Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
File: DpXDrONm20G83CVsXVs75JCk92E.mft (raw, json)
Hash identifier: FB0rQZI4sMun8VO8T7ZLUYUl8o4u7N+V8oPm1wqUxxQ=
Subject key identifier: 90:CC:DA:EB:A0:61:FA:EB:DB:BC:AE:23:01:E5:5D:34:B9:91:43:9C
Authority key identifier: 0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61
Certificate issuer: /CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761
Certificate serial: 019CAE35C5E257F7D553DFBDEF88C071F50A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
Manifest number: 0CA0
Signing time: Mon 02 Mar 2026 11:01:25 +0000
Manifest this update: Mon 02 Mar 2026 11:01:25 +0000
Manifest next update: Tue 03 Mar 2026 11:01:25 +0000
Files and hashes: 1: 37dXvYDoLLgkPUjF4NxD-XXFFYI.roa (hash: kSAD/e0L34SLlOnuXBzFWv60he1Bjkrs051xSNxh2jE=)
2: DpXDrONm20G83CVsXVs75JCk92E.crl (hash: SUrKI5uNj0rqcBr5Xbeu/lp1/5BEDSh20I2L3OMVCg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:c5:e2:57:f7:d5:53:df:bd:ef:88:c0:71:f5:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761
Validity
Not Before: Mar 2 11:01:25 2026 GMT
Not After : Mar 3 11:01:25 2026 GMT
Subject: CN=90ccdaeba061faebdbbcae2301e55d34b991439c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a8:a3:25:28:ee:ee:d2:fc:26:e5:16:ad:bf:
84:8b:d8:e2:1e:60:56:17:9d:b6:3d:5a:e7:f0:d9:
2e:cc:f1:46:9c:d5:b1:4b:8f:e7:ad:3a:6a:cf:78:
a4:b8:cb:6d:cc:d9:61:12:78:10:dd:7e:21:56:8e:
ec:2e:da:90:17:33:c5:16:a4:af:37:79:50:4f:39:
79:5b:09:17:24:e6:6b:1f:6d:9a:52:1a:6d:77:73:
a8:e4:48:a3:9e:46:c1:3b:89:2b:91:14:72:58:5f:
52:61:fe:fd:f0:2b:27:d6:ea:7c:51:87:a4:50:ff:
52:08:fa:a1:37:70:db:12:fc:ac:4b:ec:ec:d2:b9:
b6:d6:22:8b:53:f3:1c:37:26:67:d0:77:d3:6d:b8:
1b:78:ae:5c:cb:05:ae:17:3a:58:41:83:fd:29:82:
71:a3:b4:bf:40:40:c2:f3:13:af:30:ec:0e:cc:ab:
79:3a:59:0e:84:44:8f:e1:1a:7e:81:62:d4:2c:ba:
44:60:4b:34:6d:2b:29:36:08:49:81:15:27:7d:40:
8a:06:25:84:1b:dc:ce:9d:ab:77:4c:dc:e9:f0:7c:
c6:60:5f:ad:b0:7a:0f:ab:cf:76:a5:3a:1c:9f:f4:
ee:9e:93:3e:92:3e:24:b3:78:52:74:f5:41:3d:d4:
4a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:CC:DA:EB:A0:61:FA:EB:DB:BC:AE:23:01:E5:5D:34:B9:91:43:9C
X509v3 Authority Key Identifier:
keyid:0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:69:73:1c:cc:59:b3:32:9e:4f:f7:02:ad:56:3a:41:db:40:
60:9b:1a:79:cf:ab:0e:e2:cc:1a:42:59:a6:b5:c8:b9:cc:24:
a4:d2:93:e8:ed:a1:3e:9b:69:d5:17:2d:f4:25:4e:52:a1:87:
17:4e:3b:0c:37:7a:aa:ae:c2:e9:2a:06:70:35:18:69:d7:7f:
c7:14:10:8b:2d:54:fc:96:fd:8f:8b:2b:1b:7f:1f:c1:c6:4a:
9a:2d:e1:a3:1b:a4:b1:bf:ab:8a:0c:fe:99:33:a6:2d:47:86:
33:55:c1:fd:3c:63:63:98:6d:be:49:44:96:5f:99:1e:a1:74:
cd:6c:8d:32:61:17:3c:77:be:23:5f:ff:90:9e:db:ce:77:fa:
25:df:7d:a0:d9:4a:5c:a8:07:7d:1c:5e:bd:eb:fd:c3:2b:11:
68:ab:32:aa:f2:1a:b4:63:06:59:16:7a:d7:03:5b:bc:d8:9c:
42:bc:0e:40:4f:8b:6e:00:67:6f:30:b2:25:ad:cf:a0:20:06:
1e:be:cd:5c:97:69:0c:0d:d2:6e:9b:d4:4f:64:58:52:cf:4d:
c8:89:78:9e:4a:b2:54:a6:18:56:88:a3:92:40:57:fe:0c:83:
5f:05:eb:6b:3d:5e:06:cb:bd:2a:1b:70:e7:37:ab:39:ad:8b:
e4:cf:8d:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:31:15 2026 by rpki-client