Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
File: dCnR70knCBDhAgzqhhmGQjORMaA.mft (raw, json)
Hash identifier: rNqeHU5g2ZpgDfeXK9eYKLhLhykVmfyqPiBgVDYes3s=
Subject key identifier: 30:19:E8:66:A4:09:EF:BB:05:AA:93:DE:A5:9E:D2:5C:F8:45:7F:3D
Authority key identifier: 74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0
Certificate issuer: /CN=7429d1ef49270810e1020cea86198642339131a0
Certificate serial: 019D98F4A8C613A1D912BD5D8188FCEDB708
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
Manifest number: 0D8D
Signing time: Fri 17 Apr 2026 01:01:03 +0000
Manifest this update: Fri 17 Apr 2026 01:01:03 +0000
Manifest next update: Sat 18 Apr 2026 01:01:03 +0000
Files and hashes: 1: dCnR70knCBDhAgzqhhmGQjORMaA.crl (hash: rvGdq3nv9ihvfTeRoSGdHUEZ9sg1wZE9nBeIqa5fHPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:a8:c6:13:a1:d9:12:bd:5d:81:88:fc:ed:b7:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7429d1ef49270810e1020cea86198642339131a0
Validity
Not Before: Apr 17 01:01:03 2026 GMT
Not After : Apr 18 01:01:03 2026 GMT
Subject: CN=3019e866a409efbb05aa93dea59ed25cf8457f3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0d:b3:92:ee:fd:c8:37:d1:cf:f5:02:a9:4c:
d9:b7:7e:3a:f5:69:c3:30:42:62:a3:f6:cb:9e:34:
63:7b:12:ce:aa:b7:a7:11:c5:d8:7e:45:01:c1:40:
61:47:ee:15:8d:40:9c:68:cf:56:61:e1:2e:a1:e0:
d2:b4:e9:70:95:9a:4f:05:b8:2e:5b:ec:7f:d9:46:
2a:78:13:e3:82:73:ce:d1:91:57:b8:40:66:b0:0f:
6e:13:45:eb:48:fd:5b:44:39:cc:eb:d7:28:33:c6:
e4:4e:f9:6d:90:6a:36:e3:7b:ac:a4:86:d3:14:0d:
fe:66:22:f9:11:ee:61:4b:52:58:83:fb:5e:64:1a:
95:7f:d5:2b:9c:b6:9d:d1:07:13:65:eb:70:c7:ca:
23:47:13:1a:2c:cf:77:05:f6:6c:3a:69:88:2c:27:
9c:39:0a:3d:8a:bc:d3:4a:c4:54:00:2e:bc:c5:46:
fc:c6:b4:5a:8e:ba:c2:04:c1:5a:db:e8:aa:6c:57:
34:64:62:03:99:48:d2:0f:3a:93:f9:b8:66:a2:4d:
05:8d:d8:ca:86:4f:b5:db:60:40:03:d5:23:f2:ed:
1b:39:a6:69:cb:e2:7b:40:c0:56:87:d9:f0:27:98:
62:99:c0:0e:c9:ed:9e:6e:0b:f4:41:60:44:4f:4e:
c1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:19:E8:66:A4:09:EF:BB:05:AA:93:DE:A5:9E:D2:5C:F8:45:7F:3D
X509v3 Authority Key Identifier:
keyid:74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:55:73:2c:12:42:4b:af:48:ad:cf:6f:aa:18:75:f8:28:19:
01:9e:b9:53:89:84:ac:d4:bb:02:e7:16:6d:f5:ec:65:14:9e:
70:13:9a:27:9c:f3:31:92:07:58:d8:2a:f4:f0:38:f8:75:eb:
bf:1b:4f:82:3d:65:ac:a7:8a:82:d3:ac:86:3f:7b:fa:e3:ba:
97:35:91:be:fd:73:c8:fd:8d:52:7e:a3:09:76:18:01:27:96:
5a:7d:38:8e:96:8e:4c:ea:c2:ab:02:78:c0:c9:b0:82:36:b1:
d8:77:32:d7:8b:69:93:c6:27:9c:f6:1c:e7:20:41:2c:64:c5:
15:cf:1f:bb:4d:a7:08:a0:1a:2b:89:c3:b2:2b:6b:f8:b8:ba:
f6:be:a8:ee:2e:d1:ca:f1:96:77:7a:05:03:f8:ec:35:55:2b:
c0:55:f6:59:8e:5a:2a:82:fc:b8:74:42:80:9f:a5:42:6a:ac:
16:6b:17:b4:52:cc:09:3b:18:6d:c1:a6:a7:b4:9f:8e:e7:15:
80:00:24:5b:66:37:f2:f9:fe:4b:e2:12:7a:07:d7:a3:f9:32:
c1:8d:e3:ca:b5:8f:ad:bc:93:d2:17:06:b9:cd:e6:ba:b5:4e:
ac:15:0c:0a:58:c5:39:05:c3:5e:28:a8:1b:37:80:30:35:2e:
98:2d:36:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:34:41 2026 by rpki-client