Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.mft
File: 0BqOdIpGO0lQg_dHaROSBdyzObY.mft (raw, json)
Hash identifier: n6vj35dPpMwg3cnvMOK/33d5N03ayV1GXT2UOJZ17LE=
Subject key identifier: 64:00:23:D9:5F:A7:54:85:8E:AE:EF:37:A3:73:EA:FE:22:D6:6E:3E
Authority key identifier: D0:1A:8E:74:8A:46:3B:49:50:83:F7:47:69:13:92:05:DC:B3:39:B6
Certificate issuer: /CN=d01a8e748a463b495083f74769139205dcb339b6
Certificate serial: 019D269647BDE4291FBB8185BAFC8141B737
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BqOdIpGO0lQg_dHaROSBdyzObY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.mft
Manifest number: 01C9
Signing time: Wed 25 Mar 2026 20:01:15 +0000
Manifest this update: Wed 25 Mar 2026 20:01:15 +0000
Manifest next update: Thu 26 Mar 2026 20:01:15 +0000
Files and hashes: 1: 0BqOdIpGO0lQg_dHaROSBdyzObY.crl (hash: k+LEGcu+dPm20/hVteL1C52kBgubCOrTNBPoyKwCkkM=)
2: 6e-FSaOiG0YmwQSP4zvNYIFuJkA.roa (hash: qxfS3larGXzhjEtCwiGdAe2kL2Cq8myApjZz1l7cLRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0BqOdIpGO0lQg_dHaROSBdyzObY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:47:bd:e4:29:1f:bb:81:85:ba:fc:81:41:b7:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d01a8e748a463b495083f74769139205dcb339b6
Validity
Not Before: Mar 25 20:01:15 2026 GMT
Not After : Mar 26 20:01:15 2026 GMT
Subject: CN=640023d95fa754858eaeef37a373eafe22d66e3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fd:05:42:35:cb:69:a4:17:24:f6:a1:dc:6e:
61:88:b8:1f:30:45:4f:d3:94:20:c1:11:64:f6:6b:
dd:66:44:b9:86:18:35:1b:0a:9c:5a:5e:46:e3:26:
fa:0f:ad:9e:3d:26:8f:df:42:24:7b:70:db:e5:cc:
06:15:1e:92:aa:91:06:37:8f:5d:64:9a:06:6d:aa:
69:5b:73:b8:63:ab:5a:ba:68:92:b1:51:6a:43:08:
2d:1b:42:8e:f5:e5:3b:1c:7d:4e:2b:54:1a:99:3e:
54:d6:19:4a:ec:0a:e8:c0:70:1f:2d:f6:00:b0:97:
38:df:1a:5e:2c:38:b0:c3:8c:80:5a:c0:7c:b9:f2:
33:3f:97:31:59:90:01:8a:95:74:9c:24:9f:69:72:
1f:fa:71:32:5c:7a:a5:0a:7e:bb:23:da:f2:53:13:
e3:e4:bc:5c:ba:37:a7:6a:76:d1:c7:83:cb:33:cb:
df:8f:fd:44:f7:b1:65:6d:05:5d:79:22:9d:b5:fc:
3d:d0:fa:4a:c2:06:eb:fa:b7:12:7f:54:27:16:5b:
6f:1b:86:d5:a8:fe:95:1e:8a:2c:b0:e9:8d:b3:91:
cc:bf:eb:24:82:a1:55:c4:fd:38:cb:46:3a:57:d2:
b4:6b:f0:45:14:b0:4f:e2:35:c9:79:52:9d:39:b4:
18:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:00:23:D9:5F:A7:54:85:8E:AE:EF:37:A3:73:EA:FE:22:D6:6E:3E
X509v3 Authority Key Identifier:
keyid:D0:1A:8E:74:8A:46:3B:49:50:83:F7:47:69:13:92:05:DC:B3:39:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BqOdIpGO0lQg_dHaROSBdyzObY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:05:40:12:06:93:6b:5e:a4:de:86:78:78:8f:24:d0:35:c0:
