Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
File: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft (raw, json)
Hash identifier: nGmplF1t1mPxW493Mu3G31HgczoJ5XPuDCyOzgJJ81E=
Subject key identifier: 1D:8A:43:1B:32:99:CD:C8:BD:AE:1B:C1:03:5D:BC:8F:B7:A8:88:D6
Authority key identifier: D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
Certificate issuer: /CN=d248185956e443b55b062200f964537bc10bc130
Certificate serial: 019D25BA37DB27E63A6D74BFCC49E556DBD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
Manifest number: 04F5
Signing time: Wed 25 Mar 2026 16:00:54 +0000
Manifest this update: Wed 25 Mar 2026 16:00:54 +0000
Manifest next update: Thu 26 Mar 2026 16:00:54 +0000
Files and hashes: 1: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl (hash: lRJWYJZyk1NpGTgMyqPg24vt4ly9JF1tLVDeh3rMMsQ=)
2: Xudz0hLe8s3SLmiPVONXMND3hRM.roa (hash: oORSmt43XgnSynXZgH2ISuQJ8Cm/DBrmnJwy75rrXHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:37:db:27:e6:3a:6d:74:bf:cc:49:e5:56:db:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d248185956e443b55b062200f964537bc10bc130
Validity
Not Before: Mar 25 16:00:54 2026 GMT
Not After : Mar 26 16:00:54 2026 GMT
Subject: CN=1d8a431b3299cdc8bdae1bc1035dbc8fb7a888d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:31:29:cb:5c:5a:1b:ad:52:23:2e:ae:d0:93:
2e:26:2a:e9:b7:de:c9:3d:0a:1c:05:47:1d:cb:2a:
59:f5:96:1f:d1:98:4b:a1:0c:86:94:c7:f5:3b:e0:
2b:07:a8:65:4a:c1:21:4e:58:cd:fb:be:2f:86:c4:
5b:c1:c8:c7:5c:0f:b9:2f:ce:54:a0:1d:65:23:b9:
5b:36:23:f7:ae:ea:f1:ba:50:ba:a8:0b:7c:f5:b7:
78:2f:d0:03:7a:3f:33:4b:b5:4d:ce:0e:f2:8e:05:
e4:8a:ac:e6:88:07:12:2f:4e:70:a4:a3:b8:89:ac:
ac:42:e8:b5:46:fa:a0:ae:2d:e4:a7:c5:1f:71:9b:
22:a7:27:56:b6:e5:9d:73:2d:c6:ed:57:bb:fa:e4:
cf:a2:e0:24:1b:c4:7a:d0:40:10:fa:9c:df:b0:14:
53:dc:e3:d6:2f:e9:1b:24:37:25:08:7b:28:69:3a:
c1:31:a1:7b:93:b0:fd:a1:69:3a:b4:8a:be:2d:ae:
81:31:ae:ea:7a:38:6f:a4:c3:0e:a2:f2:32:63:d9:
00:17:c6:29:af:99:d5:de:84:56:51:b3:25:da:04:
c3:20:e8:95:34:61:65:a3:4b:98:f4:db:d6:fe:27:
9b:ca:94:90:66:ba:29:f1:23:7f:d2:69:9a:13:e8:
7b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:8A:43:1B:32:99:CD:C8:BD:AE:1B:C1:03:5D:BC:8F:B7:A8:88:D6
X509v3 Authority Key Identifier:
keyid:D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:0e:85:8b:42:87:2d:0d:7e:63:de:08:8c:23:a6:18:e7:13:
93:26:ba:b8:58:de:2a:04:12:25:44:e4:1b:81:48:38:b2:b1:
a9:94:14:df:f1:6c:70:1d:c1:75:d4:76:46:7d:4d:10:c9:dc:
3f:73:db:6d:ae:dc:43:3e:df:a3:e0:9e:97:41:ee:bc:86:bd:
0c:23:14:a9:36:7e:5c:82:76:bc:09:0a:33:46:1c:b9:6f:36:
c5:88:df:12:28:81:cb:64:d3:7a:f4:f5:af:4a:97:87:0c:c4:
5a:0f:b0:a9:c5:de:f7:72:67:31:30:ad:ea:cc:15:8d:5d:f8:
ad:bc:40:49:07:8e:fb:b1:90:a0:9e:ea:c4:60:dc:41:75:0d:
0d:77:13:1c:de:9a:16:8d:c5:b6:d1:05:71:1b:b9:a4:f1:db:
8a:23:9d:7d:fc:2c:69:7e:93:03:d1:36:9a:6e:35:c6:e1:39:
d6:60:96:0d:b1:4d:71:ad:86:ad:86:33:d7:dc:28:a6:41:a2:
05:6a:41:d8:c4:58:ae:12:60:bc:f1:5d:4f:9d:52:fe:d4:ad:
20:3d:d0:e8:6a:79:cd:e6:b5:4f:80:1e:a3:c8:30:67:9c:ad:
9f:66:20:48:ff:6b:a3:a8:24:91:2b:0c:c3:ba:b1:31:65:b8:
3b:58:e6:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:27 2026 by rpki-client