Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
File: D5otI3SqascUtfim7duA3GlnnMY.mft (raw, json)
Hash identifier: 6EXy/mx8bHs4MMwLVsWLRDfK2E5mwPYYi7TovAmdlpw=
Subject key identifier: C8:8D:D6:D5:A6:6E:13:C9:D8:A0:5A:8E:98:F6:26:5B:22:12:6E:F1
Authority key identifier: 0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
Certificate issuer: /CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Certificate serial: 019D2704C36FF7E9FCBF4F4D2CF50873B012
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
Manifest number: 0EEB
Signing time: Wed 25 Mar 2026 22:01:56 +0000
Manifest this update: Wed 25 Mar 2026 22:01:56 +0000
Manifest next update: Thu 26 Mar 2026 22:01:56 +0000
Files and hashes: 1: 8SEsdKMq767CnaRYG-1hJ5v6Hic.roa (hash: h/RdezdmLSdHmsoFs8q7JJ7Hnulds2LoEiNuAXGhUZg=)
2: D5otI3SqascUtfim7duA3GlnnMY.crl (hash: O4NqupWUy2uYAFzzoQUQra9k5I3XY0tfLlVDEy/FiOI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:c3:6f:f7:e9:fc:bf:4f:4d:2c:f5:08:73:b0:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Validity
Not Before: Mar 25 22:01:56 2026 GMT
Not After : Mar 26 22:01:56 2026 GMT
Subject: CN=c88dd6d5a66e13c9d8a05a8e98f6265b22126ef1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e6:74:4f:15:ea:e6:02:ab:67:ba:a6:42:f4:
61:33:4d:70:bb:b2:91:ca:e2:14:00:47:10:a6:84:
24:2a:65:47:6f:5f:22:49:91:77:b4:c4:4f:7f:f6:
5e:ef:2d:15:d0:ac:de:69:b1:bb:7d:a2:ed:55:ba:
87:c3:3b:9f:0e:5f:d8:dc:b6:14:38:49:cc:00:11:
7a:46:d0:b9:0e:fa:10:2a:0e:4a:4a:31:85:56:fb:
0b:94:af:4b:14:eb:0a:6b:0d:b4:d6:a6:2f:54:32:
22:8e:c0:26:ab:7a:2b:a0:b9:5e:21:01:0e:e6:73:
1f:6c:58:0c:d1:f1:ca:7a:01:0f:7c:fd:c9:77:ee:
df:ef:04:93:e5:7f:86:fc:f1:c9:08:d5:d2:79:80:
86:3d:70:18:34:b0:98:cf:f1:28:0b:19:ed:d8:3a:
6c:69:84:a5:d2:30:e7:73:98:63:7e:20:14:58:5b:
a8:ce:8c:e3:5b:1d:2b:b7:76:3f:49:1f:be:a0:ad:
4a:7a:b7:6b:97:ff:ad:1a:42:99:86:0a:f2:4b:b5:
e7:fd:40:e9:43:46:73:38:af:b8:c0:75:60:85:7c:
50:fa:ac:d5:18:01:0c:45:ad:39:13:28:ee:a3:28:
2d:1b:11:88:23:8a:77:81:8a:09:e9:98:5f:af:13:
c8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:8D:D6:D5:A6:6E:13:C9:D8:A0:5A:8E:98:F6:26:5B:22:12:6E:F1
X509v3 Authority Key Identifier:
keyid:0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:af:49:8b:2b:00:b0:4e:5c:12:f5:0b:84:01:e7:b4:e4:d4:
0e:89:75:46:61:de:c5:0a:c8:a1:01:55:26:73:f0:68:88:aa:
d6:ad:24:ba:4f:99:59:c1:10:9c:12:1b:2d:06:d2:1d:2a:f8:
c4:a3:db:43:65:f0:2e:dd:6a:28:92:29:99:06:f5:76:c2:10:
f4:1a:dc:dc:2b:1d:b3:33:49:6a:f2:1d:30:75:af:8d:be:27:
bd:77:71:74:b8:e5:f7:0b:35:dd:df:f2:38:b3:df:55:35:8e:
06:3f:d0:94:2e:e1:16:78:e3:f8:8e:cd:7b:8f:2f:c4:c4:f5:
13:f2:a9:d2:02:2e:e5:35:c8:2e:c7:da:fb:f0:f7:dc:25:1f:
0c:7e:f6:16:34:35:33:e5:8f:17:82:a5:b6:80:cd:cc:41:6a:
8d:d1:36:7d:4a:66:4b:cf:da:fc:0f:8f:4c:9c:1a:87:5c:e7:
ec:06:ae:3f:83:1b:69:f2:bc:10:f8:8a:26:49:96:d2:fa:64:
c1:c6:60:fd:1d:4f:0d:3b:b1:74:f0:3a:c3:5d:c7:6e:29:bf:
c6:64:ea:da:c4:4c:d0:88:51:6a:13:4d:6a:3a:d8:8e:bc:4f:
61:f3:86:e8:49:b9:06:f4:84:8a:7f:d8:57:94:c6:36:57:69:
c8:87:5a:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:58:22 2026 by rpki-client