Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
File: dCnR70knCBDhAgzqhhmGQjORMaA.mft (raw, json)
Hash identifier: DP09X3/MR5FPK3xEjeuzljI/8gUUOEia+BBx3w055rk=
Subject key identifier: 34:8D:4C:A1:BB:62:39:F7:C4:53:7A:0B:B6:B5:8B:36:68:15:7B:C4
Authority key identifier: 74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0
Certificate issuer: /CN=7429d1ef49270810e1020cea86198642339131a0
Certificate serial: 019CA97D265DA8BC1727845340DD8D59D168
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
Manifest number: 0D11
Signing time: Sun 01 Mar 2026 13:01:17 +0000
Manifest this update: Sun 01 Mar 2026 13:01:17 +0000
Manifest next update: Mon 02 Mar 2026 13:01:17 +0000
Files and hashes: 1: dCnR70knCBDhAgzqhhmGQjORMaA.crl (hash: oFIyMBm78BNsEROrdW8tyPAhMBaOEaowXOzlJnmUizI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 13:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:7d:26:5d:a8:bc:17:27:84:53:40:dd:8d:59:d1:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7429d1ef49270810e1020cea86198642339131a0
Validity
Not Before: Mar 1 13:01:17 2026 GMT
Not After : Mar 2 13:01:17 2026 GMT
Subject: CN=348d4ca1bb6239f7c4537a0bb6b58b3668157bc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e3:35:26:f2:e5:9f:06:27:83:f4:2e:5c:ba:
c3:6d:f2:da:4e:26:fb:25:a8:2e:bc:f4:16:a8:a3:
85:dc:fd:1a:49:e4:1e:88:66:d1:1e:b1:45:7b:76:
d6:67:34:6c:a1:e2:e3:ea:9c:75:f7:a8:a9:2e:db:
0e:7c:a1:1b:33:c5:00:35:34:7d:79:5b:af:53:c1:
98:a2:ab:de:ea:1e:ed:7f:1f:3a:75:42:d5:25:4e:
8a:1f:d6:b6:89:e2:ab:ea:45:99:a5:14:a7:c1:6e:
b4:59:d3:bd:d1:e3:cf:1a:98:5e:07:bd:6e:63:8a:
8a:c3:69:45:3a:ca:79:ef:16:6c:43:4d:0e:34:dc:
c8:fe:5d:08:91:ca:92:05:6e:1d:9e:91:8b:40:06:
af:5b:ad:5c:0f:e8:50:00:ab:ee:24:65:f7:9a:48:
dd:02:eb:7f:38:96:c3:44:f3:ac:b7:d7:28:1e:a2:
29:c7:69:61:eb:91:bd:70:9a:ac:e1:87:46:82:7b:
fc:bf:a0:3e:82:0a:aa:8f:ea:72:6c:c7:56:b3:64:
01:2a:25:f2:bd:e9:25:df:c2:0e:ad:e2:c2:b8:c5:
9b:f6:e9:42:f9:94:a0:10:9d:92:39:a5:ba:79:8c:
ef:40:b3:60:d1:f3:e5:14:65:14:6b:30:02:99:3c:
dd:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:8D:4C:A1:BB:62:39:F7:C4:53:7A:0B:B6:B5:8B:36:68:15:7B:C4
X509v3 Authority Key Identifier:
keyid:74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:53:d8:53:b6:8b:54:1b:88:6c:1b:ff:b3:1e:92:9f:78:9f:
8c:02:06:49:ef:89:4c:cd:37:a7:5e:bf:91:99:34:79:14:69:
56:cd:a0:05:af:0a:7b:f3:61:db:06:0f:31:34:c7:fc:ee:f2:
4e:c4:51:52:11:e9:77:e8:a1:63:14:f8:fe:02:2f:1b:90:38:
db:59:33:02:af:86:d9:5a:f6:75:14:8b:5f:49:c2:92:b4:c8:
bb:80:02:ef:16:cb:66:9f:85:d5:bf:c2:93:6c:e1:38:ce:d2:
60:f2:95:52:08:8d:b3:4f:eb:89:2d:a1:4b:1d:cd:45:19:e3:
de:23:31:b7:c1:26:31:50:58:a6:b0:98:f4:09:fa:53:8b:39:
62:7e:ee:0b:d8:a8:e6:11:28:69:9d:ff:b2:f4:37:d6:48:73:
55:8c:0f:e9:65:de:02:7b:03:57:53:c7:7d:4d:4d:a7:24:ed:
01:20:37:37:41:f9:82:81:a0:98:2d:aa:42:70:7f:8f:2f:f2:
6b:b8:5d:7c:48:70:4e:c6:e7:b0:31:d3:89:d2:eb:e6:8b:4a:
71:c3:74:da:38:ce:fa:2e:ab:f4:b4:af:46:9a:ce:f3:b5:6c:
4c:2a:d6:ac:46:21:17:de:3d:e4:6c:c3:67:44:69:b0:13:18:
16:ba:40:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:58:47 2026 by rpki-client