Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
File: DIZmK3UsijvnLoVEOU_5JvaPv34.mft (raw, json)
Hash identifier: KKYGTB8MRTn6XbmR5xHVnOA4b7Pn+6RzvYMq+OEeGq8=
Subject key identifier: 76:90:DB:ED:FC:22:8F:58:1F:A2:07:D0:7C:67:4B:AC:35:BF:4C:28
Authority key identifier: 0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
Certificate issuer: /CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Certificate serial: 019D98184DA33CD659FC9D7EBC896AF49A32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
Manifest number: 1855
Signing time: Thu 16 Apr 2026 21:00:22 +0000
Manifest this update: Thu 16 Apr 2026 21:00:22 +0000
Manifest next update: Fri 17 Apr 2026 21:00:22 +0000
Files and hashes: 1: A16F9NsEyUOAtSY1zXDtoFPyOvI.roa (hash: jjt60ulArhgQ6L6QMOP8j3tqRiV3ooxzVNi5fS2TRAM=)
2: DIZmK3UsijvnLoVEOU_5JvaPv34.crl (hash: dN9jAXYSAc/q3qL9hWqZp1S87qxwDTv3+WabcQL745o=)
3: NGm2691GZapBpm1gs6Z4jmfhBoM.roa (hash: QTDvgh3teR3/EHNz+lSlNu8bj0kDo1oZ37zpvYw3lqc=)
4: tYghUUQTWWijOlLVQiaZ-lUBiJg.roa (hash: yzQ7/oZUAo82y+3OUIGvO1eCeftZH4ELWkeUYAVvzb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:4d:a3:3c:d6:59:fc:9d:7e:bc:89:6a:f4:9a:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Validity
Not Before: Apr 16 21:00:22 2026 GMT
Not After : Apr 17 21:00:22 2026 GMT
Subject: CN=7690dbedfc228f581fa207d07c674bac35bf4c28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3e:3b:04:89:e1:14:24:6e:e3:e2:c2:0d:e7:
6b:86:fd:07:ff:78:eb:2d:c3:c5:60:fd:e6:1e:c3:
37:10:21:a4:79:0b:30:de:4d:da:95:c0:b7:cf:fe:
ca:a3:f2:3f:8b:49:b8:54:81:33:15:8b:7e:bc:3c:
f8:d8:20:e7:ef:a0:66:94:7b:97:a5:6a:b7:8b:f4:
d6:0d:89:7e:65:54:65:2c:9a:c4:27:d3:3f:9c:43:
bc:e3:d2:37:45:35:c6:eb:37:09:8c:4b:cd:f0:34:
a2:62:df:91:6c:14:a5:e9:c8:a3:83:3c:82:31:bc:
11:7c:f9:b8:c9:dc:f5:d5:1f:b9:d9:04:4e:23:63:
d2:78:a9:c0:dc:8a:47:89:15:69:a2:6c:12:9f:49:
6b:dc:d5:04:46:74:30:4c:99:47:08:c7:87:89:4f:
8f:c6:c4:bb:d5:a1:22:fd:69:ab:66:53:51:5a:02:
58:8a:fd:c1:7f:aa:ee:a1:eb:92:02:80:6e:ba:af:
39:80:25:ca:dc:4d:4c:fd:34:a5:59:45:45:52:d8:
30:4f:fd:67:cd:9d:82:d1:62:45:f1:83:23:66:9f:
c9:a7:96:80:0c:4e:ae:7e:91:db:35:ec:4c:bb:2a:
cd:94:02:46:fa:d6:b0:f9:20:cb:4b:cc:dd:b9:a6:
db:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:90:DB:ED:FC:22:8F:58:1F:A2:07:D0:7C:67:4B:AC:35:BF:4C:28
X509v3 Authority Key Identifier:
keyid:0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:09:df:17:7e:a3:37:95:5a:21:06:f8:55:93:cf:31:67:a2:
e7:d1:64:57:58:ce:59:a7:da:aa:22:ac:f9:1b:95:ad:1f:47:
b4:76:20:49:0c:58:8b:46:2b:5a:1b:dd:3c:a3:c3:1b:13:f6:
27:98:f4:cb:b9:52:1c:5d:22:eb:fc:f4:f2:ac:ea:13:cd:32:
b8:85:e8:69:fb:cc:e7:9c:a7:2b:ee:ac:9d:83:cc:22:07:80:
b7:0a:9b:d3:f0:e1:b1:b7:05:7c:c2:80:a2:0e:66:aa:47:27:
70:35:14:7c:75:18:fb:54:c5:1c:56:37:fe:4b:44:71:22:de:
b2:1b:19:c9:c4:4a:47:1e:89:b6:ff:d3:f4:76:3b:b7:60:a8:
30:0f:33:75:e1:10:6c:a7:a2:02:c2:af:96:1a:ae:e6:9b:9e:
12:9c:f2:5a:9e:22:51:50:14:0d:42:38:19:d8:24:97:be:43:
75:d5:3d:13:e4:27:3c:1b:3c:24:81:a0:1f:39:8a:4d:89:c8:
af:8b:6f:57:3f:d6:23:56:2e:f6:f4:29:a4:c5:5d:75:ed:a4:
fe:db:0a:8c:2c:4c:fd:75:df:00:24:04:6a:6e:08:70:2e:ac:
57:e4:08:f4:de:2d:9f:2b:55:f4:cf:fe:34:a7:c8:71:fe:81:
e1:0f:17:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:48:36 2026 by rpki-client