Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
File: DxgybgAap_xW-DUxMVN2-equCYg.mft (raw, json)
Hash identifier: 7n1cgoAO3yxNSAKOM8UmOiPw1yDvttfbAQHvYKiYLtQ=
Subject key identifier: E5:EF:FE:DA:34:77:28:4A:E9:E5:F5:8F:02:64:D8:18:50:DD:DB:C6
Authority key identifier: 0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
Certificate issuer: /CN=0f18326e001aa7fc56f83531315376f9eaae0988
Certificate serial: 019CAEA2C78B45EDC0F6992BEEBA6C2EA509
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
Manifest number: 0ABF
Signing time: Mon 02 Mar 2026 13:00:29 +0000
Manifest this update: Mon 02 Mar 2026 13:00:29 +0000
Manifest next update: Tue 03 Mar 2026 13:00:29 +0000
Files and hashes: 1: 64Gcj0h8vNXf7GFNZxmMm2mfr1E.roa (hash: pu8wgjr4VrA4g+LsPAV0cojDn7FfUUvf2NSJDNpkiw8=)
2: DxgybgAap_xW-DUxMVN2-equCYg.crl (hash: GWFI9/l4AiQjgEF/JkqkT6wADpdpDaUpnwnzWSCXPuk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:a2:c7:8b:45:ed:c0:f6:99:2b:ee:ba:6c:2e:a5:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f18326e001aa7fc56f83531315376f9eaae0988
Validity
Not Before: Mar 2 13:00:29 2026 GMT
Not After : Mar 3 13:00:29 2026 GMT
Subject: CN=e5effeda3477284ae9e5f58f0264d81850dddbc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:12:a3:cd:53:ec:22:82:1a:ab:f9:02:68:e8:
40:08:a3:ff:be:85:ca:88:32:26:4d:75:5a:96:ec:
92:e5:6c:1b:26:99:f8:ed:28:a1:8f:81:a1:9f:11:
11:29:aa:79:d8:48:5c:be:34:17:dd:c4:65:8f:a8:
4a:85:4d:a5:fe:72:67:b2:70:39:15:bd:47:e7:91:
02:e6:bd:b3:60:aa:df:e5:4f:7e:f0:82:b8:fa:67:
c1:fd:a0:e1:6d:4b:3e:ec:67:b2:0d:62:87:16:c2:
61:ff:6d:db:58:30:70:58:39:73:6e:53:2a:c7:3f:
9e:ad:e8:58:8a:41:c5:0b:dd:48:aa:3f:b7:7e:71:
ac:83:a4:1f:38:be:09:47:86:ed:67:e0:37:2a:6b:
5b:c4:46:4a:1e:66:a1:12:6f:20:ca:a5:1b:aa:cd:
a8:16:c4:d6:80:3b:47:7f:a9:e4:d5:1c:f6:b9:bd:
da:e6:a0:f0:75:80:d7:8a:05:68:92:6b:ca:94:19:
e0:4f:5a:95:ec:f2:b4:da:72:40:c7:8a:c2:40:43:
04:19:5d:70:26:07:7c:29:c0:03:5b:74:20:b5:9c:
4f:c9:9f:0b:bf:00:2c:ca:3f:45:65:52:7c:7b:3a:
39:dc:b3:be:fe:c6:5d:58:9a:f0:9f:eb:4c:58:d3:
68:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:EF:FE:DA:34:77:28:4A:E9:E5:F5:8F:02:64:D8:18:50:DD:DB:C6
X509v3 Authority Key Identifier:
keyid:0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:4e:f8:05:51:cc:d2:db:e5:fe:37:b0:ae:8a:a6:cb:a5:c8:
