Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.mft
File: 0mKOBpte2LRVk0O1tn9atPkiUf4.mft (raw, json)
Hash identifier: h3o9pDpMp8+fJGnD3tNCcUg4ZRXW/lQbtbZwWuBzwXM=
Subject key identifier: 4F:01:C9:8C:3F:C8:2A:61:A1:89:0D:84:3E:25:16:6C:BA:7A:F2:12
Authority key identifier: D2:62:8E:06:9B:5E:D8:B4:55:93:43:B5:B6:7F:5A:B4:F9:22:51:FE
Certificate issuer: /CN=d2628e069b5ed8b4559343b5b67f5ab4f92251fe
Certificate serial: 019D273B30B8BE6E972C54D6B02257A818BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mKOBpte2LRVk0O1tn9atPkiUf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.mft
Manifest number: 03D2
Signing time: Wed 25 Mar 2026 23:01:23 +0000
Manifest this update: Wed 25 Mar 2026 23:01:23 +0000
Manifest next update: Thu 26 Mar 2026 23:01:23 +0000
Files and hashes: 1: 0mKOBpte2LRVk0O1tn9atPkiUf4.crl (hash: J02GAw+/AHEAa/zD6TmpYgb/aO6hJao86pNQM20RKPY=)
2: eypU5gakI37ZRxsTjD1X4DoOVfo.roa (hash: hM1K52QM5/jrbLf53wcNduMHGRDz/fwXSTlOlM9cG8U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0mKOBpte2LRVk0O1tn9atPkiUf4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:30:b8:be:6e:97:2c:54:d6:b0:22:57:a8:18:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2628e069b5ed8b4559343b5b67f5ab4f92251fe
Validity
Not Before: Mar 25 23:01:23 2026 GMT
Not After : Mar 26 23:01:23 2026 GMT
Subject: CN=4f01c98c3fc82a61a1890d843e25166cba7af212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:dd:0a:7f:86:4c:49:1f:bb:dd:5f:ec:9b:7c:
1d:f2:35:99:66:1a:65:91:56:c3:70:ca:f1:07:a5:
0c:cf:7a:71:ce:5c:e7:09:df:a7:a4:12:33:23:91:
82:f9:36:e6:48:9e:d1:d1:e0:47:52:3b:41:82:60:
9b:1e:8a:93:c3:47:48:fe:1a:81:c4:d1:c0:b9:8d:
f8:0c:59:6b:a0:fe:a3:2d:54:2c:9f:00:43:73:4c:
72:34:6f:1a:86:91:25:29:cb:dd:7b:de:e1:3d:6d:
75:14:f7:eb:2b:36:db:78:33:d6:2b:34:e4:94:f9:
b8:05:c5:8e:45:62:0a:7a:d1:2c:1d:4e:8d:a4:fc:
b8:cf:f0:f1:09:ce:59:b1:3b:66:b2:2f:c8:cc:8f:
a2:d5:0f:38:cd:58:df:0c:f3:ec:31:51:63:f4:c9:
72:d9:e7:58:7d:40:2b:82:50:79:3b:cd:84:88:dc:
4c:4f:f5:69:d4:93:6a:21:74:2a:b1:73:09:8b:e6:
ca:c1:45:f2:1f:9b:c3:78:a8:e9:e2:0d:35:25:95:
a1:53:b9:4b:80:84:5d:78:b3:2b:34:20:b1:f5:63:
41:b4:93:40:6c:6d:64:5c:03:e0:a2:da:36:b8:bd:
01:bb:67:bb:fa:70:57:8f:cc:5c:b8:8f:39:5c:71:
9c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:01:C9:8C:3F:C8:2A:61:A1:89:0D:84:3E:25:16:6C:BA:7A:F2:12
X509v3 Authority Key Identifier:
keyid:D2:62:8E:06:9B:5E:D8:B4:55:93:43:B5:B6:7F:5A:B4:F9:22:51:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mKOBpte2LRVk0O1tn9atPkiUf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:63:d4:11:cc:f3:e8:7f:9c:6f:a7:0d:62:13:a5:58:20:d8:
