Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
File: tD1On-OlSH0g8QABkWKRUPYo86E.mft (raw, json)
Hash identifier: DzC76pFOEAB0GSCWDeF/YMSS/fEPktfsy0Oao2fgNi4=
Subject key identifier: ED:F0:75:22:D5:BC:50:D0:3D:2D:F3:CF:B2:32:14:3A:BF:CE:E5:59
Authority key identifier: B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
Certificate issuer: /CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Certificate serial: 019D25F1FFA89B691216BBC79A31760E1404
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
Manifest number: 0D57
Signing time: Wed 25 Mar 2026 17:01:49 +0000
Manifest this update: Wed 25 Mar 2026 17:01:49 +0000
Manifest next update: Thu 26 Mar 2026 17:01:49 +0000
Files and hashes: 1: KwW1m_TU_lvvFLbiPGoG7omszF0.roa (hash: WLXCnKipjggD7aV7lsVpIwB0+MMzwHxcfHMGEgytPNc=)
2: tD1On-OlSH0g8QABkWKRUPYo86E.crl (hash: QvCdqwrB3elzULiWHMS8E7YLv/Xb68tnfHMQJhqHh6g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:ff:a8:9b:69:12:16:bb:c7:9a:31:76:0e:14:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Validity
Not Before: Mar 25 17:01:49 2026 GMT
Not After : Mar 26 17:01:49 2026 GMT
Subject: CN=edf07522d5bc50d03d2df3cfb232143abfcee559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:62:e2:66:55:c3:ab:a0:6e:ba:e1:b3:df:c9:
0f:83:40:d6:7f:6c:51:a4:ec:f5:07:d7:9e:79:fd:
c1:ad:8d:08:a3:c5:24:d4:f6:69:b5:ff:7b:73:95:
89:4b:45:ca:4a:fb:8c:6f:e9:4d:05:e4:9b:ed:41:
80:49:89:6e:6b:4a:06:1e:1d:4a:9f:f9:18:89:ec:
0a:d1:4d:86:c8:b5:3d:2b:21:91:03:2d:d3:f5:11:
3e:ad:d2:ea:0a:67:cd:2b:67:b8:3f:f6:e4:5c:5f:
ba:5f:0d:7d:c0:9e:89:1d:e4:c1:aa:51:71:21:c2:
d2:7f:d3:69:dd:fd:41:af:c6:60:41:de:b1:25:53:
3b:34:c7:89:8b:4a:cf:af:4a:76:4d:fb:79:f3:d5:
79:f4:35:cb:a0:ca:6f:e8:b1:6f:ab:9f:41:d9:20:
28:66:f8:e1:62:50:a6:c9:40:36:42:9e:5f:28:c4:
c1:24:dd:6e:bf:1c:9b:8d:14:7b:9d:84:11:aa:94:
2e:01:0b:16:1a:68:5c:3e:4e:28:9d:26:e4:37:41:
0e:47:e0:87:2b:27:b7:f0:a4:55:a0:c2:40:f1:03:
7a:43:ef:49:78:9a:de:8d:f0:01:fb:64:b1:32:7c:
61:46:ce:71:25:56:fa:97:b3:18:30:b6:aa:56:a6:
8d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:F0:75:22:D5:BC:50:D0:3D:2D:F3:CF:B2:32:14:3A:BF:CE:E5:59
X509v3 Authority Key Identifier:
keyid:B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:2a:a6:2b:8a:ad:1b:53:06:de:89:cf:41:2f:b6:dc:4c:a9:
