Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
File: dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft (raw, json)
Hash identifier: mRMAFumm2qrG5fTcdog3jNy3obhptDJJ0PXGn9otYho=
Subject key identifier: 04:8A:6F:AA:79:6C:DB:B2:EB:A4:C6:20:01:F4:04:2A:06:83:0A:D2
Authority key identifier: 74:9D:8A:43:28:93:0B:93:8F:A8:60:18:B1:E4:47:EE:4D:8D:A8:F9
Certificate issuer: /CN=749d8a4328930b938fa86018b1e447ee4d8da8f9
Certificate serial: 019CAEA36B8031F37BC63BCF22790699F7C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
Manifest number: 01C0
Signing time: Mon 02 Mar 2026 13:01:11 +0000
Manifest this update: Mon 02 Mar 2026 13:01:11 +0000
Manifest next update: Tue 03 Mar 2026 13:01:11 +0000
Files and hashes: 1: dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl (hash: gdlBRe8CIlYOTjt61rrUMnRYnVLAfeUaZkdId7FhytM=)
2: i5v8Z7TLwK1d1522dak6QJo-ZdI.roa (hash: dORF0I0Mm7ul7rA3/PIS0cDu8jhdXdBq0BX2+YuQ/kM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:a3:6b:80:31:f3:7b:c6:3b:cf:22:79:06:99:f7:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749d8a4328930b938fa86018b1e447ee4d8da8f9
Validity
Not Before: Mar 2 13:01:11 2026 GMT
Not After : Mar 3 13:01:11 2026 GMT
Subject: CN=048a6faa796cdbb2eba4c62001f4042a06830ad2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bd:a6:fe:e3:d0:10:0b:50:1c:75:97:c2:e5:
1b:a3:ec:2a:17:b8:20:5c:ce:2c:f7:43:45:0c:1b:
c1:b8:b8:ff:30:a2:da:2e:4b:77:5b:60:09:bc:03:
13:b1:9e:c7:3b:78:ca:16:65:00:9f:2f:a4:a6:85:
aa:45:a6:65:34:b7:e2:ce:dd:85:72:1c:c0:e5:a3:
1f:58:dc:f4:17:a7:a9:e5:6c:5c:16:d7:de:f0:41:
65:35:78:8e:cd:20:16:85:4a:a2:64:77:4e:45:f4:
84:57:cc:5a:fe:37:19:ac:7f:ab:e6:9d:1a:2b:b8:
bb:ed:4c:a0:38:99:c2:05:8b:ec:dc:ae:45:6b:e6:
f6:d8:19:94:12:88:90:01:b5:e1:a0:4f:9a:b4:e3:
56:f5:2a:d0:f6:1f:63:a4:77:7b:f1:d6:a1:0e:bb:
18:04:dc:07:7f:db:8f:a3:88:8c:a9:25:70:e6:a3:
6b:a3:8d:89:96:ac:6c:cb:68:a7:6b:d2:ad:cf:b1:
cf:f3:46:c0:81:9b:5f:0e:96:19:a5:c1:e5:57:0b:
12:cc:b1:38:42:af:f5:4a:e7:c7:39:3e:d4:c3:80:
e3:b0:9d:ae:1a:cf:b6:a3:4f:88:77:5f:a1:ba:35:
b5:f1:c7:ca:bd:d5:cc:ca:ea:b3:ec:d0:3d:83:39:
48:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:8A:6F:AA:79:6C:DB:B2:EB:A4:C6:20:01:F4:04:2A:06:83:0A:D2
X509v3 Authority Key Identifier:
keyid:74:9D:8A:43:28:93:0B:93:8F:A8:60:18:B1:E4:47:EE:4D:8D:A8:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:46:70:f6:30:52:0b:2d:7b:4a:28:5d:da:f5:08:0e:f6:0b:
76:05:3f:40:e8:72:90:c2:d4:f4:0c:db:09:98:b4:14:16:a7:
81:68:e0:02:02:f6:8f:bb:c2:5a:8a:89:77:ab:3a:f1:24:dd:
17:0a:1a:03:2d:33:fc:cd:91:05:2b:c7:97:04:19:49:ce:1f:
39:fd:cb:25:b6:8f:e7:e2:2a:71:f3:0a:17:8a:8b:5f:83:f5:
1a:6a:5b:3b:c6:17:42:b3:f0:10:b3:92:b9:81:42:86:61:80:
45:dd:12:be:a9:57:54:0e:03:c2:d1:46:ea:99:ef:18:48:59:
42:0c:38:12:79:21:f7:bd:50:98:e8:a2:cb:d9:c8:e9:4f:6a:
3e:c3:51:2d:b3:b5:23:1d:b2:c7:b4:39:a4:23:d8:f4:f5:4a:
23:48:bc:86:14:00:8b:4f:37:d0:a9:ee:b4:6d:43:8a:79:ac:
01:fd:cc:4d:c1:6d:a7:a2:24:d4:3d:9e:7c:60:3d:49:15:67:
5f:74:81:8c:a2:f4:93:8a:37:95:92:24:89:57:13:32:7f:4f:
de:e4:f4:6d:34:2e:c6:45:29:78:f2:30:ea:de:f8:1b:42:a4:
76:ee:e7:6e:b6:ce:55:be:6d:d4:14:85:79:1b:9d:b9:91:a5:
f4:db:16:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:47:09 2026 by rpki-client