Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
File: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft (raw, json)
Hash identifier: Ctb3MWYds0x5ttYvZ8/ZnO0D3fp8YcorAS1m+GhNaRA=
Subject key identifier: E7:31:85:2C:A9:A0:64:22:B1:44:D4:86:83:6E:DC:70:B1:7A:9E:6F
Authority key identifier: 74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07
Certificate issuer: /CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907
Certificate serial: 019D9A3EAFEB6850FE33203BC732EB10B433
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
Manifest number: 18C0
Signing time: Fri 17 Apr 2026 07:01:32 +0000
Manifest this update: Fri 17 Apr 2026 07:01:32 +0000
Manifest next update: Sat 18 Apr 2026 07:01:32 +0000
Files and hashes: 1: T4BJnDBfE6AyBSAWAjPZ1GzLlMM.roa (hash: SXBhd3/vnyIoPB/kDRi62FVnMbysfno7J5T9Eftc8tY=)
2: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl (hash: jn7LgJe8ZiuWdQvawdq8fIECLawTDP78xRHKKhaAp/w=)
3: tSpDrZGtdp0mH1aXKivR6nDrhuY.roa (hash: xkSEr+C7WhhCLocSo1zhSLhZi6gcFYi1jnV4sR3gnUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:af:eb:68:50:fe:33:20:3b:c7:32:eb:10:b4:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907
Validity
Not Before: Apr 17 07:01:32 2026 GMT
Not After : Apr 18 07:01:32 2026 GMT
Subject: CN=e731852ca9a06422b144d486836edc70b17a9e6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d7:6e:40:9d:6d:2a:bc:df:01:8e:f6:21:a7:
bb:ff:14:b1:66:94:25:26:ca:64:10:a3:94:c0:74:
82:aa:b2:19:94:bb:5b:9c:c5:6c:30:6b:e3:97:b0:
b2:7f:9f:e0:29:a5:3e:8c:08:fb:86:ae:74:31:98:
f2:0b:f9:18:79:43:c9:a8:89:b1:63:a0:9b:e6:32:
cd:bd:67:50:25:ac:0c:98:d2:7c:47:e9:51:17:b7:
80:26:03:e3:03:7f:50:55:19:b6:b5:26:0b:73:3b:
33:a2:23:c0:7e:0b:df:05:ce:96:23:98:46:dc:3b:
00:6a:e7:b0:1e:b5:c8:0d:12:1e:d3:76:32:31:ec:
38:12:7a:8e:20:c5:1f:22:9f:64:e2:15:fe:97:f5:
36:e9:1d:ca:0e:53:0a:00:10:c0:5f:07:0b:bf:63:
5b:a1:c7:45:08:b8:c6:ab:11:72:88:3e:b8:d5:8f:
f5:cb:d6:51:2c:82:76:83:ef:ee:eb:c7:f4:c0:5f:
6d:0c:bd:0d:e7:6e:34:71:90:a5:49:42:77:ac:de:
76:3f:4d:e8:f5:04:eb:1e:71:f6:a2:26:14:24:51:
dd:46:05:e1:97:f3:89:fb:df:e6:b8:e1:94:4a:a8:
89:ab:fd:9a:db:90:e5:bb:b1:33:7d:c5:78:56:ad:
3d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:31:85:2C:A9:A0:64:22:B1:44:D4:86:83:6E:DC:70:B1:7A:9E:6F
X509v3 Authority Key Identifier:
keyid:74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:95:48:f5:2a:7b:ad:75:2e:3f:b1:0d:00:cb:63:85:8c:0c:
5a:02:7f:38:78:3f:45:c8:2a:c0:18:e9:b7:a6:3e:7e:89:a0:
7f:3a:70:e3:90:46:65:e6:6b:c8:f9:46:a5:96:d7:e0:60:d9:
2e:b5:fd:42:dd:e5:84:91:f8:89:52:68:c8:a3:55:18:46:b0:
97:da:5c:b5:03:e7:08:f0:f2:0b:c5:92:9a:ec:75:92:8d:27:
83:a9:92:32:a1:cb:e4:09:85:a2:e9:50:8f:94:24:4e:5a:3f:
dc:7a:32:fa:18:2e:fb:68:f7:a2:30:41:ad:1f:8e:e4:86:89:
f5:3d:00:98:a2:0a:b4:c9:c6:53:7b:72:52:e4:25:74:70:02:
bc:30:9b:9b:96:24:ad:76:79:20:48:20:fd:e8:e7:fe:ec:b1:
3e:b4:b5:b6:4f:1a:98:34:5c:04:51:12:53:56:90:f7:b4:de:
5b:c1:23:05:48:e6:d3:e7:11:5d:4d:a7:82:84:72:4d:ce:1c:
ad:ed:e4:42:a3:88:4d:d7:c1:3d:06:20:be:62:4f:ed:64:ee:
f0:7e:35:19:bc:53:46:c1:0c:7a:66:6c:cc:0c:1d:57:56:35:
d9:4d:d7:73:2c:91:7c:3f:1b:d0:18:2b:fb:73:ea:35:a2:5b:
3f:8b:c4:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:09:05 2026 by rpki-client