Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
File: dzW3DconD8uOS5CStyADZBOPXfE.mft (raw, json)
Hash identifier: +L5OpFvaojxi7eorUlFrbjlSun9sLUUUGmnQv08J8HE=
Subject key identifier: FC:DA:99:10:84:42:47:08:41:7E:EC:2F:8E:E1:B0:E9:B5:3B:49:C8
Authority key identifier: 77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1
Certificate issuer: /CN=7735b70dca270fcb8e4b9092b7200364138f5df1
Certificate serial: 019D99624F2DF53CFDB1FF2579D3A6A36971
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
Manifest number: 18C0
Signing time: Fri 17 Apr 2026 03:00:49 +0000
Manifest this update: Fri 17 Apr 2026 03:00:49 +0000
Manifest next update: Sat 18 Apr 2026 03:00:49 +0000
Files and hashes: 1: AOBKl1z9iGQ7udCEUVrOWOKRRJM.roa (hash: szJEeXPbG7L6V12RPqYR0G9jxj6sIKpxCqCIcFUY2rQ=)
2: dzW3DconD8uOS5CStyADZBOPXfE.crl (hash: a47X3Y3g/COeH5yEe2lObDvP+N9CBVadcOdRPUwbySM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:4f:2d:f5:3c:fd:b1:ff:25:79:d3:a6:a3:69:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7735b70dca270fcb8e4b9092b7200364138f5df1
Validity
Not Before: Apr 17 03:00:49 2026 GMT
Not After : Apr 18 03:00:49 2026 GMT
Subject: CN=fcda991084424708417eec2f8ee1b0e9b53b49c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d6:db:2e:2b:cf:89:80:2e:f6:c3:2d:99:05:
c9:f6:ef:68:73:62:7d:2d:33:e6:fe:79:8f:04:bf:
dd:a3:63:45:0a:78:a4:0e:ff:f7:1c:34:4d:4f:00:
24:1c:dd:a1:d1:72:27:8e:b0:b6:23:27:23:ae:1c:
cf:1a:b4:e3:74:71:6c:5c:b9:e4:56:a2:b2:3f:b2:
b3:48:e6:7a:04:2b:f1:8a:9b:ab:5e:54:d9:1b:93:
8e:11:ea:55:64:6f:f6:dc:f6:03:87:7b:b2:0f:43:
d4:99:c1:73:cc:06:c7:84:3a:d1:0c:4d:a8:38:55:
3d:39:0a:75:aa:0d:9b:b8:74:21:5a:f3:b1:08:06:
d7:1b:3d:75:8b:35:5a:2e:65:27:2a:24:e4:99:ac:
6e:f5:98:10:68:00:62:34:27:da:fb:7e:c6:d8:42:
d1:9f:c2:03:cd:0d:4d:e0:a6:91:01:89:cb:e7:21:
4e:a1:f9:09:3f:89:e6:f0:91:f4:99:9c:d1:d6:4d:
ed:d1:6d:52:9d:5d:aa:be:5a:2a:97:c4:b9:dd:4e:
40:e7:4f:df:1d:16:c5:b7:bf:94:a8:1e:54:18:1e:
dd:83:4a:e4:92:4d:ee:3c:7f:b4:d9:55:b7:41:33:
6c:8f:c7:ec:c7:0d:f4:c3:24:f1:d3:e6:8b:35:b8:
a7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:DA:99:10:84:42:47:08:41:7E:EC:2F:8E:E1:B0:E9:B5:3B:49:C8
X509v3 Authority Key Identifier:
keyid:77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:f0:b3:84:ed:e8:d7:09:15:44:ee:06:ee:e5:03:e7:c9:15:
c8:51:47:1f:87:6a:bb:c4:52:bf:ea:27:0a:4b:f8:1f:f0:6c:
fb:75:f1:a6:67:ba:1f:7d:bb:95:62:40:bb:e0:6c:14:9a:64:
64:c0:70:2c:da:08:c9:0f:bc:d6:03:47:d8:48:29:f5:dd:5b:
b1:57:be:5b:c0:46:99:95:f6:0e:a7:db:d3:3a:45:46:ae:d0:
ff:c8:10:c4:79:97:47:68:ac:d5:96:44:be:ae:31:46:da:36:
be:5b:bb:6f:65:de:cd:97:68:c7:13:e8:8e:de:61:25:8e:d4:
70:16:44:c9:5d:08:8e:91:2f:88:12:da:0e:3f:2b:06:ef:af:
b4:50:a0:49:36:88:85:5f:03:5b:a8:24:78:10:45:81:a5:a2:
b8:24:4e:c7:96:59:5a:ab:3a:98:f2:52:07:ff:23:6c:dd:a2:
31:66:e1:7d:25:7e:8e:5e:ee:c9:9b:30:37:f3:93:96:67:38:
0c:8f:3b:60:af:f8:a9:02:ab:ab:b2:2c:79:76:ab:32:03:47:
6c:6a:1c:0b:79:4a:03:f4:08:ab:1c:9f:61:83:dc:5c:b5:14:
51:6f:c6:64:b7:a0:26:52:8b:aa:29:8c:d1:8e:2e:9c:fb:00:
d1:51:01:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:38:42 2026 by rpki-client