxMVN2-equCYg.crl (hash: pnGtohFD+32oDQOVpanmaOLdt+HTZb0gewGMZiyAT1M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2c:70:ca:1b:67:a4:7a:9d:3a:d8:33:da:b2:77:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f18326e001aa7fc56f83531315376f9eaae0988
Validity
Not Before: Apr 17 16:00:51 2026 GMT
Not After : Apr 18 16:00:51 2026 GMT
Subject: CN=3f0b4e960d2ec197e38a2ae059ddb4193fb4cbdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5c:27:23:e9:58:02:c6:de:74:ba:04:e0:45:
81:a0:cf:86:a5:0c:70:18:00:b7:e9:53:b1:a0:37:
00:74:2a:2b:6e:67:85:65:a3:4f:40:6d:e5:1b:03:
3c:70:89:d8:c8:96:c6:0b:d2:9a:a5:bc:80:8b:bd:
4b:c7:05:13:26:38:e7:69:d3:07:31:7e:ba:bc:ce:
49:7d:08:01:1b:b3:c8:33:ea:4d:3b:2b:56:bf:09:
ae:e9:61:20:4b:5c:8d:76:91:66:5c:f0:be:c3:47:
5a:53:f7:93:13:53:81:15:c7:a9:bd:8a:1a:27:d3:
da:ae:85:f9:03:8f:26:54:ab:10:ea:ab:b6:a7:b3:
b2:43:ad:30:15:85:56:bd:8c:bf:20:3a:66:8a:6d:
62:4f:15:73:a9:27:5e:78:bb:5a:9a:0f:cf:6b:c5:
26:84:37:ef:db:ed:43:de:50:d0:02:2f:2f:78:78:
2a:4f:4d:91:55:40:65:a2:03:17:2d:b2:fa:b9:d8:
a6:5c:6c:49:74:60:90:f3:6c:76:c2:43:ed:d3:2d:
f6:f8:a6:eb:31:56:f0:ad:42:a0:09:29:6d:df:72:
12:0f:cd:44:c8:1b:cc:91:88:86:d0:bf:05:1b:90:
ef:d7:28:22:b7:db:81:77:3b:db:99:fe:27:ce:36:
3b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:0B:4E:96:0D:2E:C1:97:E3:8A:2A:E0:59:DD:B4:19:3F:B4:CB:DF
X509v3 Authority Key Identifier:
keyid:0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:5a:f3:36:55:8a:5b:2c:77:9d:dc:7e:87:4c:2f:a9:75:be:
70:9d:1b:61:89:79:62:15:e8:1c:e8:c6:4b:f3:23:ad:e4:d1:
07:1a:56:46:a6:72:fa:b9:06:3d:0e:3d:59:0c:51:e8:19:43:
e5:16:d5:f2:d2:14:71:78:cf:8b:8e:f9:96:6a:a9:c2:a9:29:
54:da:7d:e4:25:70:92:ed:09:6b:62:7d:f0:0e:dd:77:88:04:
27:60:0d:c7:a5:87:c4:9b:f6:da:81:01:75:cc:d5:85:16:17:
11:60:f1:c6:26:18:f9:57:dc:28:c3:89:a3:5c:35:12:b1:35:
bf:12:26:88:7e:36:1e:af:a2:7b:89:b8:fd:07:39:2c:3d:aa:
c5:55:94:22:0c:52:5b:f5:92:a4:6a:aa:ab:a9:92:33:a2:e5:
57:2b:b8:6d:10:ee:2e:e5:ee:f9:89:9d:a0:0c:8f:50:7b:15:
11:65:d5:ee:10:44:8e:ce:ae:c1:67:bf:5a:ae:4d:51:ab:6a:
23:0b:36:e4:2f:27:38:7f:b6:70:ac:68:e7:ea:f5:b6:da:30:
d1:c4:39:7c:51:93:70:e8:cf:cd:83:10:2c:08:f9:9e:a7:3e:
dd:c6:93:14:ec:be:1f:25:c5:be:26:80:30:c2:7d:91:84:a6:
0e:11:34:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:58:25 2026 by rpki-client