Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
File: dHyzZv9uI99sCX9grcf6gHVZgZE.mft (raw, json)
Hash identifier: B5h46hKsZYLULhv89S+cDtau9j0bdnc1Cn/F6yM7/hk=
Subject key identifier: E7:41:30:9F:4B:9D:B1:51:9E:B4:51:2E:93:FC:E5:90:32:DF:95:06
Authority key identifier: 74:7C:B3:66:FF:6E:23:DF:6C:09:7F:60:AD:C7:FA:80:75:59:81:91
Certificate issuer: /CN=747cb366ff6e23df6c097f60adc7fa8075598191
Certificate serial: 019D97748C4AFDB1FF4DB657D62BCC45014D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
Manifest number: 0C88
Signing time: Thu 16 Apr 2026 18:01:30 +0000
Manifest this update: Thu 16 Apr 2026 18:01:30 +0000
Manifest next update: Fri 17 Apr 2026 18:01:30 +0000
Files and hashes: 1: ZTaGvGPieOY_mdZ7DjbQhHhCnXs.roa (hash: xPpDP90fvRcRireZ1ICdhF9SMxSOwF26ckiak86gXOY=)
2: dHyzZv9uI99sCX9grcf6gHVZgZE.crl (hash: TPio7hcS5Hti1iPGcpvkQuRFmerlN5o/DuxxtNZ1lWA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 18:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:74:8c:4a:fd:b1:ff:4d:b6:57:d6:2b:cc:45:01:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=747cb366ff6e23df6c097f60adc7fa8075598191
Validity
Not Before: Apr 16 18:01:30 2026 GMT
Not After : Apr 17 18:01:30 2026 GMT
Subject: CN=e741309f4b9db1519eb4512e93fce59032df9506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:25:46:ab:c9:10:08:c0:2e:17:2f:1d:3c:e6:
ea:24:41:bd:e9:dd:90:d4:06:cd:fa:eb:12:fc:6f:
f8:f4:57:b1:29:ef:f8:b9:09:19:61:aa:cc:1b:7f:
e3:5f:ae:aa:69:21:4f:44:74:5e:0e:ff:b1:65:a8:
48:bf:dc:38:e4:5b:a7:ad:83:5e:71:7e:6d:7c:4b:
fb:cd:f1:06:0f:1c:18:f2:0e:98:16:16:cf:d6:42:
c2:cb:73:dd:df:b0:21:82:fb:11:4d:4f:dd:09:14:
25:6d:6d:a8:85:34:f3:c9:98:4e:e9:5a:ef:05:4a:
d0:be:18:1a:78:1d:d7:46:f5:3e:e1:1e:d9:91:fe:
85:8d:c9:b4:8e:48:e4:00:06:b2:e9:c0:43:91:53:
f8:2e:eb:ed:97:bc:ad:e8:9e:36:c3:b9:fe:e5:51:
77:3c:f5:23:2f:ed:30:14:43:d8:8b:fe:56:58:58:
5c:98:11:45:94:fe:64:c8:2c:d7:91:e2:58:3a:04:
28:54:62:6f:ed:da:83:d3:76:5c:d7:e4:12:61:06:
3a:e4:51:c8:2a:1e:b9:85:0a:f4:36:11:7c:45:38:
99:b6:e7:71:43:73:71:be:ea:e3:ff:09:ed:b7:b3:
f9:af:d3:96:bd:3d:6d:44:df:92:72:aa:de:85:c1:
42:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:41:30:9F:4B:9D:B1:51:9E:B4:51:2E:93:FC:E5:90:32:DF:95:06
X509v3 Authority Key Identifier:
keyid:74:7C:B3:66:FF:6E:23:DF:6C:09:7F:60:AD:C7:FA:80:75:59:81:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:f4:75:dd:32:a5:d7:83:14:94:22:5d:62:36:15:bf:14:59:
62:8c:5e:40:83:ef:1c:8e:6c:c7:b7:0a:a7:a0:1b:a9:e0:ab:
73:7c:af:32:6d:5b:b6:a4:63:b5:ca:bb:4e:8a:7c:a9:0b:e1:
9c:28:eb:58:17:8a:c5:d8:3d:e1:34:19:2a:49:bd:91:8d:c7:
cb:d3:bd:ba:df:9c:da:e2:3f:4a:bf:8a:b7:22:44:36:00:78:
30:e3:3e:83:92:99:ac:a9:1b:ea:e0:f2:cb:35:62:24:8d:19:
2d:5a:00:45:b5:d3:4f:c7:53:5f:66:e3:86:20:7c:50:89:a5:
c8:ef:a1:7b:f3:23:64:07:c0:4f:3d:f3:45:c3:08:ac:23:f3:
9f:f4:7b:46:76:16:02:be:49:b8:a5:e2:ca:0b:24:90:a6:aa:
69:7e:a6:82:bb:2f:39:cb:8f:b8:c0:df:5d:e8:f6:0d:4c:87:
61:2e:16:c3:eb:4c:c4:83:8d:67:d3:43:fb:18:5a:28:99:12:
2a:e0:ee:1c:ca:f0:37:98:52:56:53:49:64:a8:10:40:06:4e:
ee:f0:ba:74:ea:ee:bc:bb:67:aa:e6:ca:48:a6:3a:3c:f6:7e:
a3:2b:22:bb:4e:ad:08:ba:d1:3f:88:57:8a:5a:85:e5:e4:c6:
fc:3f:8e:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:52:53 2026 by rpki-client