Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.mft
File: 0kSCMx_jdh3lOpm9N8j9am-foAc.mft (raw, json)
Hash identifier: inTcfkM+GTgwEmSLHSIjcBYOD4OLvE/+kR7nUyi/6mQ=
Subject key identifier: 1D:BE:2B:68:8F:67:33:15:D2:A2:0F:09:BF:75:AD:A3:F0:22:56:B4
Authority key identifier: D2:44:82:33:1F:E3:76:1D:E5:3A:99:BD:37:C8:FD:6A:6F:9F:A0:07
Certificate issuer: /CN=d24482331fe3761de53a99bd37c8fd6a6f9fa007
Certificate serial: 019E1DFE25032FA36DF0589574AA14577697
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kSCMx_jdh3lOpm9N8j9am-foAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.mft
Manifest number: 0339
Signing time: Tue 12 May 2026 21:00:55 +0000
Manifest this update: Tue 12 May 2026 21:00:55 +0000
Manifest next update: Wed 13 May 2026 21:00:55 +0000
Files and hashes: 1: 0kSCMx_jdh3lOpm9N8j9am-foAc.crl (hash: QIOPEqOMuElWGd0/dCLZpzECG2HTf9Hi52YjcVjB7x8=)
2: iEJQwLdxS0IxuOaEeOzSHydGpSo.roa (hash: Xj6y/UERT3eVvhXQlqkmNoZn9cVGobnGl6x9D/dBts8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kSCMx_jdh3lOpm9N8j9am-foAc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:25:03:2f:a3:6d:f0:58:95:74:aa:14:57:76:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24482331fe3761de53a99bd37c8fd6a6f9fa007
Validity
Not Before: May 12 21:00:55 2026 GMT
Not After : May 13 21:00:55 2026 GMT
Subject: CN=1dbe2b688f673315d2a20f09bf75ada3f02256b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3b:8f:9e:58:ee:e7:97:78:0a:30:a3:68:3e:
82:ed:b4:02:e8:d4:b6:08:4b:82:94:39:ea:d8:9d:
ee:20:90:4e:fa:a3:8b:9a:56:17:cb:c2:ac:19:43:
ff:0a:69:4b:c0:ff:78:a4:d5:12:15:9f:1c:59:e6:
61:16:7f:8b:c8:a4:3b:db:d0:e7:d3:1b:4b:84:e8:
dc:87:35:f8:ed:a4:28:4a:17:04:84:66:4e:64:5c:
5a:2b:7e:18:ad:9a:aa:c0:26:5a:93:2d:e7:e3:73:
78:c9:c9:8d:3a:91:44:55:15:c6:d8:fd:f3:20:0e:
aa:41:d3:25:8c:f9:d4:3e:80:60:1f:4d:b7:9a:85:
f4:86:e7:94:0a:98:ff:a2:84:f2:e7:b9:cb:8a:ea:
09:56:e6:fa:3e:88:50:2d:43:6e:9f:3c:de:d0:c0:
7a:2e:7c:a9:7f:c5:62:94:8d:7f:a2:8c:42:92:99:
3b:75:af:01:21:1d:f3:b2:f8:f3:23:2b:fd:da:8b:
e0:9b:18:0c:85:f5:bd:10:4c:71:b9:6b:ae:3d:33:
2c:d3:6b:c7:d8:52:44:0e:29:68:8f:30:02:1c:fa:
44:b7:98:fc:72:2e:e3:4a:60:d3:24:b2:36:d4:07:
13:13:3f:e0:e9:13:cd:21:ac:47:1c:bc:45:58:81:
9d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:BE:2B:68:8F:67:33:15:D2:A2:0F:09:BF:75:AD:A3:F0:22:56:B4
X509v3 Authority Key Identifier:
keyid:D2:44:82:33:1F:E3:76:1D:E5:3A:99:BD:37:C8:FD:6A:6F:9F:A0:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kSCMx_jdh3lOpm9N8j9am-foAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:96:1d:5d:a9:cd:c7:90:95:c7:5b:a6:98:db:4f:8a:46:af:
ef:c9:55:ec:41:46:dc:89:7e:6b:7f:7a:e2:53:1f:ee:54:3b:
91:43:3c:45:15:5b:96:05:2f:79:91:bf:4c:7d:12:70:49:a8:
77:c3:b6:32:04:d0:3a:09:2c:f9:92:f9:1a:e0:84:0d:bb:ad:
09:60:f1:84:77:2f:80:9a:02:fb:ae:5b:30:bd:a6:4a:e1:ac:
b3:fb:a0:69:e9:25:c1:fc:f9:f1:ee:4f:01:b8:e4:cb:6a:2d:
f7:8f:de:5a:3e:67:f0:f1:07:c4:eb:e2:79:45:b7:16:46:73:
a4:e5:ba:4a:92:a7:90:0e:1a:76:f9:e7:c6:b2:79:ec:d6:38:
7a:13:cd:75:d1:f0:84:d8:dd:e4:aa:dd:0e:2f:cd:24:2c:89:
9e:40:f5:58:7f:58:3f:b4:b5:67:c4:24:55:5a:38:99:21:f9:
7b:b0:ff:01:53:ee:cb:b0:07:57:7a:45:7f:47:c1:d8:4e:70:
fa:a1:34:07:4c:ee:0e:12:63:62:8a:3f:c1:2c:a3:5f:1b:36:
e2:c3:74:e1:85:60:64:16:c2:43:bf:82:a8:1f:35:5c:98:b5:
08:aa:76:36:4e:62:99:e1:e5:3e:d8:63:22:00:64:1a:09:df:
4a:17:b5:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:14:48 2026 by rpki-client