Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
File: Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft (raw, json)
Hash identifier: LJjoPdP43ndCidlpVRyGa4wu2sS5ba7s2RxfQ2isUkQ=
Subject key identifier: 86:51:73:3E:24:1B:C5:59:75:38:42:1B:07:0B:0A:EF:D3:49:D1:67
Authority key identifier: 0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C
Certificate issuer: /CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c
Certificate serial: 019CAAC6D64F2CF0361925BFE3C98A5AE41F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
Manifest number: 1845
Signing time: Sun 01 Mar 2026 19:01:23 +0000
Manifest this update: Sun 01 Mar 2026 19:01:23 +0000
Manifest next update: Mon 02 Mar 2026 19:01:23 +0000
Files and hashes: 1: Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl (hash: 2dpx0BtUxt8qpfANzl62XNmPlzi/hAqxGbOde+I5Va0=)
2: dLnEEciYoxf4zHYKdVd3Cs6UXwE.roa (hash: fuSsuZb+gCHUO48DwmuXqWY4VCL5Q795gkNmczjB/Fk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 19:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:d6:4f:2c:f0:36:19:25:bf:e3:c9:8a:5a:e4:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c
Validity
Not Before: Mar 1 19:01:23 2026 GMT
Not After : Mar 2 19:01:23 2026 GMT
Subject: CN=8651733e241bc5597538421b070b0aefd349d167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ec:27:0a:16:d1:67:71:b1:a1:cb:a3:64:4c:
eb:2e:59:d5:ba:57:98:cf:a2:34:a9:6e:ae:27:87:
7d:61:b7:ae:47:6e:db:6c:3e:27:a8:85:d3:3e:67:
d5:61:6e:fc:8c:38:ac:31:27:43:7b:f9:d4:34:ca:
e4:83:e9:cc:ec:39:ad:85:fe:10:c8:37:b6:9f:14:
85:5a:d4:0a:10:f3:c0:1c:bc:c7:5f:e1:e9:b3:bf:
68:af:8d:ad:49:dd:f6:c5:13:5f:a6:b9:6d:be:dc:
1a:b6:6a:ee:8c:60:e7:b0:c6:96:4e:41:14:03:35:
92:07:82:6c:d7:49:dc:ee:e3:c5:4f:9e:cd:47:ed:
b3:d8:18:cc:25:48:ff:d1:19:a5:ae:bb:90:89:ad:
5d:75:c1:6d:fb:e2:22:a5:0c:62:23:e6:c4:66:4e:
8a:7a:7f:f4:42:e4:0b:27:44:39:56:48:f7:00:09:
40:c4:b3:85:25:63:7b:cb:84:96:00:9e:8a:6a:a6:
28:01:51:9d:e3:6a:35:35:0d:04:a9:b6:a1:92:b0:
d2:04:02:95:44:dc:fe:de:5d:8c:2e:4b:ee:0b:f8:
de:16:41:ba:7a:ca:70:56:55:27:94:05:06:8a:79:
2b:73:84:d2:99:f9:c1:c2:f0:4e:21:cb:61:2b:71:
64:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:51:73:3E:24:1B:C5:59:75:38:42:1B:07:0B:0A:EF:D3:49:D1:67
X509v3 Authority Key Identifier:
keyid:0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:69:33:3e:70:2b:03:e6:c3:58:12:3f:8a:98:14:a5:0c:3d:
95:54:e5:b2:8f:cc:42:87:95:d5:95:33:a7:fc:09:c5:0c:79:
2f:c6:ca:46:be:38:36:4f:a3:90:29:4d:7d:bd:dc:9d:40:78:
45:f5:8d:ae:9e:b0:b3:b6:3a:d7:30:f2:9b:48:f0:8d:e1:5c:
ae:b0:89:e8:07:a6:10:80:7e:6e:0b:02:df:34:b7:3e:ba:11:
1b:01:e2:83:fe:e6:b1:cc:66:79:5d:da:2d:c4:2d:a0:4d:5c:
2c:48:d9:d8:db:2a:f4:db:06:02:31:86:89:cd:ad:8a:b9:69:
74:93:1f:87:31:16:58:7c:4c:e5:0a:68:c4:92:a1:0e:ba:68:
7e:56:8e:72:84:38:6d:cb:21:99:22:29:41:46:aa:d1:0b:2d:
59:42:56:ef:c4:c3:b3:66:12:b8:8e:0a:74:a8:c8:97:f7:ab:
54:44:8c:1b:46:96:73:08:63:2a:65:66:0f:4e:4a:23:4b:f6:
a1:e5:c3:ec:51:c0:ee:35:30:d2:08:fd:81:03:08:83:0c:46:
90:a5:06:55:91:f9:07:4d:d0:a4:99:49:8a:94:7b:04:4a:79:
49:a5:a4:19:c2:09:3b:95:8d:f0:e1:1f:ed:e2:2c:ef:8d:6d:
fd:80:ce:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:49:20 2026 by rpki-client