5e:3c:ad:0c:59:bb:fb:e0:d5:c6:4e:67:ad:2d:bd:46:dc:62:
0b:3d:26:44:16:72:4a:0e:21:49:fd:d7:16:54:a8:4c:4e:d0:
c5:7e:09:69:b9:81:b1:a5:6d:a9:86:1e:7b:dc:be:7e:97:49:
b7:0a:5a:51:98:75:f9:e9:7d:7d:cd:f7:99:c8:42:83:f4:8b:
90:51:88:73:ff:e6:3e:d5:13:dd:b2:a8:44:95:7b:66:48:cc:
1d:b3:e5:bc:f9:1e:17:8d:28:47:99:ca:4c:ae:bd:9b:c3:f4:
c5:38:a2:eb:1b:14:50:84:a2:83:10:0d:28:42:02:82:88:19:
43:83:89:c9:51:36:72:0d:8f:0c:8e:db:ed:38:0a:ca:0a:97:
bf:5d:81:25:01:5a:9e:0c:54:0f:76:9c:d6:c3:66:66:c5:53:
c8:cd:2d:3f:36:f8:c1:85:0d:21:d0:52:3b:d5:6f:91:46:70:
0d:5a:2a:00:11:09:f6:53:bd:18:18:44:31:af:7b:aa:7a:5b:
24:2c:1e:0e:6b:77:d3:12:83:4a:b2:cd:3a:cc:f9:53:08:ba:
26:fe:38:7d:5d:0a:60:01:3c:7b:61:ae:37:12:bd:2f:ef:eb:
e6:5f:3b:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyuoseLRe3A9pkr7rpsLqUJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmMTgzMjZlMDAxYWE3ZmM1NmY4MzUzMTMxNTM3NmY5ZWFh
ZTA5ODgwHhcNMjYwMzAyMTMwMDI5WhcNMjYwMzAzMTMwMDI5WjAzMTEwLwYDVQQD
EyhlNWVmZmVkYTM0NzcyODRhZTllNWY1OGYwMjY0ZDgxODUwZGRkYmM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhKjzVPsIoIaq/kCaOhACKP/voXK
iDImTXValuyS5WwbJpn47Sihj4GhnxERKap52EhcvjQX3cRlj6hKhU2l/nJnsnA5
Fb1H55EC5r2zYKrf5U9+8IK4+mfB/aDhbUs+7GeyDWKHFsJh/23bWDBwWDlzblMq
xz+erehYikHFC91Iqj+3fnGsg6QfOL4JR4btZ+A3KmtbxEZKHmahEm8gyqUbqs2o
FsTWgDtHf6nk1Rz2ub3a5qDwdYDXigVokmvKlBngT1qV7PK02nJAx4rCQEMEGV1w
Jgd8KcADW3QgtZxPyZ8LvwAsyj9FZVJ8ezo53LO+/sZdWJrwn+tMWNNoxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOXv/to0dyhK6eX1jwJk2BhQ3dvGMB8GA1UdIwQY
MBaAFA8YMm4AGqf8Vvg1MTFTdvnqrgmIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9hN2U0NWMtZjI5Ny00NTIwLWFiZTYt
NmI4MTM2OTNiYzhjLzEvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS9hN2U0NWMtZjI5Ny00NTIwLWFiZTYtNmI4MTM2OTNiYzhj
LzEvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb074BVHM
0tvl/jewroqmy6XIXjytDFm7++DVxk5nrS29RtxiCz0mRBZySg4hSf3XFlSoTE7Q
xX4JabmBsaVtqYYee9y+fpdJtwpaUZh1+el9fc33mchCg/SLkFGIc//mPtUT3bKo
RJV7ZkjMHbPlvPkeF40oR5nKTK69m8P0xTii6xsUUISigxANKEICgogZQ4OJyVE2
cg2PDI7b7TgKygqXv12BJQFangxUD3ac1sNmZsVTyM0tPzb4wYUNIdBSO9VvkUZw
DVoqABEJ9lO9GBhEMa97qnpbJCweDmt30xKDSrLNOsz5Uwi6Jv44fV0KYAE8e2Gu
NxK9L+/r5l87gA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 19:46:18 2026 by rpki-client