60:3e:d9:8a:e2:87:02:5e:03:e5:e1:00:78:07:7a:8b:b8:fd:
aa:a4:7e:63:6e:05:6e:45:24:d1:9f:5f:4b:da:19:96:77:0a:
6c:ef:c5:ce:94:3a:77:5d:49:f7:3c:5e:96:4c:99:94:13:19:
93:48:21:41:14:bd:4a:b2:50:1f:36:c2:5a:b9:c2:bc:bb:81:
23:89:cf:e8:a7:ec:d1:d5:b9:73:4c:fa:a3:12:76:c6:76:af:
e4:c8:f3:88:06:f8:6c:4b:2d:98:f2:17:2f:5c:cb:27:3e:aa:
3b:00:70:64:ee:f7:b5:92:fd:3d:34:84:29:e9:db:53:ec:81:
58:1b:a5:09:3d:a3:cb:03:10:96:5d:62:3e:9d:6b:b0:de:ad:
77:7c:df:91:f6:aa:e4:18:56:57:57:91:4e:9a:fb:86:64:c3:
d1:18:23:4e:7e:4f:70:73:10:0e:8d:ac:9d:87:fa:76:b8:7c:
b2:5f:ba:d9:6b:17:d4:ef:8e:01:11:40:e0:af:95:88:80:00:
f6:3f:d8:67:ea:90:44:fd:76:ef:a3:f7:99:33:a3:14:f9:4a:
98:25:d1:5a:39:b6:56:7a:80:58:6b:77:a1:97:cf:69:84:51:
f4:13:1f:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0l8f+om2kSFrvHmjF2DhQEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0M2Q0ZTlmZTNhNTQ4N2QyMGYxMDAwMTkxNjI5MTUwZjYy
OGYzYTEwHhcNMjYwMzI1MTcwMTQ5WhcNMjYwMzI2MTcwMTQ5WjAzMTEwLwYDVQQD
EyhlZGYwNzUyMmQ1YmM1MGQwM2QyZGYzY2ZiMjMyMTQzYWJmY2VlNTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmLiZlXDq6BuuuGz38kPg0DWf2xR
pOz1B9eeef3BrY0Io8Uk1PZptf97c5WJS0XKSvuMb+lNBeSb7UGASYlua0oGHh1K
n/kYiewK0U2GyLU9KyGRAy3T9RE+rdLqCmfNK2e4P/bkXF+6Xw19wJ6JHeTBqlFx
IcLSf9Np3f1Br8ZgQd6xJVM7NMeJi0rPr0p2Tft589V59DXLoMpv6LFvq59B2SAo
ZvjhYlCmyUA2Qp5fKMTBJN1uvxybjRR7nYQRqpQuAQsWGmhcPk4onSbkN0EOR+CH
Kye38KRVoMJA8QN6Q+9JeJrejfAB+2SxMnxhRs5xJVb6l7MYMLaqVqaNrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO3wdSLVvFDQPS3zz7IyFDq/zuVZMB8GA1UdIwQY
MBaAFLQ9Tp/jpUh9IPEAAZFikVD2KPOhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8xOGQwMzUtMzQ5NC00YWI3LWE1Y2It
OWY3ODhmZDI3NTIwLzEvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi8xOGQwMzUtMzQ5NC00YWI3LWE1Y2ItOWY3ODhmZDI3NTIw
LzEvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASCqmK4qt
G1MG3onPQS+23EypYD7ZiuKHAl4D5eEAeAd6i7j9qqR+Y24FbkUk0Z9fS9oZlncK
bO/FzpQ6d11J9zxelkyZlBMZk0ghQRS9SrJQHzbCWrnCvLuBI4nP6Kfs0dW5c0z6
oxJ2xnav5MjziAb4bEstmPIXL1zLJz6qOwBwZO73tZL9PTSEKenbU+yBWBulCT2j
ywMQll1iPp1rsN6td3zfkfaq5BhWV1eRTpr7hmTD0RgjTn5PcHMQDo2snYf6drh8
sl+62WsX1O+OARFA4K+ViIAA9j/YZ+qQRP1276P3mTOjFPlKmCXRWjm2VnqAWGt3
oZfPaYRR9BMfKA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:11:30 2026 by rpki-client