ce:18:b5:50:07:df:9f:74:fe:12:a3:b4:eb:5b:41:d9:c3:7b:
0a:0b:a9:c4:af:b0:67:96:26:29:ff:db:80:60:e5:18:4c:bc:
05:8b:66:f9:1f:89:1f:cc:fe:f8:ef:1b:46:c7:a6:d9:16:2f:
01:f6:14:ff:78:91:c5:dc:37:c0:e8:88:ee:2b:37:49:c9:13:
df:c1:91:9f:af:65:69:d7:2e:f4:ce:dd:62:01:03:61:59:55:
9d:f2:b5:99:94:67:27:7b:38:e8:a4:1a:79:77:e7:1c:bd:34:
4c:a0:39:b1:32:ab:71:85:b5:28:d2:32:0d:c6:2b:78:66:00:
4c:24:ce:38:c1:95:70:b2:cc:67:76:83:14:59:3c:8b:7c:2d:
94:bc:f6:7f:8c:a0:2d:c0:22:53:b1:21:9c:56:47:6f:04:29:
62:52:de:c4:bf:de:c1:b0:7e:b7:07:10:ba:c7:94:ff:f9:d9:
dc:ac:1e:97:b6:52:72:be:c3:52:31:d0:e5:6d:eb:15:db:1a:
28:59:0e:b5:32:4c:17:5b:16:30:4d:0f:97:e5:a9:4e:c9:66:
8a:25:fe:02:98:30:c3:b4:92:5c:f0:97:74:8d:4f:d7:c9:8c:
71:f8:a2:6a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nOzC4vm6XLFTWsCJXqBi8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNjI4ZTA2OWI1ZWQ4YjQ1NTkzNDNiNWI2N2Y1YWI0Zjky
MjUxZmUwHhcNMjYwMzI1MjMwMTIzWhcNMjYwMzI2MjMwMTIzWjAzMTEwLwYDVQQD
Eyg0ZjAxYzk4YzNmYzgyYTYxYTE4OTBkODQzZTI1MTY2Y2JhN2FmMjEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzd0Kf4ZMSR+73V/sm3wd8jWZZhpl
kVbDcMrxB6UMz3pxzlznCd+npBIzI5GC+TbmSJ7R0eBHUjtBgmCbHoqTw0dI/hqB
xNHAuY34DFlroP6jLVQsnwBDc0xyNG8ahpElKcvde97hPW11FPfrKzbbeDPWKzTk
lPm4BcWORWIKetEsHU6NpPy4z/DxCc5ZsTtmsi/IzI+i1Q84zVjfDPPsMVFj9Mly
2edYfUArglB5O82EiNxMT/Vp1JNqIXQqsXMJi+bKwUXyH5vDeKjp4g01JZWhU7lL
gIRdeLMrNCCx9WNBtJNAbG1kXAPgoto2uL0Bu2e7+nBXj8xcuI85XHGcEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE8ByYw/yCphoYkNhD4lFmy6evISMB8GA1UdIwQY
MBaAFNJijgabXti0VZNDtbZ/WrT5IlH+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMG1LT0JwdGUyTFJWazBPMXRuOWF0UGtpVWY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC8xZWI5N2EtODNiZC00NDQ4LWIwOWUt
YWY2NGE1N2FjOGQyLzEvMG1LT0JwdGUyTFJWazBPMXRuOWF0UGtpVWY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC8xZWI5N2EtODNiZC00NDQ4LWIwOWUtYWY2NGE1N2FjOGQy
LzEvMG1LT0JwdGUyTFJWazBPMXRuOWF0UGtpVWY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjmPUEczz
6H+cb6cNYhOlWCDYzhi1UAffn3T+EqO061tB2cN7CgupxK+wZ5YmKf/bgGDlGEy8
BYtm+R+JH8z++O8bRsem2RYvAfYU/3iRxdw3wOiI7is3SckT38GRn69ladcu9M7d
YgEDYVlVnfK1mZRnJ3s46KQaeXfnHL00TKA5sTKrcYW1KNIyDcYreGYATCTOOMGV
cLLMZ3aDFFk8i3wtlLz2f4ygLcAiU7EhnFZHbwQpYlLexL/ewbB+twcQuseU//nZ
3Kwel7ZScr7DUjHQ5W3rFdsaKFkOtTJMF1sWME0Pl+WpTslmiiX+Apgww7SSXPCX
dI1P18mMcfiiag==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:24:05 2026 by rpki-client