Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.mft
File: 0kSCMx_jdh3lOpm9N8j9am-foAc.mft (raw, json)
Hash identifier: yEByCaQN1t9HL/0IwwOoBzkO48nXtQ8nzyeOF/Ub4xY=
Subject key identifier: A0:D2:66:EE:92:AB:FE:51:59:C1:73:DA:0E:3C:BE:F9:D3:11:B2:CE
Authority key identifier: D2:44:82:33:1F:E3:76:1D:E5:3A:99:BD:37:C8:FD:6A:6F:9F:A0:07
Certificate issuer: /CN=d24482331fe3761de53a99bd37c8fd6a6f9fa007
Certificate serial: 019D28BB49E71662E804534002FEDC97D172
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kSCMx_jdh3lOpm9N8j9am-foAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.mft
Manifest number: 02BA
Signing time: Thu 26 Mar 2026 06:00:55 +0000
Manifest this update: Thu 26 Mar 2026 06:00:55 +0000
Manifest next update: Fri 27 Mar 2026 06:00:55 +0000
Files and hashes: 1: 0kSCMx_jdh3lOpm9N8j9am-foAc.crl (hash: CRwWh8gDAJcJ+wJ6xxQ+nNYVlqZmL54pOVTELFX7igQ=)
2: iEJQwLdxS0IxuOaEeOzSHydGpSo.roa (hash: Xj6y/UERT3eVvhXQlqkmNoZn9cVGobnGl6x9D/dBts8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kSCMx_jdh3lOpm9N8j9am-foAc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:49:e7:16:62:e8:04:53:40:02:fe:dc:97:d1:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24482331fe3761de53a99bd37c8fd6a6f9fa007
Validity
Not Before: Mar 26 06:00:55 2026 GMT
Not After : Mar 27 06:00:55 2026 GMT
Subject: CN=a0d266ee92abfe5159c173da0e3cbef9d311b2ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:71:4a:92:9e:a8:a1:c2:af:25:39:2a:5c:d4:
f6:03:64:d9:c2:5f:c4:c1:62:2e:2f:36:e9:43:b8:
d2:bf:a1:92:7c:91:1c:a2:06:62:16:d1:c1:94:ec:
29:06:aa:63:45:4f:ca:da:d2:05:3b:6a:ec:05:7f:
a4:30:1a:e2:45:3d:7e:c6:46:39:5a:b2:44:f5:ac:
4d:e9:73:80:66:46:2f:ce:6d:18:20:68:8d:35:ba:
d7:9c:c3:3a:19:c0:5f:52:df:59:9b:5a:80:fd:25:
4c:6a:f2:65:b1:b1:1b:90:8b:db:cd:46:3b:c8:c7:
75:c0:3f:33:aa:88:9d:95:1e:85:87:54:a8:dc:7d:
6f:4a:73:d4:7c:31:3d:30:4e:8f:2d:ce:84:58:30:
b8:99:12:94:dd:31:b7:0b:c2:c2:c0:d4:d9:4a:cb:
19:8a:41:c9:71:63:33:93:9f:64:67:74:3a:a4:d8:
dd:44:e2:5e:a6:2f:00:88:4c:a9:70:37:30:7e:0f:
53:2b:81:6b:4b:3b:7c:84:5c:cf:83:18:bc:2a:c5:
c8:5a:dc:02:b5:ff:3f:b8:a7:0b:f5:ff:f1:7a:ca:
55:26:b3:eb:eb:8d:76:54:26:a8:c2:d1:a9:d8:13:
cb:d6:41:cc:a3:3e:79:46:b9:8a:b7:c7:77:fb:b0:
90:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D2:66:EE:92:AB:FE:51:59:C1:73:DA:0E:3C:BE:F9:D3:11:B2:CE
X509v3 Authority Key Identifier:
keyid:D2:44:82:33:1F:E3:76:1D:E5:3A:99:BD:37:C8:FD:6A:6F:9F:A0:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kSCMx_jdh3lOpm9N8j9am-foAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:d9:88:7c:5e:9b:fa:1c:c6:84:c7:0c:73:a6:50:5e:16:82:
d2:cd:40:25:1e:f3:05:39:ca:2c:34:f4:2e:0f:6b:c0:14:3b:
3e:dd:7c:8e:f0:5b:97:1d:56:81:72:fa:e7:0b:87:90:c1:56:
6c:92:90:34:40:e2:6b:db:cc:d5:3e:b5:59:6a:4d:5f:dc:3a:
7e:da:5d:40:d2:81:31:bd:62:14:93:d7:0a:fb:5f:10:5f:99:
59:b3:1f:5e:56:92:5d:ca:82:1e:17:83:79:29:1e:63:fb:69:
99:c8:89:5a:53:5d:d4:5a:3b:b0:df:55:47:eb:fe:63:d3:72:
c7:f0:47:d9:c2:3f:a3:0f:0f:bd:d7:e4:59:de:93:12:39:a1:
bf:ce:47:36:8d:db:8d:f7:49:b8:15:3d:78:0c:9c:fe:be:38:
ba:13:7d:7f:32:b0:9f:50:22:13:6e:d0:79:58:c7:a0:2b:73:
f2:9d:5b:fc:5f:30:a9:07:da:15:46:03:24:cf:3f:70:76:95:
68:56:1b:99:b9:1f:a3:cd:d5:99:f0:79:b9:e2:f3:47:4e:ee:
96:36:41:62:f2:7e:3d:a8:52:a6:09:5b:1c:f5:fb:dd:0d:fe:
8f:0c:8b:cb:51:94:17:bc:37:54:c2:38:3f:d3:dd:80:7b:a3:
88:f7:c4:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:56:09 2026 by rpki-client