Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json)
Hash identifier: mVCuJPGcA/u18Cy7isLq+ACeVW0Ce4rzb+zCvfOR/jQ=
Subject key identifier: 9A:82:95:62:52:F4:32:02:45:F9:BB:F4:D6:AA:AB:4C:CA:34:9E:43
Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8
Certificate serial: 019E1D5911799305EEB3CE34A742610C91F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
Manifest number: 1907
Signing time: Tue 12 May 2026 18:00:36 +0000
Manifest this update: Tue 12 May 2026 18:00:36 +0000
Manifest next update: Wed 13 May 2026 18:00:36 +0000
Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: Q4vHtLj0lt51WROUJG+V+KedIXWyMWF4gyuj/YiRviY=)
2: pQs3JKfMOeGGwz6xcK4hqR0QChk.roa (hash: +rzonnKLVZvpF/nb1uT59jY0FH0KqsDx047Wn251P8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:11:79:93:05:ee:b3:ce:34:a7:42:61:0c:91:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8
Validity
Not Before: May 12 18:00:36 2026 GMT
Not After : May 13 18:00:36 2026 GMT
Subject: CN=9a82956252f4320245f9bbf4d6aaab4cca349e43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6d:5f:54:aa:a9:01:6e:0b:e3:8c:cd:b0:78:
e5:6e:f1:5d:eb:7c:ba:ab:7b:d6:23:72:40:fa:7d:
ff:76:7d:65:b0:63:ab:e6:0e:fd:8a:e9:05:6c:a4:
16:c5:c7:63:d3:f4:75:ae:63:78:d3:b5:71:bb:99:
e2:00:82:a5:7a:f4:5f:32:cc:04:be:62:82:d8:cc:
7b:79:f4:0c:ed:b5:e7:3d:38:da:7e:26:3d:24:d9:
53:cd:67:2a:1f:94:d0:0e:0b:cc:01:1b:c3:e8:9c:
1f:5c:a1:7f:eb:5d:6c:85:44:28:f3:fd:c3:d6:11:
38:a1:e5:cd:36:ce:65:e5:28:c2:e2:2c:5c:e0:ff:
0a:8e:8b:25:3a:a8:0c:cd:81:40:5a:25:b5:be:ce:
32:6f:36:c7:7c:ac:9e:bd:03:e7:fe:b2:03:f9:1d:
f7:2c:9d:cb:de:bf:25:f3:d2:2f:9e:b4:b6:b6:d5:
32:6b:e8:e9:24:7d:00:4f:ec:08:10:62:98:7a:e1:
cc:ae:22:68:d3:58:d5:60:71:89:33:7a:7e:3b:95:
f4:4b:7f:18:4e:49:ae:0b:2e:33:56:dd:cd:3d:40:
68:94:40:b5:95:a9:36:96:79:36:bb:35:78:5f:52:
b5:a0:ba:90:09:fc:41:80:fa:4c:2f:b1:be:82:5e:
3e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:82:95:62:52:F4:32:02:45:F9:BB:F4:D6:AA:AB:4C:CA:34:9E:43
X509v3 Authority Key Identifier:
keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:91:a3:75:d0:b7:00:43:a7:eb:e1:8f:ed:d6:99:68:fe:57:
18:1e:76:ea:35:38:5f:23:43:81:92:2c:2d:f7:43:f7:da:99:
93:5e:c7:16:5a:15:67:ca:4f:8a:69:8a:8a:60:99:66:a8:15:
f9:1f:62:01:66:ed:09:a3:e6:d7:38:67:c2:90:ae:74:5d:03:
5b:ad:27:27:28:b8:46:95:ed:43:54:c6:98:f2:0e:26:63:d0:
09:36:0a:61:46:4e:59:31:83:da:a7:cf:05:29:74:a2:b1:4a:
4e:56:83:a5:23:6b:b9:93:d0:c2:4b:7e:f7:2c:4d:55:a7:21:
c3:c0:db:af:d6:f1:90:33:71:16:fa:22:ce:5b:4a:24:49:88:
83:26:f2:cf:c9:d7:68:8f:44:00:c3:ce:0a:dd:2d:da:a1:46:
d1:7b:e7:b3:10:f0:ab:73:70:72:ef:a7:23:21:9b:2c:18:59:
ad:da:bc:8a:ef:14:12:02:32:5f:79:4b:7a:bb:93:17:9c:2e:
58:f4:41:b7:33:48:7a:7d:62:b0:75:7a:60:99:2d:12:a6:3b:
90:48:a3:57:bc:a1:1f:3f:37:b2:c0:4f:21:20:f4:9f:37:51:
7c:d6:4b:74:c8:52:0c:95:ed:88:35:6d:82:58:db:a5:18:e6:
6e:28:44:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:17:58 2026 by rpki-client