Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.mft
File: dQRxYHUyqMev1g1PMXqtxJDrogY.mft (raw, json)
Hash identifier: k+plJ/RQlPMCRs23nEZzezkNhyPCCdJoCIyADekeYas=
Subject key identifier: EC:1C:49:F5:F5:AA:53:A9:F5:D3:35:CE:AB:C3:3C:78:99:E6:36:26
Authority key identifier: 75:04:71:60:75:32:A8:C7:AF:D6:0D:4F:31:7A:AD:C4:90:EB:A2:06
Certificate issuer: /CN=750471607532a8c7afd60d4f317aadc490eba206
Certificate serial: 019CAB6B5980D0A4359502E5D50508B00458
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQRxYHUyqMev1g1PMXqtxJDrogY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.mft
Manifest number: 1842
Signing time: Sun 01 Mar 2026 22:01:04 +0000
Manifest this update: Sun 01 Mar 2026 22:01:04 +0000
Manifest next update: Mon 02 Mar 2026 22:01:04 +0000
Files and hashes: 1: dQRxYHUyqMev1g1PMXqtxJDrogY.crl (hash: DEpyLZtYcy8HTACE02qiXqM7HLoZ+0PoBDPeyk2+Qgw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dQRxYHUyqMev1g1PMXqtxJDrogY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:59:80:d0:a4:35:95:02:e5:d5:05:08:b0:04:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=750471607532a8c7afd60d4f317aadc490eba206
Validity
Not Before: Mar 1 22:01:04 2026 GMT
Not After : Mar 2 22:01:04 2026 GMT
Subject: CN=ec1c49f5f5aa53a9f5d335ceabc33c7899e63626
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:49:5f:aa:5a:00:90:30:78:97:36:58:11:93:
3f:90:d7:24:33:60:34:61:b6:77:e5:3f:da:3e:0d:
2a:19:a3:90:ec:b3:ac:f6:b0:a7:76:a9:ed:6e:18:
4c:01:20:49:0f:e6:00:07:70:b3:3b:99:fd:a5:ce:
f0:fe:f0:c7:a0:9f:96:62:b5:95:6d:6a:c4:55:66:
02:6b:ea:4c:2a:1e:45:54:bb:be:73:55:fb:9c:2b:
b5:06:ff:e5:85:d0:67:02:eb:03:30:a7:88:4c:cf:
78:2b:c4:03:f9:11:77:d5:b3:22:69:20:aa:75:2a:
b4:8f:8b:7d:72:f0:ea:79:0f:d1:44:09:c1:78:25:
20:19:ec:e6:01:3b:35:c8:9c:3b:4d:53:16:83:14:
5b:c4:e8:49:39:9b:1d:51:e2:3b:d6:46:44:5c:da:
c4:b7:2b:3b:5f:ca:db:6d:21:2b:ab:6e:a0:cd:d7:
5b:fa:69:96:90:45:78:5d:59:69:80:45:3d:ef:23:
50:af:f0:eb:66:ba:d2:17:0a:36:c4:ef:72:89:7e:
57:59:d6:d4:1e:6c:96:c9:00:4a:08:24:2f:a0:6f:
1c:20:ae:8f:69:12:25:d5:51:27:da:0a:e7:af:ba:
2e:1e:91:8f:f9:fe:fc:2e:3b:d7:2e:9c:73:6f:1a:
71:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:1C:49:F5:F5:AA:53:A9:F5:D3:35:CE:AB:C3:3C:78:99:E6:36:26
X509v3 Authority Key Identifier:
keyid:75:04:71:60:75:32:A8:C7:AF:D6:0D:4F:31:7A:AD:C4:90:EB:A2:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQRxYHUyqMev1g1PMXqtxJDrogY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:59:bb:73:6e:de:df:9b:5e:3d:54:ca:99:e1:67:59:c8:44:
68:43:ad:d4:d8:74:06:53:da:fb:69:a6:7d:53:57:ea:a9:7e:
85:f6:33:ea:6c:c8:85:70:f9:67:66:b5:6d:ef:27:45:be:e2:
8b:10:ef:05:a5:03:7f:45:d7:65:9b:54:82:60:27:eb:7b:34:
66:59:36:1f:b6:72:5e:63:53:46:ad:da:9d:6d:c8:03:0b:7b:
c5:4c:b5:37:f2:8c:19:62:33:03:ea:dd:63:78:1d:98:39:75:
9c:36:27:0b:4b:b4:0d:bf:40:a6:dc:eb:34:05:22:c8:9c:3e:
5e:d8:5c:e7:18:ff:c3:4a:07:0c:a3:43:09:d1:75:9a:07:71:
a1:af:d0:98:da:dc:93:fd:44:a5:f1:c2:b4:37:c4:3f:8b:1f:
98:26:e7:b4:f3:95:35:ac:89:ac:16:4f:cb:50:17:d6:25:c9:
f0:91:ff:45:df:d7:1d:ce:aa:8f:3b:88:a2:55:8a:b7:da:d1:
91:5d:b2:e0:fb:83:3a:16:13:e9:fe:10:0f:f6:d7:04:a1:ee:
a7:a1:3a:b1:8b:d3:5f:62:99:2b:0a:8a:c5:5d:c1:38:54:47:
fd:d2:c1:63:25:d9:8d:4e:32:13:00:35:e7:55:c4:f5:06:6f:
aa:61:16:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:06:35 2026 by rpki-client