44:83:15:87:d0:5a:ac:21:87:ff:f8:e9:44:f1:d0:34:45:0a:
bc:e5:ba:ca:a0:60:83:06:8a:e1:32:b9:6f:3f:37:d4:54:cb:
62:19:1b:26:6d:34:d9:90:68:37:1d:7e:7c:56:5e:75:29:01:
98:8a:79:be:d4:ed:e5:7d:ac:24:8b:29:37:5e:6c:d7:88:bb:
23:11:ef:11:d4:d2:59:cc:85:a0:2c:fd:a2:30:fc:65:a6:9a:
7c:99:2c:27:84:86:1b:d9:1e:22:5e:86:f9:b7:60:58:28:32:
2f:b7:9b:f0:18:ad:62:11:d9:65:46:bd:6e:6d:a6:b7:bb:fc:
c2:51:5e:a5:90:3c:40:45:3d:5c:92:a0:98:a1:0d:86:14:ee:
98:56:ee:ab:0d:6a:59:a6:95:44:68:10:1e:c1:bc:3e:f4:68:
99:d8:ca:e1:b9:65:00:52:cd:5a:cf:9b:37:bc:4d:ee:b2:48:
7b:e2:3a:66:72:29:f0:92:a3:3a:f7:22:aa:5f:16:ee:3e:e3:
a7:8d:13:e4:f5:24:1e:3f:4b:4e:e6:a6:80:e1:41:a5:c2:4f:
66:9b:ca:ca:6b:db:70:99:94:d5:b6:23:df:d1:16:f6:23:0a:
cc:42:36:b9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mlke95Ckfu4GFuvyBQbc3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwMWE4ZTc0OGE0NjNiNDk1MDgzZjc0NzY5MTM5MjA1ZGNi
MzM5YjYwHhcNMjYwMzI1MjAwMTE1WhcNMjYwMzI2MjAwMTE1WjAzMTEwLwYDVQQD
Eyg2NDAwMjNkOTVmYTc1NDg1OGVhZWVmMzdhMzczZWFmZTIyZDY2ZTNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqv0FQjXLaaQXJPah3G5hiLgfMEVP
05QgwRFk9mvdZkS5hhg1GwqcWl5G4yb6D62ePSaP30Ike3Db5cwGFR6SqpEGN49d
ZJoGbappW3O4Y6taumiSsVFqQwgtG0KO9eU7HH1OK1QamT5U1hlK7ArowHAfLfYA
sJc43xpeLDiww4yAWsB8ufIzP5cxWZABipV0nCSfaXIf+nEyXHqlCn67I9ryUxPj
5LxcujenanbRx4PLM8vfj/1E97FlbQVdeSKdtfw90PpKwgbr+rcSf1QnFltvG4bV
qP6VHoossOmNs5HMv+skgqFVxP04y0Y6V9K0a/BFFLBP4jXJeVKdObQYkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGQAI9lfp1SFjq7vN6Nz6v4i1m4+MB8GA1UdIwQY
MBaAFNAajnSKRjtJUIP3R2kTkgXcszm2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEJxT2RJcEdPMGxRZ19kSGFST1NCZHl6T2JZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83ZmZiYTYtMjQ4OS00MDcyLTgyOTgt
ZmUxYzg1NjcyOTdiLzEvMEJxT2RJcEdPMGxRZ19kSGFST1NCZHl6T2JZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC83ZmZiYTYtMjQ4OS00MDcyLTgyOTgtZmUxYzg1NjcyOTdi
LzEvMEJxT2RJcEdPMGxRZ19kSGFST1NCZHl6T2JZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATgVAEgaT
a16k3oZ4eI8k0DXARIMVh9BarCGH//jpRPHQNEUKvOW6yqBggwaK4TK5bz831FTL
YhkbJm002ZBoNx1+fFZedSkBmIp5vtTt5X2sJIspN15s14i7IxHvEdTSWcyFoCz9
ojD8ZaaafJksJ4SGG9keIl6G+bdgWCgyL7eb8BitYhHZZUa9bm2mt7v8wlFepZA8
QEU9XJKgmKENhhTumFbuqw1qWaaVRGgQHsG8PvRomdjK4bllAFLNWs+bN7xN7rJI
e+I6ZnIp8JKjOvciql8W7j7jp40T5PUkHj9LTuamgOFBpcJPZpvKymvbcJmU1bYj
39EW9iMKzEI2uQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 00:36:51 2026 by rpki-client