Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
File: DXtk3YGIxSbrXrReqB6mqK-cWek.mft (raw, json)
Hash identifier: 8DvzXHWAcjXlifHE/4fsy4LUYnVJaVqUl91tit9cjB0=
Subject key identifier: 04:37:76:99:03:DD:2F:20:77:F6:EF:4C:22:AA:A3:EF:ED:7C:39:9F
Authority key identifier: 0D:7B:64:DD:81:88:C5:26:EB:5E:B4:5E:A8:1E:A6:A8:AF:9C:59:E9
Certificate issuer: /CN=0d7b64dd8188c526eb5eb45ea81ea6a8af9c59e9
Certificate serial: 019CA9EAC9E9658FEA3C43D1F6298CC62439
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
Manifest number: 04CB
Signing time: Sun 01 Mar 2026 15:01:02 +0000
Manifest this update: Sun 01 Mar 2026 15:01:02 +0000
Manifest next update: Mon 02 Mar 2026 15:01:02 +0000
Files and hashes: 1: DXtk3YGIxSbrXrReqB6mqK-cWek.crl (hash: 11QQrswP6+EFfLa/p8CPOVGRk70Ay78iNegFQAJl3N0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:ea:c9:e9:65:8f:ea:3c:43:d1:f6:29:8c:c6:24:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d7b64dd8188c526eb5eb45ea81ea6a8af9c59e9
Validity
Not Before: Mar 1 15:01:02 2026 GMT
Not After : Mar 2 15:01:02 2026 GMT
Subject: CN=0437769903dd2f2077f6ef4c22aaa3efed7c399f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f5:de:e2:b2:d4:4f:93:b3:a8:67:5f:6c:38:
d9:e9:f7:94:3c:3b:ad:e8:97:f0:6c:5d:47:6e:94:
44:73:c3:31:5d:c6:4e:2c:1c:bf:5e:ea:1c:42:bc:
68:d8:e6:55:7d:b5:26:d4:da:01:b6:eb:2a:c2:60:
4e:b5:9e:fe:ed:e7:bf:21:0e:3e:14:78:96:a9:df:
65:7d:be:f6:fe:6e:51:0f:6c:97:2e:0a:87:a8:00:
39:ab:e7:23:04:05:d9:f2:e0:b4:20:78:d3:dc:08:
23:92:66:e9:6d:c4:3a:a7:5f:b8:f3:68:c4:1e:d9:
86:8c:a8:b0:88:ec:29:aa:93:28:9e:ca:d3:2b:cd:
6a:06:31:25:cb:78:a1:2f:39:a1:08:c4:24:7a:d1:
33:33:01:ed:03:31:04:f0:00:65:c1:ae:66:ff:94:
b8:e8:12:e2:ef:75:f2:08:9f:5a:80:7c:e8:e1:4c:
0c:3b:fd:df:fa:6e:03:99:35:17:5b:ee:c9:bf:cb:
65:3e:dd:f3:f8:08:63:29:de:12:d3:d2:9c:c8:fe:
eb:61:17:bb:17:df:15:fb:ac:3d:e4:de:9e:a5:7f:
79:1a:a6:74:44:ae:2f:6e:83:1b:58:fe:ba:bf:83:
59:d9:d5:39:8d:50:43:29:07:3b:f3:e8:a9:22:e8:
4e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:37:76:99:03:DD:2F:20:77:F6:EF:4C:22:AA:A3:EF:ED:7C:39:9F
X509v3 Authority Key Identifier:
keyid:0D:7B:64:DD:81:88:C5:26:EB:5E:B4:5E:A8:1E:A6:A8:AF:9C:59:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:3e:f2:cc:51:0b:56:0d:0d:fb:8f:c3:53:7e:0e:fa:c3:f2:
f9:8c:dd:0c:3f:18:a4:fc:f5:6a:b7:a3:ca:7d:10:6f:82:c1:
4c:e2:98:66:0a:1a:33:e7:cb:19:68:43:7f:d3:75:df:07:6a:
de:b6:e2:00:e2:47:7d:7b:4b:8f:b5:07:05:8b:7e:18:67:64:
77:15:19:5d:c8:8e:c8:9d:ec:75:f2:8b:76:bd:fe:1d:fb:71:
52:d0:9c:91:49:9b:76:cf:83:ba:6a:0c:f0:46:c3:8d:cd:91:
0a:eb:71:37:27:d7:18:b1:19:dd:8b:3c:32:fb:9f:ef:65:f1:
16:53:52:4c:72:e8:c0:68:5b:a9:99:81:79:8b:6d:9a:76:4c:
03:74:ac:99:77:ed:c0:52:cb:13:0d:b9:b0:37:a3:0b:21:7f:
c5:32:b3:d9:7f:38:45:63:af:d8:55:01:4a:de:2f:d8:c5:f1:
55:69:81:b9:e8:eb:ea:6b:77:9c:d5:3a:f7:73:ed:bc:fc:16:
0f:a2:d7:dd:60:b3:94:a1:82:1c:84:1c:f5:6e:18:bf:5e:4e:
cb:03:26:ba:ec:d2:34:e7:98:a7:e6:1b:2c:fb:48:c9:21:48:
ab:4d:c1:43:52:67:ab:68:92:a6:20:76:c8:8e:1a:98:33:06:
07:20:d6:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:02:40 2026 by rpki-client