Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json)
Hash identifier: AP5qq6DhsQlMXu+rxdZF4wpYJcD1pg09PylDzDd0ApY=
Subject key identifier: 3D:34:A8:6C:62:47:1B:6E:AC:4C:FD:2D:7A:56:E6:DD:DB:9F:02:58
Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Certificate serial: 019D9B50861375E6FFCFE6889370D9E3CE9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
Manifest number: 05DF
Signing time: Fri 17 Apr 2026 12:00:38 +0000
Manifest this update: Fri 17 Apr 2026 12:00:38 +0000
Manifest next update: Sat 18 Apr 2026 12:00:38 +0000
Files and hashes: 1: 8Qo74UQPSqvugCWFfb9DBf7wKqE.roa (hash: M/pOvg/hdX2EdZ83UmfDv3mPILFnj+u5MLVly1CyGXs=)
2: NZYrDqHNM7w06ZqIbetRmQuvkI8.roa (hash: aqDX81Tnke9g7oa5zcmS5K2aP4v9bwtCbdPJWZIvsEE=)
3: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: 0zgsT/LuqBJh+JgZpiUMcCCJ1oL5IKer0TNZROOXNjs=)
4: j7E0VOUyJDRGY1mXB_LTgfCHtec.roa (hash: DmIJX6VYUzzGV5IX9wpqM+xTHY2Teuv8gdmzrljcdLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:50:86:13:75:e6:ff:cf:e6:88:93:70:d9:e3:ce:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Validity
Not Before: Apr 17 12:00:38 2026 GMT
Not After : Apr 18 12:00:38 2026 GMT
Subject: CN=3d34a86c62471b6eac4cfd2d7a56e6dddb9f0258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:97:6d:d2:7f:9b:8d:bb:6a:17:c3:03:97:b6:
17:67:31:ca:76:37:d1:38:ba:2a:7f:75:9f:36:70:
e9:9c:aa:57:f0:77:36:47:ba:53:d8:98:09:13:e8:
82:f8:10:72:fa:7e:95:69:b7:0e:d3:c0:e6:7b:99:
3f:27:df:f4:1a:6d:12:d7:77:a7:22:12:2a:72:ad:
3b:f1:88:1c:82:a3:8f:85:5f:e5:07:4b:0b:36:a3:
3a:c4:04:1c:81:da:0e:37:cc:be:78:8f:fa:87:07:
79:65:9c:fc:aa:91:19:1e:61:d8:db:07:9b:76:c2:
5e:46:2e:97:57:c4:af:23:0b:84:69:d5:68:86:57:
a2:95:ff:fb:cc:da:2f:16:3c:34:77:b9:96:7e:74:
ed:f9:e1:ab:67:27:40:93:8e:c3:c6:ed:d3:3b:cb:
38:be:7e:14:41:95:79:e7:76:a8:e9:d0:ed:a5:31:
c2:4d:e0:71:87:d6:37:7c:58:e8:d5:9a:7f:46:be:
da:5e:92:42:4e:74:17:fd:12:21:ae:4c:7d:87:28:
fa:76:48:0e:9d:a0:4c:27:4e:40:e9:a5:7a:e6:d6:
b1:94:5f:3b:55:a5:e1:02:d0:53:e0:95:a2:69:1f:
f3:7e:51:bf:d8:1a:54:7c:3a:21:61:12:22:b6:d0:
0d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:34:A8:6C:62:47:1B:6E:AC:4C:FD:2D:7A:56:E6:DD:DB:9F:02:58
X509v3 Authority Key Identifier:
keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:9c:9f:49:8c:d4:8b:9e:0c:98:0e:0b:4c:bd:2d:40:81:f9:
d3:7f:80:7b:64:be:df:ee:54:44:fd:2c:78:5e:f9:6a:66:10:
54:ad:47:c4:ab:e3:56:09:66:5a:d0:e1:c2:b0:aa:5d:8a:9a:
b8:fd:8d:9e:e9:5f:76:a3:cf:fb:b1:73:56:06:64:4e:79:7c:
b0:f7:26:06:a4:6a:f3:2c:0c:7e:a5:4b:25:ed:29:2e:63:72:
c5:ce:b4:54:45:54:99:df:c3:28:58:95:36:c0:fd:1e:c5:79:
c9:09:e7:e1:9f:7d:af:02:98:93:bc:54:45:46:d2:b2:d0:4e:
a4:a3:a0:de:03:e2:0e:36:15:68:c0:ad:2a:58:4c:72:3c:51:
6e:80:13:d3:56:30:1f:9c:d7:61:19:53:b3:f2:89:9a:0b:11:
61:0f:33:ed:35:e7:ce:96:8c:18:63:ec:ec:96:5a:f4:56:28:
f6:0b:6f:d9:46:8c:a4:88:58:d6:fc:16:22:bc:73:ed:51:04:
21:73:71:9d:f5:24:27:58:5f:c8:99:4e:ad:71:47:aa:c8:30:
cc:46:22:ee:81:93:71:2e:ec:c6:44:bc:96:67:a4:8c:23:38:
3a:6a:ed:14:b1:1d:26:4b:84:9b:d9:76:1b:9c:0b:48:07:3c:
b6:7b:8f:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:33:35 2026 by rpki-client