Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
File: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft (raw, json)
Hash identifier: 4Won3RaGhiVLd1Zu1ImpLBJ/1aXCIvuMKcNRoixklIA=
Subject key identifier: A6:6F:B7:B9:45:F9:1A:70:F2:A1:B7:59:EE:02:FB:E0:8D:16:7F:D5
Authority key identifier: 74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07
Certificate issuer: /CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907
Certificate serial: 019CAAC70CB39C9CCF7F246DEC1C1C9288CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
Manifest number: 1844
Signing time: Sun 01 Mar 2026 19:01:37 +0000
Manifest this update: Sun 01 Mar 2026 19:01:37 +0000
Manifest next update: Mon 02 Mar 2026 19:01:37 +0000
Files and hashes: 1: T4BJnDBfE6AyBSAWAjPZ1GzLlMM.roa (hash: SXBhd3/vnyIoPB/kDRi62FVnMbysfno7J5T9Eftc8tY=)
2: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl (hash: 2ckuraPAIl5Krb9Mup0BAPljvuLDzeRP7NxA+jBnKmo=)
3: tSpDrZGtdp0mH1aXKivR6nDrhuY.roa (hash: xkSEr+C7WhhCLocSo1zhSLhZi6gcFYi1jnV4sR3gnUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c7:0c:b3:9c:9c:cf:7f:24:6d:ec:1c:1c:92:88:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907
Validity
Not Before: Mar 1 19:01:37 2026 GMT
Not After : Mar 2 19:01:37 2026 GMT
Subject: CN=a66fb7b945f91a70f2a1b759ee02fbe08d167fd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:17:4e:39:e2:46:c3:75:9d:31:c5:e4:6a:5f:
cf:5c:7a:6c:80:8e:1c:a4:27:18:62:c1:b2:75:b2:
e4:5a:fc:43:45:3b:6a:3a:d7:1b:bb:61:4d:e0:62:
d5:8d:3f:c5:5e:8d:55:6c:b7:98:a4:84:57:10:b1:
62:36:56:a5:bd:0a:ce:69:11:ea:25:5f:85:33:e4:
b0:7d:ab:a4:17:06:88:22:4e:42:74:ed:8d:09:1f:
d8:14:2f:b0:6e:b8:0c:ec:c2:b1:09:c8:38:52:3f:
31:3d:8e:50:3a:15:10:d8:2e:e1:cc:5f:f0:d2:3a:
d1:74:70:53:54:ec:14:0f:28:43:ef:c5:6f:03:e4:
2d:4c:ef:27:46:37:04:22:0f:89:0f:95:3c:85:50:
43:17:7c:0c:36:62:fd:f6:f9:60:2b:73:d6:85:05:
45:e5:75:66:0b:58:ee:cb:5e:15:9f:f8:cd:0d:eb:
5a:57:46:bf:81:d0:ea:5a:2e:90:20:a5:27:3b:d3:
5b:71:88:bb:db:24:4f:04:00:10:5d:70:ca:93:a3:
df:07:84:8b:e6:b5:e2:32:66:35:d9:ae:b9:dd:aa:
8c:90:ef:e2:32:81:a1:f2:75:ce:3a:22:fc:7a:5c:
dc:bf:3a:4d:c0:a9:12:d5:97:ce:9e:72:73:4d:b0:
db:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:6F:B7:B9:45:F9:1A:70:F2:A1:B7:59:EE:02:FB:E0:8D:16:7F:D5
X509v3 Authority Key Identifier:
keyid:74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:eb:73:23:ef:07:cc:11:c1:fb:54:c2:fe:81:bf:58:4a:d6:
d1:c9:fd:a5:fe:f5:54:ff:12:43:3b:a5:3b:35:c6:12:3d:4a:
14:91:dd:3b:91:41:6c:2f:90:ea:71:6e:d7:22:17:a4:fd:02:
2e:2d:f3:ed:cc:15:40:54:4d:1a:f6:2e:8f:71:5f:30:ce:b7:
dd:b1:14:34:05:f7:da:99:72:bf:df:1e:a0:57:ba:e3:ad:de:
0e:2c:fe:66:c7:6c:23:b7:57:0e:f5:f2:f9:3e:b0:77:c2:f7:
9a:36:72:95:ed:d7:9e:12:c8:47:a4:5b:b9:43:9f:5d:48:66:
0e:ae:0e:ae:61:78:4c:e8:7e:1a:9b:c0:fe:e8:d7:85:79:b2:
7a:17:8a:46:2c:1c:9e:bd:e6:08:ad:90:0c:89:ae:00:13:c3:
dd:f8:2c:61:85:1e:e8:e5:64:01:f8:cc:86:7c:c9:7f:36:74:
ee:76:24:da:6a:ab:70:66:e6:08:be:bf:13:3e:d9:88:ba:d6:
42:23:a8:a1:b9:e8:2c:8c:05:02:af:d7:40:61:19:5f:00:74:
01:0a:05:64:c9:dd:c4:98:c1:e2:15:9c:85:6b:3f:f2:fe:b2:
30:fc:78:1b:50:b1:b0:81:c6:c4:3b:57:f6:59:ab:0e:20:1f:
0d:be:53:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:30:17 2026 by rpki-client