Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
File: 0f00NtehmnND-oANh6Aa8YPaMYs.mft (raw, json)
Hash identifier: bVcQPRxUR0GSZ34i7QKkEoSgb7EvBVipRlNo71LV1Vw=
Subject key identifier: 62:9B:53:D2:56:FF:0D:41:1C:4B:CC:E7:BF:AF:56:1F:AE:BC:28:95
Authority key identifier: D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B
Certificate issuer: /CN=d1fd3436d7a19a7343fa800d87a01af183da318b
Certificate serial: 019D29975B187FEA803CC63C90EFA1A8EE4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
Manifest number: 0E94
Signing time: Thu 26 Mar 2026 10:01:18 +0000
Manifest this update: Thu 26 Mar 2026 10:01:18 +0000
Manifest next update: Fri 27 Mar 2026 10:01:18 +0000
Files and hashes: 1: 0f00NtehmnND-oANh6Aa8YPaMYs.crl (hash: qCueESb+TsL+ElV3muzT2Fkn5cZY0rB7q/UUKzfXQ+w=)
2: IASwi9of8Nm06s2NEyZeclBiyks.roa (hash: wJHjHPTUMp7nASIGnsvw0Yq6r11NWYMurdnBadU/uWs=)
3: cJm02hXD31NI7pVQ-Zg6zC-hgq4.roa (hash: HsDfNZqhgWgKKit0y0ockf+XjyRYYtlEbZ6HrEVkmGs=)
4: d2D28pbUUy75o_ayovdj8OnlSSk.roa (hash: VCEc/3eMD6beAJR+mVre94XxkAsuGJ0/hx5+lBhoAGg=)
5: jwsbk3UxQHXyjEExXwNUXcrvx38.roa (hash: Glu31tXKVdAhpJSQOXApQod2ByFLYzTP23c7sIux+Ks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:5b:18:7f:ea:80:3c:c6:3c:90:ef:a1:a8:ee:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1fd3436d7a19a7343fa800d87a01af183da318b
Validity
Not Before: Mar 26 10:01:18 2026 GMT
Not After : Mar 27 10:01:18 2026 GMT
Subject: CN=629b53d256ff0d411c4bcce7bfaf561faebc2895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:cf:da:f3:30:98:9f:fc:d0:53:29:e0:fc:13:
07:cb:1e:93:e7:e5:c1:5b:cf:03:4e:7b:a2:70:6e:
36:54:f2:90:1e:78:62:60:3b:13:ac:18:40:b4:4c:
98:66:1b:5d:ca:4f:a2:b4:5f:68:29:1d:8c:1b:15:
44:32:bd:b2:af:56:01:c5:3b:2c:44:42:fa:11:fe:
00:68:cd:c2:68:2e:0d:a5:21:fa:3d:56:5f:9c:7f:
30:7f:9c:01:bd:d7:0e:62:c7:91:80:69:9d:a6:bc:
09:fb:19:bd:85:a6:a7:4a:a3:ea:d7:fe:00:10:af:
96:55:18:7d:9f:27:24:9e:24:87:77:ab:8f:2a:f4:
a4:46:42:72:de:f7:77:f5:e1:53:63:9b:9c:fc:70:
29:24:fa:2c:7e:3f:2b:04:21:de:3e:88:17:39:88:
a6:b4:6f:b8:35:92:17:b4:f1:ff:e9:e1:ea:4e:ad:
f6:b5:35:20:44:57:cf:62:e6:e4:82:f2:6d:0c:a4:
b7:62:f1:72:27:e2:75:af:42:d6:28:d4:e1:5f:a8:
26:d2:98:c6:91:fb:f9:a1:f8:e3:ee:73:5c:28:a9:
0c:34:4d:e4:4a:8e:f6:4d:57:1e:8a:66:f7:31:8c:
42:41:63:83:e6:7b:f1:6c:04:c2:9b:7a:d9:9a:ca:
27:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:9B:53:D2:56:FF:0D:41:1C:4B:CC:E7:BF:AF:56:1F:AE:BC:28:95
X509v3 Authority Key Identifier:
keyid:D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:61:d2:db:fe:9a:08:1d:e9:5e:e9:46:31:d1:b4:1d:16:22:
bb:12:3f:c5:cc:30:5b:fe:de:fd:1e:68:a4:1f:6b:ab:28:78:
c4:57:3d:57:d4:71:62:93:f9:fc:bb:b2:19:53:c0:8d:25:13:
b6:83:2e:80:63:3e:3d:d9:e3:d9:cc:74:1e:c1:d3:8f:cd:53:
ce:dd:7a:bc:8f:b2:19:c7:5b:05:e1:0b:d2:e1:17:7e:61:f9:
9a:6f:88:95:6d:ff:2a:ca:64:f1:0d:93:0e:00:f0:64:aa:76:
6c:bb:c2:0b:85:48:94:5f:97:00:03:0b:d3:e7:7d:4e:6d:04:
2d:8d:7e:96:c9:49:e7:8e:fa:58:f1:09:f0:56:1b:fe:51:41:
28:78:9a:81:2b:76:ce:d5:f4:69:b1:a3:0e:1e:24:8f:05:97:
75:ba:53:6c:b1:5b:bc:64:ce:d3:97:14:f4:d2:2e:cc:f2:cf:
06:cb:31:2a:9c:b7:a9:a2:0f:4c:00:74:61:bf:85:8a:dc:39:
5f:55:ac:d3:1e:7d:20:47:b3:97:72:1d:2c:c0:6a:fd:ef:29:
e3:92:7f:c8:1b:9d:9a:90:3d:9e:34:06:00:f7:b8:33:52:9e:
f4:2b:6b:39:a7:39:4f:47:82:d9:01:2c:23:06:bc:07:29:77:
0b:8d:f6:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:01:17 2026 by rpki-client