Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
File: 0tiRsOMo58hWrUt6B2TYLYVgltY.mft (raw, json)
Hash identifier: HDXEoB5HR5fj8TE8fNns8PFsq1TJnicyr+oeWgxwifA=
Subject key identifier: AD:99:0C:B1:A1:A7:E6:90:58:59:FC:F9:63:52:F7:9A:37:C0:01:8A
Authority key identifier: D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
Certificate issuer: /CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Certificate serial: 019D265ED53DA66BCACE8F823B26DFB4834E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
Manifest number: 04D9
Signing time: Wed 25 Mar 2026 19:00:42 +0000
Manifest this update: Wed 25 Mar 2026 19:00:42 +0000
Manifest next update: Thu 26 Mar 2026 19:00:42 +0000
Files and hashes: 1: 0tiRsOMo58hWrUt6B2TYLYVgltY.crl (hash: cpXCVNjYdM8zkkAzKV+uBufh2gOO6+Up3bXAe2GN9lM=)
2: UCdWTcnF4ZVDrSnBvN43rU1Zk3A.roa (hash: Qw45xlTVvhAH55/GToKQCdfRTF8PLXCZ9h0uBYEUVtM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5e:d5:3d:a6:6b:ca:ce:8f:82:3b:26:df:b4:83:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Validity
Not Before: Mar 25 19:00:42 2026 GMT
Not After : Mar 26 19:00:42 2026 GMT
Subject: CN=ad990cb1a1a7e6905859fcf96352f79a37c0018a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:38:57:87:fc:ab:d3:0f:5c:90:c9:5b:28:2d:
96:fd:15:73:63:ce:5b:95:ad:cb:9a:f2:17:7e:fa:
d2:a9:07:6d:87:e4:60:39:22:0c:93:99:71:cd:3e:
fc:fd:f6:12:32:4a:72:6a:e8:88:12:9b:9c:ea:b4:
93:18:3d:d7:00:0f:c7:07:e9:c4:2a:67:0a:c6:a1:
bd:c8:57:e6:af:a6:62:39:29:2d:dc:08:01:05:ba:
6c:8c:bc:49:4d:83:c7:6c:af:4c:a9:92:2c:cf:06:
ed:a4:0f:6a:e0:7d:d0:1f:b9:9c:b0:37:3e:b4:a7:
00:64:9f:16:9e:0c:55:44:42:49:39:94:23:5a:64:
70:e1:6d:80:bd:a1:b6:95:46:ce:3b:2d:de:5c:cb:
33:4f:8b:98:38:8f:e1:f6:9c:22:a7:d0:e1:31:fd:
2a:b3:91:af:7a:84:4d:94:94:82:7e:ff:d4:bc:41:
a4:ef:44:fc:8a:4f:f7:55:5b:6d:e0:18:54:2f:bf:
8e:43:72:9b:5f:bd:11:b0:b8:8c:c9:1e:ce:9b:fd:
07:af:2d:d6:01:df:b2:f7:e4:5c:cd:9c:99:1b:32:
a8:d4:58:ee:74:c0:a7:0c:ba:84:69:b0:63:c9:62:
2c:be:31:1c:53:9d:7a:b1:a0:34:1b:b0:75:d0:a6:
93:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:99:0C:B1:A1:A7:E6:90:58:59:FC:F9:63:52:F7:9A:37:C0:01:8A
X509v3 Authority Key Identifier:
keyid:D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:3e:23:08:50:81:2a:2b:54:0a:49:0e:65:05:97:46:89:df:
c5:e9:55:66:5e:a9:aa:58:bf:cd:0e:86:8f:cc:15:cf:7f:bf:
2b:5c:39:d7:07:5d:d2:6a:c9:ac:98:46:5b:da:d7:44:b0:ae:
f0:65:94:b2:84:2a:fb:62:bc:70:32:c8:df:3e:f4:74:76:5e:
d7:54:ef:6e:5c:ac:f6:06:09:89:17:41:1f:4a:cf:22:a0:58:
ac:56:0d:32:9a:3e:d7:db:e6:5a:ac:d1:26:9a:e7:4f:a5:9a:
86:0d:f6:01:ab:41:c1:d8:b7:d0:4e:db:73:18:da:2c:35:cd:
56:2f:de:a7:b3:80:20:77:9f:90:83:6d:10:1d:f0:3f:b0:c2:
90:39:83:f9:aa:dc:af:ec:88:15:ff:25:fb:85:c0:30:df:74:
02:49:80:f5:e2:dd:77:68:33:e1:82:13:51:91:b9:58:d0:be:
33:8a:d6:a9:f1:f8:08:1d:22:e8:42:ac:78:f1:36:13:05:ef:
ad:2c:c0:69:7d:44:99:74:f6:8b:ed:3c:8d:7a:56:af:47:7e:
f2:7f:b8:bc:a3:71:28:a0:eb:60:2c:ea:07:50:96:78:05:ab:
ab:2f:11:b6:d5:4e:f0:1c:0a:c9:40:f0:bf:3f:2e:a8:87:2d:
2f:86:35:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:19:41 2026 by rpki-client