Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
File: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft (raw, json)
Hash identifier: Db5Ee8Qo+wXEf7gdX6BdwD/soTVJvewS0bdPoTskl3o=
Subject key identifier: 91:27:66:30:D5:B7:E1:12:89:F2:1B:F1:3A:4A:73:D3:A2:46:F9:6E
Authority key identifier: 0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
Certificate issuer: /CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Certificate serial: 019CABA1E13A53ACF0F70202CC5FC025A809
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
Manifest number: 0FAA
Signing time: Sun 01 Mar 2026 23:00:38 +0000
Manifest this update: Sun 01 Mar 2026 23:00:38 +0000
Manifest next update: Mon 02 Mar 2026 23:00:38 +0000
Files and hashes: 1: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl (hash: Jf4p7chTLFonBIRzgozrsuMPtgH6F993Wu1Vrfj99DU=)
2: x5ebKc9_3qA7pEOC0_BnOS1B8oI.roa (hash: AqP1AEgenjD2KrPY+QLH5krFzTJA90JozOTpwzG6a5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a1:e1:3a:53:ac:f0:f7:02:02:cc:5f:c0:25:a8:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Validity
Not Before: Mar 1 23:00:38 2026 GMT
Not After : Mar 2 23:00:38 2026 GMT
Subject: CN=91276630d5b7e11289f21bf13a4a73d3a246f96e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:67:38:18:0d:f7:0e:c9:d5:0a:43:d2:5a:f4:
cb:54:bc:37:df:a7:e9:50:72:5f:8c:be:23:22:9a:
d3:e0:db:7f:29:c6:f0:2d:95:46:22:e3:ec:79:69:
d5:e0:1e:dc:59:b9:be:c4:8a:e8:e7:43:27:27:a8:
33:87:7d:83:1f:41:ec:7d:64:78:53:fb:77:fd:da:
3a:59:a0:ce:4f:39:35:db:01:eb:4f:95:c4:28:0e:
16:d3:c0:94:ca:09:1c:90:5e:2c:41:43:e2:d4:5e:
fd:ac:05:89:67:cd:02:e2:83:30:17:c5:29:90:ea:
8f:4b:7a:ae:50:62:1b:c8:d2:37:18:67:e1:af:54:
31:bc:98:ca:af:99:1b:ae:10:a2:63:d6:fa:d3:86:
dd:13:ac:aa:80:48:4f:45:89:15:5e:dd:dd:ce:38:
91:33:aa:6a:71:b1:6b:84:9d:16:41:91:a5:3b:34:
c2:e7:80:24:cf:8b:08:83:50:bb:5b:ec:dd:1b:cc:
9a:13:7e:f9:6e:23:e9:46:5c:71:43:77:c7:2b:f1:
34:09:3e:21:31:fe:99:49:7c:8a:e8:70:ec:eb:11:
e3:dd:f8:98:7e:34:5e:b6:c6:b2:3b:10:fb:f4:62:
d3:b9:33:64:a7:fc:98:1a:ce:45:25:ea:3c:7a:68:
81:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:27:66:30:D5:B7:E1:12:89:F2:1B:F1:3A:4A:73:D3:A2:46:F9:6E
X509v3 Authority Key Identifier:
keyid:0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:9c:0b:77:91:13:20:16:c6:2f:5e:bb:0f:be:19:6d:0d:3f:
2e:d0:6e:4b:8a:d1:6c:89:78:18:11:d2:f8:73:79:5a:5a:a9:
37:62:cd:26:c3:6a:4e:c9:1c:e3:65:3c:65:e7:24:49:b8:b7:
a9:41:7f:c3:23:ca:5f:88:b0:a8:b5:17:7e:56:fa:87:6f:bb:
f8:0b:06:66:d5:78:f9:14:e2:64:a9:96:59:c8:2c:58:5f:ba:
b5:d2:1c:5c:7a:4a:d2:be:98:da:44:b8:d8:fe:25:28:69:5c:
38:94:42:48:02:4b:ec:3f:08:99:bb:e0:cc:92:aa:05:e5:63:
6f:86:11:b1:f3:33:ad:84:26:df:3a:d8:9e:43:bf:32:75:b4:
da:85:6e:b9:0b:a0:e0:6d:22:14:42:1a:f7:14:99:d5:80:6e:
5e:ee:2d:3d:90:ef:3e:d9:77:50:f2:68:21:91:28:8a:38:aa:
fc:ec:3e:bc:7d:15:1f:ce:e0:44:ee:b0:0f:db:dd:d2:37:03:
4e:bc:63:68:f9:b3:37:e0:2b:56:3c:9e:d3:4b:ea:eb:24:a6:
00:ed:cd:10:f0:b5:c5:f1:47:10:b0:92:57:e8:7a:b1:b7:18:
b4:c5:dc:f3:12:fb:5f:77:64:ee:00:3a:c7:32:c1:ba:b6:cb:
17:4f:cf:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:10:18 2026 by rpki-client