Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/23da1c-435c-4c83-a295-bf85cd25427e/1/DcHMqlhPs5FOeS_VOQ47otMDM4w.mft
File: DcHMqlhPs5FOeS_VOQ47otMDM4w.mft (raw, json)
Hash identifier: sH3PD9eSfcI6Q55x5n9I+FhqFEDQ1Kc5meZEr+ZOY34=
Subject key identifier: 58:FA:14:5A:BE:3B:47:01:1C:39:83:6F:75:9F:B3:6E:12:2D:19:73
Authority key identifier: 0D:C1:CC:AA:58:4F:B3:91:4E:79:2F:D5:39:0E:3B:A2:D3:03:33:8C
Certificate issuer: /CN=0dc1ccaa584fb3914e792fd5390e3ba2d303338c
Certificate serial: 019D984FD8D813740FC9B667B94FA9C48F5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DcHMqlhPs5FOeS_VOQ47otMDM4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/23da1c-435c-4c83-a295-bf85cd25427e/1/DcHMqlhPs5FOeS_VOQ47otMDM4w.mft
Manifest number: 1286
Signing time: Thu 16 Apr 2026 22:01:02 +0000
Manifest this update: Thu 16 Apr 2026 22:01:02 +0000
Manifest next update: Fri 17 Apr 2026 22:01:02 +0000
Files and hashes: 1: DcHMqlhPs5FOeS_VOQ47otMDM4w.crl (hash: oWh/SY6WVsTS4AAmuQOFTMM+6d/lYKf2tfm+bBqNz0E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/23da1c-435c-4c83-a295-bf85cd25427e/1/DcHMqlhPs5FOeS_VOQ47otMDM4w.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/23da1c-435c-4c83-a295-bf85cd25427e/1/DcHMqlhPs5FOeS_VOQ47otMDM4w.mft
rsync://rpki.ripe.net/repository/DEFAULT/DcHMqlhPs5FOeS_VOQ47otMDM4w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:4f:d8:d8:13:74:0f:c9:b6:67:b9:4f:a9:c4:8f:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dc1ccaa584fb3914e792fd5390e3ba2d303338c
Validity
Not Before: Apr 16 22:01:02 2026 GMT
Not After : Apr 17 22:01:02 2026 GMT
Subject: CN=58fa145abe3b47011c39836f759fb36e122d1973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d7:51:94:0a:5b:e3:f9:3a:63:29:b9:e5:e7:
a2:46:a4:99:d7:44:3d:f2:55:2a:71:6e:63:13:4a:
b0:fe:b4:9e:30:34:e3:f6:9c:c3:2e:bc:8b:ce:0e:
2f:05:54:e7:47:9b:f8:3f:b4:d5:bd:d6:f7:1c:fb:
77:ce:06:01:67:2a:91:80:88:8c:05:a1:e1:7f:a6:
56:e6:da:aa:80:67:96:d4:c4:83:00:99:b4:ec:cb:
dd:d5:c6:72:1b:c4:ae:b2:a4:bd:ff:aa:83:28:3f:
b3:7b:5f:10:ac:a9:de:39:13:3c:61:53:ad:01:f8:
7a:0d:fe:0c:70:1a:34:af:8e:a9:69:92:60:bc:54:
02:75:b0:26:fe:45:75:51:85:9d:c0:b5:42:aa:ef:
e9:16:de:d6:92:3d:46:02:2c:12:f4:24:9d:0d:00:
d5:fe:31:25:f5:6f:50:55:bb:d6:04:ed:b0:14:06:
65:fe:35:a2:65:7d:5d:98:bc:46:13:55:1e:9b:28:
b7:db:34:50:32:ea:5f:7a:30:ad:12:e2:db:34:0d:
1c:a9:8f:6c:ce:4f:a7:46:d9:6d:5c:46:3b:c2:b3:
98:a2:ec:a3:2e:53:b8:d4:ff:08:57:53:07:20:b9:
e7:31:d0:40:20:95:42:3b:d1:72:03:00:60:cc:74:
0c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:FA:14:5A:BE:3B:47:01:1C:39:83:6F:75:9F:B3:6E:12:2D:19:73
X509v3 Authority Key Identifier:
keyid:0D:C1:CC:AA:58:4F:B3:91:4E:79:2F:D5:39:0E:3B:A2:D3:03:33:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DcHMqlhPs5FOeS_VOQ47otMDM4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/23da1c-435c-4c83-a295-bf85cd25427e/1/DcHMqlhPs5FOeS_VOQ47otMDM4w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/23da1c-435c-4c83-a295-bf85cd25427e/1/DcHMqlhPs5FOeS_VOQ47otMDM4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:23:a7:7b:f1:3f:f7:e8:a8:e0:ca:89:b1:88:15:a3:c7:2c:
ef:80:30:91:f5:b7:ef:81:53:2b:d1:d1:06:24:5b:8b:23:7f:
3f:5c:8c:f8:26:d6:be:59:cb:b5:02:38:f9:30:f2:c4:3a:52:
7c:4d:e2:74:34:9e:4b:27:30:ee:5d:f6:c5:84:21:01:ec:f6:
de:2b:14:42:bb:c7:51:73:7e:7e:98:df:d7:21:c2:6c:4a:d7:
20:17:e9:df:ec:2e:b7:5c:04:91:92:47:e0:c5:a0:86:41:8c:
92:f6:ad:5c:91:5d:84:d8:78:c7:8f:5f:6f:f8:64:96:2b:69:
db:37:e4:25:63:a2:cc:92:44:0e:8b:54:b5:38:3c:7b:c1:41:
23:00:1a:9c:75:7a:8e:5a:06:b2:6f:c8:1c:9a:d2:49:7d:cd:
da:84:f1:79:71:18:9e:14:7a:ec:f9:30:e4:4f:79:ad:78:8d:
06:b1:c3:f4:a5:2f:ef:eb:f7:d2:46:a1:0c:45:ef:7d:65:fc:
93:bb:a7:ab:92:52:37:1b:2b:15:ed:96:be:b0:3d:be:56:2f:
c8:e7:1b:0c:81:46:be:95:07:c6:93:bc:a0:00:be:03:95:f2:
17:9a:91:d8:53:c4:2b:5d:c3:bf:ff:76:65:e7:f4:f2:4a:1e:
5b:5a:89:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:01:42 2026 by rpki-client