Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
File: DpXDrONm20G83CVsXVs75JCk92E.mft (raw, json)
Hash identifier: 5FueN6pySwAdI6Sxu0EouzZVuuMNCsVAO5rvBFT2ATk=
Subject key identifier: 0E:A9:93:87:D5:63:F5:88:B1:F6:BE:F7:1E:70:E2:97:E1:8F:BD:5B
Authority key identifier: 0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61
Certificate issuer: /CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761
Certificate serial: 019D99D0AA000443AA825907EFCB23AC410C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
Manifest number: 0D1A
Signing time: Fri 17 Apr 2026 05:01:22 +0000
Manifest this update: Fri 17 Apr 2026 05:01:22 +0000
Manifest next update: Sat 18 Apr 2026 05:01:22 +0000
Files and hashes: 1: 37dXvYDoLLgkPUjF4NxD-XXFFYI.roa (hash: kSAD/e0L34SLlOnuXBzFWv60he1Bjkrs051xSNxh2jE=)
2: DpXDrONm20G83CVsXVs75JCk92E.crl (hash: nxjKmtz2XXv9JfTUBWIZVthluB/5TIlX/EIGa+4wWGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:aa:00:04:43:aa:82:59:07:ef:cb:23:ac:41:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761
Validity
Not Before: Apr 17 05:01:22 2026 GMT
Not After : Apr 18 05:01:22 2026 GMT
Subject: CN=0ea99387d563f588b1f6bef71e70e297e18fbd5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9f:8d:53:4b:56:2e:4b:16:c3:62:d5:97:ef:
a9:38:40:cb:1e:a4:11:2b:32:7e:8a:e1:3f:96:37:
89:9e:ac:2b:8c:1a:94:9d:2a:85:4a:df:ca:e3:a7:
68:7a:d0:76:b0:5c:54:76:ab:a4:2f:76:bf:0c:a7:
84:a9:41:63:08:c3:66:4b:60:3b:26:d8:0f:cd:43:
ca:4e:e6:51:0f:cc:a5:a4:48:3e:46:66:70:11:8f:
b2:ff:9f:99:52:de:15:b0:90:19:05:01:89:a9:7d:
8b:65:e4:8c:5d:04:b5:90:8e:2f:b8:65:2a:15:98:
4d:c5:91:ad:33:b4:11:f8:ea:ad:83:9b:f6:29:51:
28:4b:4f:d8:d9:d5:11:21:53:c9:ce:60:1d:9f:26:
7d:5c:03:5d:28:07:4b:af:d3:bc:3c:45:4c:72:2b:
2b:bd:41:81:07:c8:43:5f:84:f7:57:3f:d2:d9:cc:
a5:e9:6e:19:3e:28:87:65:46:00:7c:a7:e0:b4:d6:
c9:95:00:e6:e8:fc:ee:47:9e:ea:d4:cd:38:3a:bb:
ea:26:d1:b4:e4:0a:3a:27:57:e0:fe:c5:cc:52:77:
b9:09:a7:55:79:d1:a5:35:61:8d:27:3a:60:7b:b7:
08:0d:e7:ad:61:30:e7:63:89:51:2d:40:61:4e:3e:
74:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:A9:93:87:D5:63:F5:88:B1:F6:BE:F7:1E:70:E2:97:E1:8F:BD:5B
X509v3 Authority Key Identifier:
keyid:0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:99:82:3b:dd:85:30:3d:6c:92:d8:56:f1:22:78:f5:5d:4d:
fa:5f:93:04:fd:3b:29:90:2c:20:d2:7a:89:b4:b5:ce:09:82:
92:44:cb:d7:88:56:d6:ad:7a:86:7f:53:26:84:52:f4:4b:3d:
21:f8:be:c7:7b:85:13:3f:0a:d1:10:5f:c3:f2:f1:cf:14:64:
a0:69:ef:ab:5c:12:09:e8:24:77:33:0a:65:77:b4:92:93:f9:
f9:8f:cf:5c:38:1b:fa:47:27:e1:c8:ad:cf:1c:9c:a3:bc:a7:
5b:0a:d2:4c:c6:b2:37:83:bf:39:a4:ea:30:81:86:a5:e3:e4:
39:09:29:3c:e4:69:d7:12:9a:f4:3e:e6:c4:e1:1a:cd:4a:48:
18:4a:48:77:70:8e:f0:e1:3d:bf:db:f9:dd:36:72:e7:1d:f1:
04:1f:ca:8e:2c:2c:45:88:40:67:cd:39:2f:90:2b:f5:87:51:
4b:90:8a:7f:82:41:88:8c:a4:ba:8b:34:10:88:71:ed:34:b0:
86:5b:02:8d:dd:48:c5:91:54:2b:92:a9:9e:c2:f7:99:e6:9d:
c0:85:9b:c8:2e:27:ce:92:21:74:4e:2d:5d:a3:8e:89:95:e4:
9f:1c:80:d4:1b:b7:8c:03:b5:26:0f:1a:ec:67:37:3a:57:96:
98:8c:fd:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:25:08 2026 by rpki-client