Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
File: 0PFLigjLX4BX1IsD5T9Fi44f7tY.mft (raw, json)
Hash identifier: 4PpgpePh0F0w4/0GqcJD9XKNzDZouBAjErdV6XhupsM=
Subject key identifier: CE:A8:F0:01:8B:AA:11:E7:89:B2:7B:FB:8C:B0:F3:3D:A2:95:1D:BD
Authority key identifier: D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
Certificate issuer: /CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Certificate serial: 019D27A8E7146E565246DCCE938E1AB68024
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
Manifest number: 04D5
Signing time: Thu 26 Mar 2026 01:01:13 +0000
Manifest this update: Thu 26 Mar 2026 01:01:13 +0000
Manifest next update: Fri 27 Mar 2026 01:01:13 +0000
Files and hashes: 1: 0PFLigjLX4BX1IsD5T9Fi44f7tY.crl (hash: rsZbQziADwzWUqrMpWWNycHmm33pGV85aHWMSICZu1U=)
2: Yp5EzvNAptv0FF3dq0dG-qbNXDE.roa (hash: rEVjSa04WTwHqfNGkpfReSocSUSeb47hyl6D9pld43I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:e7:14:6e:56:52:46:dc:ce:93:8e:1a:b6:80:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Validity
Not Before: Mar 26 01:01:13 2026 GMT
Not After : Mar 27 01:01:13 2026 GMT
Subject: CN=cea8f0018baa11e789b27bfb8cb0f33da2951dbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:53:db:ea:df:38:ce:8e:4f:ab:03:e4:4b:90:
5e:98:bb:30:e7:00:b6:c9:ef:9d:0c:ba:42:06:fc:
9f:b0:56:e2:9d:ba:37:67:e2:c2:7c:3e:ac:51:d0:
a1:e7:4e:51:e9:38:d7:70:46:53:e1:cc:7c:46:0c:
0a:ce:03:9e:f2:fb:9d:44:4c:ec:6a:e2:1c:de:a2:
06:82:b2:43:8e:4e:15:2c:c0:e9:2f:76:40:ee:07:
07:dc:28:0d:e9:f1:6c:5b:6f:ed:b3:4e:72:84:47:
8c:d0:24:52:65:c1:c3:e7:9b:10:33:c3:1c:cc:b4:
d4:85:8d:47:d3:e6:1c:18:bf:f8:11:f4:b1:79:2b:
6b:3e:58:4f:91:0a:7b:5e:73:ef:83:d3:ab:b1:f7:
d9:0f:78:f6:8b:82:fb:cf:a3:9a:ed:84:33:0b:f7:
3c:97:c9:94:76:a6:e7:3a:d8:8d:9c:3f:5c:50:22:
d3:c2:bc:25:26:ed:5e:ef:4c:e3:16:43:2c:95:17:
09:d2:b0:c9:6d:2d:3b:38:f9:32:27:c5:d2:90:34:
41:4b:22:37:82:bf:ec:d1:6f:0b:a5:4b:a9:9e:e2:
4f:9f:e3:9d:e1:fe:8d:e4:0e:3e:4d:f7:a7:e1:b9:
a6:a2:db:f4:b2:9d:26:e4:45:f3:0a:9c:02:a5:37:
c3:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:A8:F0:01:8B:AA:11:E7:89:B2:7B:FB:8C:B0:F3:3D:A2:95:1D:BD
X509v3 Authority Key Identifier:
keyid:D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:74:9b:c6:b1:10:5f:ae:17:d5:25:e6:7a:dc:3e:be:26:8e:
10:b8:09:8d:a9:89:1d:dd:4e:72:ad:7a:ca:8b:04:55:8f:0c:
43:e2:83:1f:0a:b8:de:33:a0:1a:94:41:21:18:f1:45:88:60:
8d:55:8a:3e:e9:4f:ae:68:a3:11:d5:9a:bd:2a:21:a9:de:6c:
bb:84:c5:81:da:ed:db:72:79:c5:3f:10:a1:e7:f5:52:52:7e:
e0:53:b6:e1:81:d2:68:2a:05:90:7d:49:6f:d5:d6:1b:c9:f9:
bc:66:28:17:2a:e3:e3:5e:92:29:47:84:50:ef:ab:c8:62:cd:
92:1d:98:c8:b1:0b:68:6d:99:34:9c:86:6e:83:72:19:a7:b9:
0a:c4:b2:40:10:d3:12:fb:80:42:d7:5c:48:e0:74:79:57:50:
ef:79:f9:15:96:56:73:70:2f:58:f1:36:fb:0b:04:d6:94:4c:
d2:4b:d6:e1:9c:9c:3a:cf:1b:84:ab:b6:34:10:c8:a2:ba:5c:
d1:4b:91:33:b0:08:69:44:5a:e1:6c:9c:5b:a3:5d:e7:74:ef:
4f:01:66:34:97:33:dc:e0:52:a8:39:b0:d2:3d:c2:fd:da:51:
e3:88:a0:c3:75:54:1c:ff:39:47:e5:94:49:0f:85:a6:96:3d:
7d:3e:83:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:43:14 2026 by rpki-client