Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
File: dHyzZv9uI99sCX9grcf6gHVZgZE.mft (raw, json)
Hash identifier: mYDv+7BsQj+cweEIvEjQxSIfSAxJZhZC/wxN74TdqOA=
Subject key identifier: 82:04:17:95:9E:BF:8F:03:6C:9B:BD:5B:B6:E2:F9:B9:3D:7E:DF:A1
Authority key identifier: 74:7C:B3:66:FF:6E:23:DF:6C:09:7F:60:AD:C7:FA:80:75:59:81:91
Certificate issuer: /CN=747cb366ff6e23df6c097f60adc7fa8075598191
Certificate serial: 019CABD9B7CB580857805B2FDE7A991CBBA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
Manifest number: 0C0E
Signing time: Mon 02 Mar 2026 00:01:38 +0000
Manifest this update: Mon 02 Mar 2026 00:01:38 +0000
Manifest next update: Tue 03 Mar 2026 00:01:38 +0000
Files and hashes: 1: ZTaGvGPieOY_mdZ7DjbQhHhCnXs.roa (hash: xPpDP90fvRcRireZ1ICdhF9SMxSOwF26ckiak86gXOY=)
2: dHyzZv9uI99sCX9grcf6gHVZgZE.crl (hash: tXxNSeAk3cHl3UoaUzZeUPs7B+iRl0LvqI5R5gArfs8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:b7:cb:58:08:57:80:5b:2f:de:7a:99:1c:bb:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=747cb366ff6e23df6c097f60adc7fa8075598191
Validity
Not Before: Mar 2 00:01:38 2026 GMT
Not After : Mar 3 00:01:38 2026 GMT
Subject: CN=820417959ebf8f036c9bbd5bb6e2f9b93d7edfa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a2:15:0a:cf:5f:86:34:f1:79:e7:f9:c2:42:
05:9a:b6:a6:dd:16:76:65:8b:72:27:da:bf:99:c9:
76:3d:1d:ae:eb:a1:68:72:48:13:12:3a:b9:98:75:
39:69:d6:ba:e2:04:46:ee:da:fd:62:e0:b5:80:e6:
13:18:3c:45:86:fb:a6:bb:a2:58:4c:bb:7c:9d:3b:
08:12:32:ab:3c:be:4f:5e:b8:6e:01:93:6b:5b:44:
21:3a:5c:3c:df:9a:cb:7b:87:1a:14:6d:18:74:c9:
bc:9c:10:a5:32:a7:1f:fc:39:ac:e4:a4:d8:fa:fb:
12:b7:72:c1:78:de:28:ba:32:05:51:ab:48:55:9b:
e0:07:a7:5a:69:70:ee:d0:a9:5c:e2:c5:d0:17:7c:
79:a3:66:37:09:30:dc:ab:d4:96:cc:b0:2f:64:d0:
5d:80:46:b8:e7:c5:db:d9:99:46:27:e4:3d:a3:6b:
8d:fb:ac:ba:17:99:31:97:67:25:1b:1c:4e:d6:6b:
fd:35:50:a9:2c:5e:23:19:85:9b:55:8a:d1:3d:5c:
55:07:eb:36:20:2b:53:42:76:33:9e:7d:c5:d9:80:
83:7e:39:02:db:7a:cc:ca:d5:06:d0:d4:7d:16:96:
39:a7:63:a0:04:53:30:d6:ca:6b:b8:39:59:84:62:
8b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:04:17:95:9E:BF:8F:03:6C:9B:BD:5B:B6:E2:F9:B9:3D:7E:DF:A1
X509v3 Authority Key Identifier:
keyid:74:7C:B3:66:FF:6E:23:DF:6C:09:7F:60:AD:C7:FA:80:75:59:81:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:1a:62:f0:44:65:dd:50:6a:33:62:89:7a:24:cf:75:7f:1c:
a1:18:6f:2f:56:f7:6b:eb:91:63:49:ea:00:7d:4b:4c:29:ce:
20:f9:96:45:e6:89:b0:81:01:94:4e:b3:b3:f9:dd:8e:23:be:
72:65:c3:ca:9d:2f:28:42:b2:dd:cd:99:66:3a:54:cf:08:56:
3f:4d:2d:9e:50:8f:53:d9:f1:81:52:20:1c:6e:b7:62:63:34:
5b:8c:0a:92:05:97:83:2e:c8:d1:64:db:ed:5f:47:4f:a3:ef:
b2:72:26:a0:ed:e6:f2:de:2a:a6:de:86:35:1e:f9:6b:f0:fc:
18:59:cf:b2:11:db:3d:34:83:a2:14:aa:99:7a:b0:75:83:c0:
ce:d2:57:43:c5:8e:9a:45:75:9c:ba:bf:fc:3f:15:18:82:d7:
a7:80:be:e6:66:77:d4:d1:41:3b:fc:5a:23:47:e4:70:f4:b8:
c0:f5:1b:cd:55:33:58:91:3e:0c:c0:a0:0d:97:79:af:1f:dc:
5a:4b:6e:79:9f:e0:1b:02:6e:0e:ca:e4:9f:b4:98:14:a0:a1:
81:6f:83:6f:6d:34:4a:11:8d:e5:3e:0c:c6:44:99:a8:be:f1:
3c:83:dc:6d:17:ef:9c:c2:be:54:3e:2a:fd:7a:8a:3e:f8:44:
7d:00:fe:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:00:09 2026 by rpki-client