Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/f71faf-3a5b-45d8-8f25-fa44c7a07d27/1/dnh0JGjLAfClJrTpIib-O3TGfEE.mft
File: dnh0JGjLAfClJrTpIib-O3TGfEE.mft (raw, json)
Hash identifier: afLozN5PJbsXVhL+SJLH8yDr3x4Uyn4YI2MHcEp/pCk=
Subject key identifier: 0E:BE:BA:1D:7F:CB:D8:51:60:06:66:99:19:31:B0:68:42:47:47:53
Authority key identifier: 76:78:74:24:68:CB:01:F0:A5:26:B4:E9:22:26:FE:3B:74:C6:7C:41
Certificate issuer: /CN=7678742468cb01f0a526b4e92226fe3b74c67c41
Certificate serial: 019CAFECFA1F64625753ECF44ED42CDDD753
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnh0JGjLAfClJrTpIib-O3TGfEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/f71faf-3a5b-45d8-8f25-fa44c7a07d27/1/dnh0JGjLAfClJrTpIib-O3TGfEE.mft
Manifest number: DE
Signing time: Mon 02 Mar 2026 19:01:09 +0000
Manifest this update: Mon 02 Mar 2026 19:01:09 +0000
Manifest next update: Tue 03 Mar 2026 19:01:09 +0000
Files and hashes: 1: 1vE1bB4EDBxNcUGfUCxckstUSVo.roa (hash: ZcEWN1iWGFKaa88mWnoVaJOYXC/9DLTCOLoGub+bZ74=)
2: dnh0JGjLAfClJrTpIib-O3TGfEE.crl (hash: R0fr2eUD/HPPKovXJbl6wfdtlZ5u4E0qLx3q7zM8MUc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/f71faf-3a5b-45d8-8f25-fa44c7a07d27/1/dnh0JGjLAfClJrTpIib-O3TGfEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/f71faf-3a5b-45d8-8f25-fa44c7a07d27/1/dnh0JGjLAfClJrTpIib-O3TGfEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dnh0JGjLAfClJrTpIib-O3TGfEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 19:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:ec:fa:1f:64:62:57:53:ec:f4:4e:d4:2c:dd:d7:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7678742468cb01f0a526b4e92226fe3b74c67c41
Validity
Not Before: Mar 2 19:01:09 2026 GMT
Not After : Mar 3 19:01:09 2026 GMT
Subject: CN=0ebeba1d7fcbd851600666991931b06842474753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cf:77:d0:e7:41:4d:8f:3a:55:11:f7:e1:cb:
33:9d:af:70:ac:15:2c:2d:6c:78:c3:60:36:cf:08:
d7:70:88:64:93:7e:9f:84:b5:0f:2e:2d:e5:33:06:
21:07:09:98:92:f1:05:8b:bd:86:6a:85:de:9e:d1:
c2:39:2e:bc:1e:30:5b:0c:96:c5:4e:fb:59:47:a0:
27:ca:3d:73:3e:9e:0f:1a:cd:b5:de:99:1e:f1:f4:
b7:ef:3e:a7:95:9e:33:0d:af:6e:a9:cc:a9:9e:fe:
bc:76:26:cf:e6:2f:33:de:9b:c5:1f:b0:7f:34:7c:
d5:18:1b:9b:42:0b:80:11:5f:f5:a8:75:63:0f:a7:
a3:bf:49:ec:12:56:50:0c:98:e1:a0:e0:a2:c9:45:
78:ce:f3:12:d4:a6:6c:dd:c3:f5:66:90:4a:ab:c8:
34:c0:ea:05:bc:dc:b9:70:db:33:2a:9a:2d:8a:3c:
93:fe:ca:1a:0b:78:c3:3c:48:8c:e1:a7:0e:ba:a3:
75:18:e1:f2:85:e0:9b:35:18:a9:b8:a6:a3:9d:e1:
53:8b:ad:24:3a:66:45:dc:ad:59:ec:76:4a:88:06:
95:2e:c3:a6:c0:e4:21:54:63:52:0f:43:2e:80:28:
f9:69:7b:d4:a2:40:91:4a:b4:3b:4f:f2:87:be:a3:
31:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:BE:BA:1D:7F:CB:D8:51:60:06:66:99:19:31:B0:68:42:47:47:53
X509v3 Authority Key Identifier:
keyid:76:78:74:24:68:CB:01:F0:A5:26:B4:E9:22:26:FE:3B:74:C6:7C:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnh0JGjLAfClJrTpIib-O3TGfEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/f71faf-3a5b-45d8-8f25-fa44c7a07d27/1/dnh0JGjLAfClJrTpIib-O3TGfEE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/f71faf-3a5b-45d8-8f25-fa44c7a07d27/1/dnh0JGjLAfClJrTpIib-O3TGfEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:92:14:e3:9f:16:68:10:58:fb:b7:43:95:cc:a9:b9:dc:c8:
aa:f1:dd:bb:28:86:b2:46:13:c6:32:e2:d7:ca:20:4b:8b:f1:
ba:a2:93:e5:5f:7e:9f:3b:42:a2:0b:e1:4a:40:8b:08:34:c4:
38:ea:a3:55:7c:ce:85:cf:03:ad:ca:d3:38:6f:a5:f4:cf:b0:
fb:52:41:93:09:f0:5b:a4:36:78:0c:7b:ad:a0:2d:b5:9d:3d:
59:23:6a:ef:36:bd:bb:dc:50:6c:bd:c2:04:9b:50:db:d7:6b:
64:43:eb:9b:c2:4e:0f:b8:61:f4:45:8f:5c:0e:94:2f:0c:a0:
89:68:14:13:e8:93:56:27:ab:68:a3:b3:54:23:53:16:15:05:
d8:14:31:b6:0b:79:56:1b:d0:ab:d0:99:32:89:c8:e7:cb:b7:
c8:aa:4a:53:06:0c:12:00:1b:8d:65:93:a4:e5:a6:53:9d:46:
13:68:fb:a9:74:89:c7:0d:9f:d2:34:bd:b4:94:1b:30:ec:99:
c5:00:8e:f4:3a:b1:d8:be:6e:95:42:ce:cb:b6:86:a9:f8:57:
23:36:dd:a2:81:01:5f:31:6e:37:17:e1:8c:97:5a:f1:c1:b2:
d9:00:6b:e0:06:44:08:6c:a9:76:b5:bd:10:f1:84:95:e7:2a:
bc:53:4d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 03:58:49 2026 by rpki-client