Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
File: do_utqkKhqzxGHHk5Xii6n7Cgdk.mft (raw, json)
Hash identifier: unJHy6XUGkYgugUV4X1EvlrUonmXuCeMyhkKwHYvRfA=
Subject key identifier: 7A:00:DA:66:E8:3B:60:90:58:92:38:FE:D4:DC:BE:39:12:E5:EB:9F
Authority key identifier: 76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
Certificate issuer: /CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Certificate serial: 019D9BF579A772D301297DBF4436654B4C41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
Manifest number: 03CE
Signing time: Fri 17 Apr 2026 15:00:48 +0000
Manifest this update: Fri 17 Apr 2026 15:00:48 +0000
Manifest next update: Sat 18 Apr 2026 15:00:48 +0000
Files and hashes: 1: W-L9Z-et_hk_ElQE4x3JidtYxJ8.roa (hash: H+ygr+3swIT2aBvGxAFeyCAkH1uxCN9KnvrpdAVtIB8=)
2: do_utqkKhqzxGHHk5Xii6n7Cgdk.crl (hash: oWh906PPwmi73kDirxhbaztem2604R5H6QbRp6x3bPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 15:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:79:a7:72:d3:01:29:7d:bf:44:36:65:4b:4c:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Validity
Not Before: Apr 17 15:00:48 2026 GMT
Not After : Apr 18 15:00:48 2026 GMT
Subject: CN=7a00da66e83b6090589238fed4dcbe3912e5eb9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b7:23:b7:aa:05:4b:25:39:13:a8:ee:8e:4f:
9f:cc:02:d6:20:3c:f4:c0:7b:83:05:e2:a2:d1:9f:
bb:67:88:3d:8c:26:0f:86:0f:56:24:81:55:e7:d8:
3f:13:9d:23:04:7a:dd:ed:d9:13:06:af:ca:1f:fd:
fd:5a:ee:e7:03:cb:8d:c5:33:92:d2:03:33:53:a3:
4e:7f:5a:b0:55:ee:39:52:ec:4a:4c:90:ca:29:77:
60:6e:47:01:86:94:c6:c8:43:2f:2f:ff:8a:9b:33:
3c:b3:d5:6c:d7:d8:2e:e9:ef:a5:dd:6f:ef:a3:64:
71:fd:60:22:2c:44:a5:40:da:53:48:10:ce:a8:e0:
cf:5e:5d:ba:a8:aa:b6:d0:a3:66:f0:f9:f8:c5:3a:
0a:c1:61:4a:6d:19:dc:02:78:b3:0b:84:2f:b7:a8:
36:bb:60:1b:ce:29:eb:c7:a7:11:d3:1c:e2:2b:2a:
b8:dc:4c:76:1f:d5:3b:17:f2:73:85:88:94:3c:c8:
7c:fd:bb:b9:14:ec:f1:1e:46:ee:69:be:68:30:41:
65:58:ac:72:24:1d:a5:08:3f:3c:16:5d:49:e8:8a:
37:12:71:04:77:07:1f:55:1b:e8:05:ee:82:9c:e5:
db:de:73:6d:40:de:4e:9e:c5:0f:b4:e2:ee:74:4e:
5f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:00:DA:66:E8:3B:60:90:58:92:38:FE:D4:DC:BE:39:12:E5:EB:9F
X509v3 Authority Key Identifier:
keyid:76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:ce:01:64:e5:74:a2:2c:20:70:fc:26:1e:0e:d7:88:a1:f0:
1a:4d:ed:28:99:b0:67:43:d7:db:8b:e1:61:2b:b4:a8:2e:df:
48:36:64:08:e5:a8:65:5e:a8:00:9c:fa:38:2f:9a:68:c7:ec:
f8:15:b4:2f:d7:8b:eb:f1:12:04:05:51:e2:3f:37:7b:e5:18:
58:6e:9a:db:b3:11:97:fe:cb:83:45:29:cd:5c:66:85:62:ed:
ba:c9:3a:4b:60:45:c2:c4:88:3a:92:32:c1:54:2d:51:ed:42:
a7:09:3d:4f:f1:fa:14:cb:ee:8e:4c:87:50:5a:c4:ad:ee:73:
79:f9:c4:e3:8d:5f:0e:73:17:02:7b:3b:05:a0:15:de:d6:33:
c7:91:76:13:af:d2:e9:d6:74:c9:2f:94:73:fe:71:92:7c:9b:
d4:91:c5:5d:a1:f6:40:ae:f6:40:41:8f:0e:5c:0e:77:69:1c:
6b:82:e9:03:6f:6c:52:6d:9a:17:5d:f7:7d:7a:11:5b:dc:d2:
ee:10:8f:ea:df:1a:97:a3:61:a5:f3:99:91:bd:54:87:0f:f4:
13:80:41:58:dc:78:92:0c:23:35:17:90:37:13:31:a3:e0:8e:
c8:4f:db:7f:b4:c4:3e:a9:0e:6f:f9:47:e1:b4:04:af:98:d4:
08:d9:f0:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 01:42:17 2026 by rpki-client