Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
File: DIZmK3UsijvnLoVEOU_5JvaPv34.mft (raw, json)
Hash identifier: f53Or4aUPLYapSkFBcuNT/v2B0mkQY1D24gaWEbPQ/w=
Subject key identifier: A6:AA:B6:F1:27:42:04:D3:13:19:2C:38:CA:07:38:A4:0A:3A:AD:5A
Authority key identifier: 0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
Certificate issuer: /CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Certificate serial: 019CAA8F77FCACBBEBE1742AC1FD047E266C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
Manifest number: 17DA
Signing time: Sun 01 Mar 2026 18:00:54 +0000
Manifest this update: Sun 01 Mar 2026 18:00:54 +0000
Manifest next update: Mon 02 Mar 2026 18:00:54 +0000
Files and hashes: 1: A16F9NsEyUOAtSY1zXDtoFPyOvI.roa (hash: jjt60ulArhgQ6L6QMOP8j3tqRiV3ooxzVNi5fS2TRAM=)
2: DIZmK3UsijvnLoVEOU_5JvaPv34.crl (hash: UzD/7UONrX4F90Lng7sPXfCFHYqoKgjueyXCQEB53RM=)
3: NGm2691GZapBpm1gs6Z4jmfhBoM.roa (hash: QTDvgh3teR3/EHNz+lSlNu8bj0kDo1oZ37zpvYw3lqc=)
4: tYghUUQTWWijOlLVQiaZ-lUBiJg.roa (hash: yzQ7/oZUAo82y+3OUIGvO1eCeftZH4ELWkeUYAVvzb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:77:fc:ac:bb:eb:e1:74:2a:c1:fd:04:7e:26:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Validity
Not Before: Mar 1 18:00:54 2026 GMT
Not After : Mar 2 18:00:54 2026 GMT
Subject: CN=a6aab6f1274204d313192c38ca0738a40a3aad5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:17:fb:eb:74:f2:c2:00:40:40:96:ce:8a:31:
c7:03:49:58:eb:21:b4:6e:4a:22:b6:d9:b7:8b:6b:
21:2d:35:2a:6f:fe:6e:32:c3:52:b6:a3:3d:60:3a:
93:5a:2f:f5:87:70:a5:29:97:07:84:44:a4:5e:00:
fb:85:40:eb:37:f6:93:65:c4:0c:3a:51:ba:2a:66:
81:22:95:c2:0c:17:50:bf:ef:26:e0:0b:f6:ba:c8:
77:3d:6c:c9:86:d5:12:96:fc:87:f7:a7:5e:91:e9:
c3:4e:da:1f:ce:1d:65:e4:d5:7a:ce:aa:99:50:15:
fe:25:cc:81:43:aa:82:c8:80:09:0b:fd:01:c3:38:
f6:77:3e:95:ee:1b:80:8c:06:47:73:5d:b9:c9:0b:
fe:d4:ca:37:a6:c4:50:5d:75:6a:f9:d6:1c:54:e8:
2b:90:53:3f:fc:50:c6:c6:ea:c8:79:23:04:e8:62:
64:21:4c:2b:8d:50:0c:47:2d:19:60:3b:8d:f3:0b:
ad:68:c7:77:45:3b:45:4a:ff:4e:4c:97:47:96:99:
b2:8a:4e:4b:24:7f:5d:a8:08:65:6d:54:6d:c9:09:
ba:e6:20:3a:60:ee:45:8d:18:65:e5:09:26:cd:8b:
b3:38:af:e8:59:72:e0:53:39:81:7d:e1:6d:3b:30:
f3:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:AA:B6:F1:27:42:04:D3:13:19:2C:38:CA:07:38:A4:0A:3A:AD:5A
X509v3 Authority Key Identifier:
keyid:0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:8a:7b:ed:44:38:ca:ed:b1:b1:06:45:63:97:61:1b:85:f2:
44:48:e6:24:b2:42:8d:10:fb:28:41:8c:97:e3:d1:a2:85:da:
92:f3:c6:7a:81:06:42:fa:79:77:e4:82:21:67:ce:a6:e5:a2:
fb:8a:e0:fd:4c:46:c7:b9:f1:a9:34:29:4d:dd:d9:68:fa:27:
d0:9d:12:de:7d:52:5c:df:fa:75:be:b2:c7:04:c5:7a:7a:9b:
35:3b:e5:81:5a:69:f4:45:7f:88:42:ad:fd:94:94:29:8b:bb:
1b:5d:88:f7:d6:ef:dd:20:c4:00:15:63:17:61:f5:25:fc:99:
31:d8:49:4c:b2:79:73:cf:c3:5c:c5:05:fe:8c:9c:e2:db:46:
de:9d:11:9a:dd:db:17:42:9c:30:d2:bc:e1:9c:cd:5e:fd:82:
12:56:00:7b:27:2e:0f:15:08:d7:12:b7:7f:00:17:13:96:f5:
08:8c:9a:1c:84:dc:70:be:31:ca:2e:7c:79:f2:a4:3f:98:bd:
a9:0f:de:a1:e5:28:f2:64:cd:6c:18:fa:95:9c:41:33:a2:cf:
21:48:cc:e7:de:0e:5e:e2:65:1b:b0:6c:11:95:29:42:ac:d5:
12:85:53:26:ef:0b:34:58:f8:61:67:64:38:ce:a9:76:a3:30:
6a:7b:95:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:59:50 2026 by rpki-client