Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
File: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft (raw, json)
Hash identifier: uHtqUUiCVZGAsFNLet9McBx+TkL1l/wQ8B1JRZo1Vc8=
Subject key identifier: DF:36:56:CC:0D:EB:C3:DE:05:87:63:F4:11:44:7C:5A:78:12:2B:EE
Authority key identifier: D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
Certificate issuer: /CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Certificate serial: 019D25837BAFC6820D1B61BA348B53AFEF13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
Manifest number: 15CA
Signing time: Wed 25 Mar 2026 15:01:06 +0000
Manifest this update: Wed 25 Mar 2026 15:01:06 +0000
Manifest next update: Thu 26 Mar 2026 15:01:06 +0000
Files and hashes: 1: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl (hash: gUrEGdx42hEUUmPg10o7VIUVVdR46oorGxviBZVHKWk=)
2: t0X5t_3y1eMrgSVfnROrir2IJb4.roa (hash: BPcyM2IeAIooAh+FVKFVf4qaLxjgFOkdsiFt2kQ2Eag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:7b:af:c6:82:0d:1b:61:ba:34:8b:53:af:ef:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Validity
Not Before: Mar 25 15:01:06 2026 GMT
Not After : Mar 26 15:01:06 2026 GMT
Subject: CN=df3656cc0debc3de058763f411447c5a78122bee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:89:8f:dc:1e:7e:6f:02:ef:46:c7:ba:50:70:
5d:dc:7a:c4:b2:b8:94:4f:46:d6:30:80:ee:eb:91:
68:7b:da:de:7c:1b:fc:5d:18:f7:88:b1:63:c3:63:
06:a2:f0:17:d1:b4:6f:f8:ef:9c:4b:c9:66:7b:87:
7d:85:5b:eb:cf:fd:74:b7:99:84:d4:f9:58:57:97:
29:41:70:08:ea:43:36:e8:81:fd:69:87:df:8e:d2:
2f:f0:f2:1d:38:da:fb:ae:ca:92:9f:89:50:3d:fe:
21:cd:d0:82:f3:db:71:f7:e7:df:3a:ba:61:df:cd:
fc:06:cf:dc:e2:6a:2f:8f:1f:51:c6:63:24:ee:52:
c8:09:15:20:65:a7:6f:21:8a:ed:c4:c4:ca:65:e6:
ff:50:05:e7:9f:3f:f1:14:33:cd:8a:72:51:19:93:
ab:f6:fa:b7:4a:74:f8:c4:d6:aa:10:fc:97:05:3d:
5e:15:90:b1:d1:8c:c7:fc:95:b2:0d:8d:e3:4e:56:
96:24:46:47:38:47:14:af:a2:fc:3f:73:b0:19:47:
b2:be:a3:d4:28:13:5a:6e:63:e6:e9:d7:3e:89:7c:
97:00:c5:1d:b7:63:1b:7c:88:a7:4c:04:48:69:b0:
03:44:57:67:55:49:39:cd:e2:67:95:64:59:55:ac:
47:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:36:56:CC:0D:EB:C3:DE:05:87:63:F4:11:44:7C:5A:78:12:2B:EE
X509v3 Authority Key Identifier:
keyid:D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:4b:f9:e2:2b:d7:29:8c:0e:60:e7:a5:53:92:7f:70:ff:7a:
68:da:a8:f1:96:15:2a:54:f4:b3:59:f9:11:ad:2f:c9:59:f2:
66:0c:64:51:11:4f:cc:aa:7e:d4:ba:33:69:af:4a:08:9c:4d:
c3:dc:46:8b:3c:3e:56:20:7b:03:38:79:ba:30:d8:51:0e:f5:
8c:7e:53:71:72:6b:27:f3:ad:c6:64:1e:38:5f:35:89:a3:09:
e0:c1:f3:47:22:fb:a1:51:35:e5:13:af:a7:83:da:54:31:7f:
25:3d:67:0f:6f:19:5f:6d:75:fa:80:9a:48:28:92:80:7b:15:
03:ce:4c:82:c1:07:08:95:7e:59:7e:5c:e6:aa:ee:c1:17:25:
66:02:5d:d7:a8:74:21:91:4c:61:96:14:a3:04:71:bf:69:f2:
12:56:b0:62:99:9c:0b:cd:8e:6f:ab:a9:f0:c7:43:f0:d3:79:
d9:13:2e:27:28:fb:7f:96:34:f1:27:dd:29:ed:f4:25:1d:18:
39:5e:f2:9f:63:99:55:b0:a0:67:66:33:3a:0b:71:41:65:4c:
15:61:6c:26:4f:ff:e2:02:c7:20:e2:d9:12:69:5d:eb:09:cf:
69:c6:a8:90:88:f4:ce:76:4d:9b:00:bc:a7:89:8e:bd:4f:40:
5e:6e:2d:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:10:42 2026 by rpki-client