Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.mft
File: dkkoqXvpVTdwE9OCxilA6VDdISs.mft (raw, json)
Hash identifier: D3gvpvSkytGtmuyULvlq94r7FuUaGKv8MmsUCCB7rxM=
Subject key identifier: 41:74:7B:E1:4B:B1:9C:E6:41:9A:83:72:4F:EE:D5:7D:F0:4A:4E:0B
Authority key identifier: 76:49:28:A9:7B:E9:55:37:70:13:D3:82:C6:29:40:E9:50:DD:21:2B
Certificate issuer: /CN=764928a97be955377013d382c62940e950dd212b
Certificate serial: 019CA97CA59D92EBD0A06A4F40DA04770DBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dkkoqXvpVTdwE9OCxilA6VDdISs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.mft
Manifest number: 1321
Signing time: Sun 01 Mar 2026 13:00:44 +0000
Manifest this update: Sun 01 Mar 2026 13:00:44 +0000
Manifest next update: Mon 02 Mar 2026 13:00:44 +0000
Files and hashes: 1: B7aCk0b-K5XgdvEjGdk5wXSAkDc.roa (hash: nyiUF3Zt9sMp6+mzeEZ8PMtjO/iACI+KfmNy9BotXDk=)
2: D9aUpKX2PTU1wmWHLRRqPaZtLBI.roa (hash: dH6am4VhkjdQhWRQqbXQ4D/HbErjXar5HVgXeANi9W0=)
3: Lp0vHH3sV5CmRox_CW0AyUEO49A.roa (hash: HnRMr5r2HkpjEYviPbeXFZfwzUunRvvI+wgZvCnFlCc=)
4: c6nKpma73pYWxvMGKppaadDfEFw.roa (hash: vhO0PPLdQXMMpfgBSaG37tdr8r6MbA4mP7J/LJzhZao=)
5: dkkoqXvpVTdwE9OCxilA6VDdISs.crl (hash: MyCtM29ibwLlYIykRDWQoDUKCSslBmEivNeAhCLCKMQ=)
6: jGSNHMpFNbQkO_PxgFvC_4Gf8QE.roa (hash: K41n6g6IzXx6vx3vFplymreUJX4uIZoX2K6TNqcNUyQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.mft
rsync://rpki.ripe.net/repository/DEFAULT/dkkoqXvpVTdwE9OCxilA6VDdISs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:7c:a5:9d:92:eb:d0:a0:6a:4f:40:da:04:77:0d:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764928a97be955377013d382c62940e950dd212b
Validity
Not Before: Mar 1 13:00:44 2026 GMT
Not After : Mar 2 13:00:44 2026 GMT
Subject: CN=41747be14bb19ce6419a83724feed57df04a4e0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:48:df:cd:a8:1f:c0:06:b3:96:4a:be:dc:b4:
cd:44:61:b7:47:19:90:e6:6f:99:9a:e5:26:2c:a3:
d8:2c:02:d0:90:10:40:84:32:71:d1:e0:3b:17:4b:
06:f6:f5:37:24:23:1a:d8:91:3d:a9:7d:02:60:97:
dc:68:34:a5:86:18:6b:6e:4c:56:6d:fb:2a:af:d6:
cd:5d:78:cc:4b:7c:e9:c7:2d:8f:12:37:f1:d4:7d:
24:3f:0d:43:a3:60:dc:4f:79:e8:7d:90:43:94:f5:
b7:cd:28:af:a4:24:34:e9:c5:84:04:c1:0e:22:99:
3d:61:86:d9:cc:12:6b:5c:e6:94:d6:68:2b:18:01:
25:7c:2e:00:97:77:78:3c:8f:81:28:1c:d7:2f:12:
97:6d:92:f0:e3:4f:c9:9e:ea:8b:63:2c:49:78:4b:
38:b5:a4:f8:cf:8e:9c:ee:cd:4f:4c:c8:33:ed:cc:
87:1a:46:39:86:e1:85:27:94:d8:9c:ee:a1:f9:8f:
fd:06:76:1e:95:79:bd:3a:4e:98:a6:a3:33:84:85:
04:ee:00:37:29:68:e1:20:87:5c:88:43:48:09:ab:
e9:c9:7f:ab:1a:32:25:95:91:f0:e0:dc:bf:56:b5:
6d:8e:c6:a7:a7:ac:0a:73:1c:1c:51:72:5a:dc:95:
12:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:74:7B:E1:4B:B1:9C:E6:41:9A:83:72:4F:EE:D5:7D:F0:4A:4E:0B
X509v3 Authority Key Identifier:
keyid:76:49:28:A9:7B:E9:55:37:70:13:D3:82:C6:29:40:E9:50:DD:21:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dkkoqXvpVTdwE9OCxilA6VDdISs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:3d:a7:46:7e:e8:98:91:1a:e5:34:39:78:20:97:eb:a7:e2:
98:38:b5:dc:1e:01:91:39:b8:92:68:3f:e4:54:c5:ab:89:c6:
f4:db:7e:6d:57:3b:e6:06:90:0e:9a:5c:5a:5b:a3:95:2a:41:
fb:47:39:05:08:dd:1e:92:6a:6e:ec:7e:bd:45:fc:79:d3:ee:
40:6c:74:4e:ef:f6:b2:67:40:4d:15:43:6d:c0:8e:03:e1:3d:
43:37:52:ef:81:ba:2f:84:c1:d3:f8:0e:4d:19:de:9c:e3:dd:
56:9a:73:b4:de:63:d7:32:17:94:9a:c5:16:5b:d9:ea:4f:14:
f4:f5:cb:9e:51:82:33:ea:cb:cb:e1:f4:50:b1:a4:48:ff:c2:
a2:c4:4a:f4:5c:77:29:62:20:c9:5c:c3:40:23:4a:c3:c1:09:
b6:46:42:5f:1a:2a:eb:90:8c:cb:a2:a7:9f:80:4f:c4:23:e9:
94:eb:b6:0a:0e:89:37:c6:5f:ab:be:6a:f3:72:e5:03:84:db:
4a:c2:45:11:dc:d5:f1:30:8a:c9:99:5f:c6:63:ff:52:5d:b9:
9e:3e:89:fc:4b:39:0f:c4:d0:a9:28:ea:52:e2:f0:4b:42:2c:
47:aa:8d:d3:0f:de:62:10:8a:08:ea:95:8b:41:13:98:c5:6a:
a3:75:dc:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:59:46 2026 by rpki-client