Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
File: Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft (raw, json)
Hash identifier: g69MtDbTjH6KBjCzFZqDCAoqI9M3h0zTbGYywUdciq8=
Subject key identifier: 0C:11:A2:72:64:20:65:3E:D8:81:DC:A6:20:F6:BF:FF:17:96:AF:0B
Authority key identifier: 0E:1D:D5:39:52:5A:39:D8:47:01:4E:8F:EA:3C:64:1D:97:3C:C8:66
Certificate issuer: /CN=0e1dd539525a39d847014e8fea3c641d973cc866
Certificate serial: 019D99992D91406FA029FA52E0AB3DD1E41A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
Manifest number: 0845
Signing time: Fri 17 Apr 2026 04:00:45 +0000
Manifest this update: Fri 17 Apr 2026 04:00:45 +0000
Manifest next update: Sat 18 Apr 2026 04:00:45 +0000
Files and hashes: 1: Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl (hash: TmC99HZM/4N32WZgteQq7I39Ovk0NYw/+2pXQon7dHk=)
2: wWu-RpwUyxS5-QEBD4scp9HUjmY.roa (hash: Vz+DIxi0X/mIEqFNyd8Fjt4ub221xLszyBI1vupEUnQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:2d:91:40:6f:a0:29:fa:52:e0:ab:3d:d1:e4:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e1dd539525a39d847014e8fea3c641d973cc866
Validity
Not Before: Apr 17 04:00:45 2026 GMT
Not After : Apr 18 04:00:45 2026 GMT
Subject: CN=0c11a2726420653ed881dca620f6bfff1796af0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:dd:34:26:92:8c:67:aa:84:78:7c:d5:e2:d6:
11:11:46:20:d5:8b:0b:2b:df:4d:2c:f6:e7:dd:8b:
cb:1d:12:b5:06:51:84:32:ff:77:cf:19:b4:11:d1:
38:93:9f:19:fc:be:45:61:5c:c4:69:5f:a5:35:30:
5c:0c:ec:4d:db:e8:68:aa:a3:ec:c7:66:cb:05:ce:
7c:5c:73:5e:f4:33:04:06:f6:9a:08:52:0e:d2:8e:
15:af:ed:ed:80:99:64:88:ae:02:dc:41:00:71:89:
15:c8:b3:2f:71:5e:96:c1:13:55:7e:ea:ed:93:26:
d0:99:5e:bd:dd:45:59:4f:16:c5:12:9c:38:7f:df:
c6:6c:bb:6a:3d:d2:06:a8:a5:33:34:12:72:d0:0c:
ce:ad:80:ab:2e:39:36:e2:c8:a2:d5:b0:f4:98:7e:
8f:d8:c3:cc:25:47:24:1d:cb:f9:d6:97:13:f4:95:
d4:3e:af:58:5e:32:b2:ce:f5:72:f3:29:39:53:41:
d2:d0:f5:b7:99:f4:88:94:92:a4:14:b5:5c:fc:e5:
95:8d:50:03:66:b3:69:82:c8:d1:0d:ef:54:df:6e:
e7:6b:aa:18:fb:08:8e:ec:e6:c5:de:ce:18:42:1f:
38:0e:c5:45:be:3f:d3:69:73:a9:6d:57:66:bd:10:
d0:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:11:A2:72:64:20:65:3E:D8:81:DC:A6:20:F6:BF:FF:17:96:AF:0B
X509v3 Authority Key Identifier:
keyid:0E:1D:D5:39:52:5A:39:D8:47:01:4E:8F:EA:3C:64:1D:97:3C:C8:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:2f:59:52:2b:44:a7:f4:ba:c0:bc:e7:cf:e4:89:ac:7a:f1:
94:b5:19:29:d6:66:95:98:ed:01:9d:28:d9:7a:f5:23:6a:3c:
3f:73:3d:8b:f1:ce:d7:27:fb:59:71:16:24:8f:eb:23:e6:c5:
85:84:90:34:e6:4d:2a:46:53:ec:82:a6:97:70:fa:b9:42:74:
c8:ae:9e:65:0b:b6:db:03:0a:c6:49:5c:d6:fd:02:7f:56:02:
f0:5d:05:a5:b2:82:98:c8:b9:02:8c:c2:e9:30:d2:4a:4d:47:
27:9b:e1:76:12:4d:80:94:0f:0d:01:27:48:dd:99:bd:b6:2d:
db:6c:f1:23:dd:6f:2c:c8:31:c7:f6:72:fc:fe:df:33:9d:ae:
7e:21:2d:17:f0:c1:2e:4a:9c:87:9c:e4:b3:77:c5:a2:ed:08:
49:13:3f:b3:70:70:44:ee:d8:a6:74:13:75:8d:42:72:98:fa:
01:c3:58:5a:ca:01:0d:ba:63:d0:30:f1:34:d6:b6:b6:ef:e5:
38:37:ad:57:c0:1a:aa:8b:71:25:5b:f8:c4:d3:62:b2:ae:ee:
53:79:ff:22:0e:51:f3:4c:e3:a9:f3:da:41:3d:ea:4e:c0:6b:
46:a5:17:51:b8:b1:ff:d9:e7:25:08:c6:42:11:8e:dd:d9:97:
28:03:24:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:55:36 2026 by rpki-client