Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
File: dHnfUKMVAp6AqhlHr-EtselIYos.mft (raw, json)
Hash identifier: VPi7Q2Gtfx+sOHCTCoVE4I75MzHFCxKN2GPh2FCJJ3k=
Subject key identifier: 3E:86:D8:37:B4:FE:56:0B:DA:9F:1B:44:2C:95:7C:9A:B8:D0:E2:5A
Authority key identifier: 74:79:DF:50:A3:15:02:9E:80:AA:19:47:AF:E1:2D:B1:E9:48:62:8B
Certificate issuer: /CN=7479df50a315029e80aa1947afe12db1e948628b
Certificate serial: 019D9BF5AED76D2ADD0EC78643A02DD275F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
Manifest number: 11C6
Signing time: Fri 17 Apr 2026 15:01:02 +0000
Manifest this update: Fri 17 Apr 2026 15:01:02 +0000
Manifest next update: Sat 18 Apr 2026 15:01:02 +0000
Files and hashes: 1: BXcJyeoWgagdd3V31mwsVCcQbpE.roa (hash: yQn1/FtH4uOfCzrJXuLEmscMEDI0/UDWaQ5VY5MFs4U=)
2: dHnfUKMVAp6AqhlHr-EtselIYos.crl (hash: rU/o0PLZwIJY0LjunyPGEgB/kmuJ/xvXmjS80eDdX/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 15:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:ae:d7:6d:2a:dd:0e:c7:86:43:a0:2d:d2:75:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7479df50a315029e80aa1947afe12db1e948628b
Validity
Not Before: Apr 17 15:01:02 2026 GMT
Not After : Apr 18 15:01:02 2026 GMT
Subject: CN=3e86d837b4fe560bda9f1b442c957c9ab8d0e25a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ea:33:be:73:f6:a5:5e:9b:9b:3a:08:4d:d9:
b1:8d:00:f8:f8:7f:33:13:18:87:c7:be:14:a1:42:
6a:ac:e8:da:a0:ce:30:7c:02:da:c5:9c:ef:a2:3c:
a5:0f:7b:5b:46:8c:b5:0c:35:15:84:34:1c:26:9c:
34:25:07:3d:c4:3c:b9:5e:3e:ae:66:0f:76:1d:af:
d4:b5:2c:ee:a8:8b:f2:93:e2:d6:f0:70:64:ce:05:
97:4d:38:7b:9a:20:86:6d:70:70:55:4b:b7:b8:ed:
93:17:c5:71:1e:2a:b9:7b:c6:ce:25:2d:63:2f:79:
0e:71:f7:2e:91:32:5e:97:09:26:29:cc:f5:59:af:
76:67:81:c4:1c:60:45:80:15:f9:c1:31:e4:22:67:
bc:66:d9:1e:8a:2d:36:92:4e:25:f0:46:68:b2:b7:
8a:b1:38:1a:d1:7b:4f:df:0b:7a:10:01:ef:10:dd:
31:b2:f3:13:1d:06:b8:0c:65:5d:d9:f0:dc:69:82:
71:3d:09:40:be:3f:8c:bb:a9:cf:86:39:b8:18:c6:
bc:ea:ce:3a:3e:3e:b2:df:25:df:6c:42:79:5f:4d:
94:a4:fc:7d:84:73:21:65:0f:a6:64:49:0d:22:d9:
1b:77:86:94:7c:a4:31:07:43:4f:3f:e8:cc:ef:55:
a3:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:86:D8:37:B4:FE:56:0B:DA:9F:1B:44:2C:95:7C:9A:B8:D0:E2:5A
X509v3 Authority Key Identifier:
keyid:74:79:DF:50:A3:15:02:9E:80:AA:19:47:AF:E1:2D:B1:E9:48:62:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:cb:d8:f5:cc:73:bf:d2:19:a2:24:3c:94:c3:49:b5:21:ad:
a4:1c:20:71:c2:85:77:f0:4f:a2:66:9b:cb:09:a1:25:52:5a:
cc:ae:04:db:a3:f1:35:e8:2b:f0:1f:bc:b7:ef:33:38:35:3c:
8e:57:72:a3:f6:b7:b7:d8:57:89:9c:07:e8:c5:8d:cc:a6:bd:
1f:6d:8b:79:a4:65:29:9a:c0:dd:7c:b4:50:fe:ac:69:40:cb:
a0:b5:02:b6:d3:01:18:ac:d3:29:5b:d4:ee:69:79:81:54:56:
13:ba:ad:f1:0a:04:d9:5b:c1:1f:21:31:c1:ce:dd:96:f3:6a:
52:04:e6:38:4e:e9:68:2c:6a:a5:fa:a8:68:88:c3:b5:6b:d3:
30:f6:81:e3:7c:3f:e9:3a:f2:08:78:6a:97:dc:6a:60:f0:b3:
1a:82:76:df:96:7c:18:f3:18:b3:95:7e:11:9c:c9:4e:7d:8d:
06:f9:73:c2:43:85:aa:e9:9c:93:72:72:62:78:65:1f:a7:aa:
b6:29:a1:ea:6f:81:63:7f:6e:13:f4:89:5e:e4:c0:19:cf:b9:
45:41:d6:a4:53:4e:98:53:41:ab:ee:cb:a0:96:ca:07:2e:9e:
09:43:a1:19:08:61:a3:4d:6e:13:6c:a1:09:23:6f:7c:c6:4f:
fb:7c:bb:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:29:46 2026 by rpki-client