Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json)
Hash identifier: AH6XnpEFpZFXcu/MKr2AYZpAsPt7q850b4qWUVtDaSE=
Subject key identifier: 41:93:36:56:48:7B:B8:17:7E:18:A3:57:9F:C7:36:81:A6:F1:8C:6C
Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8
Certificate serial: 019D28168E42D31B40B3C873D0704615FEF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 03:00:59 +0000
Manifest this update: Thu 26 Mar 2026 03:00:59 +0000
Manifest next update: Fri 27 Mar 2026 03:00:59 +0000
Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: HC7HhzsW/jz7VT7oU8uwRFzaqYhr2BhehFI3mDnFuAw=)
2: pQs3JKfMOeGGwz6xcK4hqR0QChk.roa (hash: +rzonnKLVZvpF/nb1uT59jY0FH0KqsDx047Wn251P8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:8e:42:d3:1b:40:b3:c8:73:d0:70:46:15:fe:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8
Validity
Not Before: Mar 26 03:00:59 2026 GMT
Not After : Mar 27 03:00:59 2026 GMT
Subject: CN=41933656487bb8177e18a3579fc73681a6f18c6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:34:d3:86:d3:00:25:5f:77:e1:92:86:c8:3e:
07:84:bf:61:67:27:5b:d2:10:31:77:d7:f3:b4:da:
9c:52:8c:d4:f7:4c:56:b0:e3:78:96:93:6d:42:68:
55:92:67:01:23:68:d9:83:51:ae:2a:71:3c:35:a4:
a6:41:65:c0:a3:e4:be:25:c2:f6:d8:a3:e9:0f:2c:
0c:3a:34:d9:fb:44:bf:cb:65:c1:73:40:f3:a3:34:
a9:0b:ea:66:9e:57:a1:1e:83:de:f1:89:6f:4d:de:
03:2c:29:01:5b:f6:88:dc:53:24:70:38:90:59:ce:
b9:8b:64:eb:75:5f:91:c9:42:cf:a3:2f:68:83:79:
d2:50:db:2a:c1:85:96:7c:f6:fd:20:36:33:fc:33:
07:14:8a:75:f1:62:d1:a8:c5:0f:cc:39:dc:99:d6:
21:bf:48:9b:e7:c6:09:5f:94:14:ff:52:bb:2b:fc:
8d:95:0f:99:d1:56:c6:4e:16:34:fe:77:ea:f4:fe:
4b:fe:14:67:8b:8d:a0:cf:1f:3c:6f:0e:3d:34:f5:
7e:42:a9:ee:fc:36:3e:0c:9e:95:28:98:4f:bb:15:
6c:54:33:00:05:2a:52:13:71:3f:e4:93:a5:b9:3d:
a1:ef:de:1f:52:60:17:d5:46:02:f4:13:e3:54:0d:
50:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:93:36:56:48:7B:B8:17:7E:18:A3:57:9F:C7:36:81:A6:F1:8C:6C
X509v3 Authority Key Identifier:
keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:b1:b0:c9:b2:99:7a:1c:ae:9f:f4:0a:e3:13:06:85:fe:77:
a3:04:1c:d3:13:be:9b:ba:28:a7:a3:8f:db:0d:ba:b4:4a:cd:
22:e8:cb:4d:b1:95:b8:e9:6f:7b:4a:ba:ab:1f:9d:20:d7:eb:
ee:f6:f3:fb:74:81:19:d8:71:5b:68:b5:13:33:07:0d:94:dd:
e0:5e:e1:9d:df:54:bf:08:92:21:e7:33:af:67:7a:c0:48:40:
04:7a:96:74:fd:94:dd:71:dd:e8:08:8a:fc:66:bd:df:24:51:
09:30:4f:56:14:2e:e0:5e:46:59:15:d6:9d:81:ae:81:fb:77:
f7:2e:9b:cd:ba:1e:6c:f9:4f:5a:3a:48:24:f7:b4:a9:be:25:
48:f2:ce:b5:10:59:78:9d:f7:5c:d1:cd:9d:fc:2a:0f:fc:e7:
71:e8:02:55:ea:01:54:b3:c5:31:86:1e:ce:ff:b6:25:f0:6c:
51:69:2a:9d:19:eb:a5:ba:f1:16:b5:84:e4:26:df:8e:4d:fc:
69:41:b2:61:e2:14:cc:c9:44:1c:64:5d:f8:56:d4:58:e4:5a:
08:ef:5e:99:60:55:35:6f:3c:bd:ec:8f:0a:07:9c:57:4a:3e:
51:79:81:be:93:e3:fa:7c:e1:ff:f7:52:33:a7:5f:ab:26:83:
fa:ff:2a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:55:16 2026 by rpki-client