Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
File: 0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft (raw, json)
Hash identifier: 4O4/ZoeYA0kQqY6+b42viCF7/QKKoulAQtL1k2JMu80=
Subject key identifier: 3B:4B:C5:18:11:32:05:33:AA:40:8A:01:6C:09:22:3C:CF:7E:29:AB
Authority key identifier: D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0
Certificate issuer: /CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
Certificate serial: 019D29CED1556AF7308C112739E17D5E9BC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
Manifest number: 0E0A
Signing time: Thu 26 Mar 2026 11:01:53 +0000
Manifest this update: Thu 26 Mar 2026 11:01:53 +0000
Manifest next update: Fri 27 Mar 2026 11:01:53 +0000
Files and hashes: 1: 0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl (hash: LolylSgpq4U1v/+Qlj4VMQEVEORIU3e58Ajgd0rDA9c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:d1:55:6a:f7:30:8c:11:27:39:e1:7d:5e:9b:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
Validity
Not Before: Mar 26 11:01:53 2026 GMT
Not After : Mar 27 11:01:53 2026 GMT
Subject: CN=3b4bc51811320533aa408a016c09223ccf7e29ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f1:fd:8e:38:ac:7b:04:6b:a3:6a:a0:df:18:
c6:36:12:c1:7e:25:44:7b:a1:92:bd:71:9e:d6:15:
1b:5b:64:24:47:92:b3:ee:93:56:41:0e:eb:f2:85:
2c:e1:33:71:82:e9:30:db:af:74:27:15:9f:b0:16:
fb:45:e9:11:80:8b:35:92:29:2f:94:d8:39:ec:ce:
27:f1:d7:0e:5d:0e:23:68:32:07:ee:0e:6f:34:93:
ac:96:76:94:6d:0c:20:f1:b1:c8:6c:0d:b2:3e:2f:
49:43:50:5c:80:dc:5d:e6:cd:46:42:4f:e5:89:d2:
a1:75:b3:6a:53:a8:13:11:6b:8e:8b:46:46:af:8e:
bc:56:b5:cf:da:51:b0:fc:31:d8:96:83:cf:e8:05:
1c:ca:1b:57:f3:d5:14:24:e1:ac:44:5b:20:39:f6:
da:4f:dd:b5:26:65:15:ce:f5:89:f9:0f:f1:fe:82:
fa:4f:67:5c:32:ae:bb:34:a8:42:44:4c:7b:25:83:
a8:39:37:99:f2:0a:ba:90:c7:53:f9:0a:6e:dc:51:
3d:ab:50:52:b5:00:6b:4b:5a:12:9d:6e:38:b0:96:
49:25:10:97:2b:4a:ad:c4:54:5a:58:32:4d:f2:39:
ae:2c:37:32:b8:ca:eb:c9:8f:68:95:f6:b7:fc:ef:
49:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:4B:C5:18:11:32:05:33:AA:40:8A:01:6C:09:22:3C:CF:7E:29:AB
X509v3 Authority Key Identifier:
keyid:D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:91:38:cd:93:10:92:b4:97:78:dd:9b:27:85:da:d4:77:92:
b4:63:39:88:eb:79:2c:3a:20:01:a1:dd:97:43:b0:84:27:75:
57:30:ae:21:89:15:65:f7:76:41:74:82:3f:3a:9e:93:8c:b8:
3a:3a:18:5f:d2:51:f5:67:57:9c:65:f4:8a:57:82:ae:e1:be:
49:87:a5:64:5e:7a:62:f4:d5:2e:a9:94:09:7c:99:04:a4:dd:
10:5b:1b:4f:28:8d:5a:e1:ee:1c:50:cb:64:69:e9:b9:c5:15:
32:5b:4f:3d:70:a7:31:e6:2c:24:b9:db:3e:94:1a:8f:80:da:
1d:25:fb:69:28:05:2c:7f:58:98:e6:6f:74:fe:2c:3b:90:d3:
19:d2:08:04:b5:a3:71:8a:84:56:11:9a:f0:dc:97:a4:7b:17:
66:b3:fc:cf:2f:63:a4:2d:6c:40:40:ff:1e:8e:a5:b5:2f:aa:
55:ec:5d:37:7e:54:76:ac:73:bc:c1:87:08:55:25:e5:1f:6f:
71:15:c1:55:6f:bd:89:ab:ee:3d:39:10:1e:27:f1:aa:60:2f:
ea:39:f8:1f:d6:73:3d:d4:ea:68:87:4c:e7:67:d0:ab:cf:6e:
9c:73:8e:7d:6c:1a:3f:76:1b:60:11:7c:b7:ea:34:0f:11:da:
2f:1b:c4:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:54:00 2026 by rpki-client