Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/f71faf-3a5b-45d8-8f25-fa44c7a07d27/1/dnh0JGjLAfClJrTpIib-O3TGfEE.mft
File: dnh0JGjLAfClJrTpIib-O3TGfEE.mft (raw, json)
Hash identifier: sLkehlto52IArTOnxl/r6PcaqnaPsxCybRj5XGnhz28=
Subject key identifier: 3E:FC:4C:F5:D6:53:BF:5A:55:7B:BA:82:0E:95:16:41:C7:7A:9D:AD
Authority key identifier: 76:78:74:24:68:CB:01:F0:A5:26:B4:E9:22:26:FE:3B:74:C6:7C:41
Certificate issuer: /CN=7678742468cb01f0a526b4e92226fe3b74c67c41
Certificate serial: 019D9B87B610498802EE66520647316FDEBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnh0JGjLAfClJrTpIib-O3TGfEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/f71faf-3a5b-45d8-8f25-fa44c7a07d27/1/dnh0JGjLAfClJrTpIib-O3TGfEE.mft
Manifest number: 0158
Signing time: Fri 17 Apr 2026 13:00:55 +0000
Manifest this update: Fri 17 Apr 2026 13:00:55 +0000
Manifest next update: Sat 18 Apr 2026 13:00:55 +0000
Files and hashes: 1: 1vE1bB4EDBxNcUGfUCxckstUSVo.roa (hash: ZcEWN1iWGFKaa88mWnoVaJOYXC/9DLTCOLoGub+bZ74=)
2: dnh0JGjLAfClJrTpIib-O3TGfEE.crl (hash: B8dXTgzsjI/RV1L1IK1YDMGu1upm0n9zYZ/MSptyloQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/f71faf-3a5b-45d8-8f25-fa44c7a07d27/1/dnh0JGjLAfClJrTpIib-O3TGfEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/f71faf-3a5b-45d8-8f25-fa44c7a07d27/1/dnh0JGjLAfClJrTpIib-O3TGfEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dnh0JGjLAfClJrTpIib-O3TGfEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 13:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:b6:10:49:88:02:ee:66:52:06:47:31:6f:de:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7678742468cb01f0a526b4e92226fe3b74c67c41
Validity
Not Before: Apr 17 13:00:55 2026 GMT
Not After : Apr 18 13:00:55 2026 GMT
Subject: CN=3efc4cf5d653bf5a557bba820e951641c77a9dad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:98:95:54:c2:b9:68:8d:45:2e:f3:4b:02:24:
d7:a0:cf:59:1e:43:b7:9a:70:43:b1:8a:32:37:a6:
33:df:3f:c5:89:ad:97:fd:2e:26:ea:14:87:77:90:
17:91:2b:3f:db:d7:7d:75:0b:33:eb:11:ae:6f:b3:
5b:6e:7e:8f:90:03:85:f0:42:c3:41:26:b1:09:28:
7f:14:3c:86:66:ea:3a:4a:96:49:db:ab:64:b2:37:
e3:c3:e3:86:a1:eb:3f:37:11:69:a4:bd:00:bf:48:
53:ba:e1:38:b0:26:d2:8b:68:53:a0:8f:f6:95:2b:
25:ab:79:3d:1f:5d:aa:61:d8:dd:73:6e:d6:09:fe:
70:5e:84:25:cd:09:c5:e1:ed:31:3d:c5:be:e5:b7:
d6:a9:bf:a5:b3:1a:a4:12:22:48:c4:bd:69:a0:b0:
24:24:0a:83:22:8d:f7:83:e2:16:1a:55:64:f9:33:
38:0e:37:a9:50:2d:aa:6c:2c:d2:ad:28:db:11:ad:
84:42:d7:c3:65:cd:41:41:de:42:63:68:4c:05:50:
3e:b2:03:d2:f7:ab:20:6b:8d:82:78:4c:87:31:be:
1f:26:12:5c:44:31:c8:5e:cb:5c:f1:e9:3d:48:f0:
33:67:bb:37:0c:6d:ec:79:a5:59:ec:4c:8b:60:51:
23:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:FC:4C:F5:D6:53:BF:5A:55:7B:BA:82:0E:95:16:41:C7:7A:9D:AD
X509v3 Authority Key Identifier:
keyid:76:78:74:24:68:CB:01:F0:A5:26:B4:E9:22:26:FE:3B:74:C6:7C:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnh0JGjLAfClJrTpIib-O3TGfEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/f71faf-3a5b-45d8-8f25-fa44c7a07d27/1/dnh0JGjLAfClJrTpIib-O3TGfEE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/f71faf-3a5b-45d8-8f25-fa44c7a07d27/1/dnh0JGjLAfClJrTpIib-O3TGfEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:4c:49:1a:17:19:fc:0f:72:f1:17:c1:f7:11:83:48:46:54:
c7:f5:37:d5:b2:87:27:54:46:95:e6:fe:cc:45:a2:71:e5:18:
17:e8:38:21:ab:ce:f2:39:fd:dc:66:20:7c:98:48:64:42:cc:
4c:36:cd:11:cb:a0:a3:05:d0:11:a1:6e:fc:3f:c7:b7:20:ae:
ac:e2:1f:ca:2e:c1:57:9b:72:25:67:f9:e6:cb:5a:74:f1:8e:
5c:cc:a4:1c:51:bf:6d:c0:60:c3:a9:cf:a5:2a:80:a8:f5:15:
e7:c4:ec:b6:af:86:87:c8:01:d3:22:6e:e3:7c:ea:eb:82:28:
f4:77:18:75:63:3a:d3:80:73:cd:c2:62:24:16:12:88:7b:39:
e7:76:cd:88:28:0a:62:5a:27:a2:c9:c5:d7:aa:e9:30:e4:f7:
38:7c:2e:7a:9a:d1:80:ee:2c:da:30:e9:dd:5c:75:68:84:7d:
dc:79:f0:60:22:ae:c7:5e:10:43:c7:30:85:f3:dd:99:62:f6:
ab:59:00:71:6e:10:c3:b6:cd:99:6d:02:49:b4:c4:bb:60:bc:
ff:59:d2:43:7f:f2:a1:b6:74:99:3b:11:b7:dd:7b:9b:bb:96:
81:3a:4a:1e:c4:2f:d7:ee:bb:6b:14:a4:18:fc:dd:3e:77:62:
59:7f:46:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:54:56 2026 by rpki-client