Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
File: 0PT6gHWHU7JDohZe3ep12-7oJsQ.mft (raw, json)
Hash identifier: 0FXxxJkuiBy3KriRw39L9c56yXVZ95STcVhqzPGp0iI=
Subject key identifier: 46:DC:7C:89:2A:C7:F6:01:41:C6:84:38:7B:1F:BB:74:8A:E8:BA:86
Authority key identifier: D0:F4:FA:80:75:87:53:B2:43:A2:16:5E:DD:EA:75:DB:EE:E8:26:C4
Certificate issuer: /CN=d0f4fa80758753b243a2165eddea75dbeee826c4
Certificate serial: 019D2704C6A6658802FD6C28EB8002D725A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
Manifest number: 1372
Signing time: Wed 25 Mar 2026 22:01:57 +0000
Manifest this update: Wed 25 Mar 2026 22:01:57 +0000
Manifest next update: Thu 26 Mar 2026 22:01:57 +0000
Files and hashes: 1: 0PT6gHWHU7JDohZe3ep12-7oJsQ.crl (hash: fxmgLZGS+lhJpwXPerHsGiiHCqv8cwwpOo16nw6IBsE=)
2: pLi1qq2wcSmdgCiUnjjCoQErQdA.roa (hash: 7prO26MADaOtqZ/YBeNHajM4pUEvbdbYtkMA592/T+U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:c6:a6:65:88:02:fd:6c:28:eb:80:02:d7:25:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0f4fa80758753b243a2165eddea75dbeee826c4
Validity
Not Before: Mar 25 22:01:57 2026 GMT
Not After : Mar 26 22:01:57 2026 GMT
Subject: CN=46dc7c892ac7f60141c684387b1fbb748ae8ba86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:25:04:9b:c3:59:c9:23:33:03:42:94:b3:8d:
a8:b5:ef:a9:b8:fa:ee:31:6d:03:1d:00:00:1d:99:
88:6c:35:62:c3:2a:a0:4b:94:4f:3a:68:5b:58:5c:
3d:c4:35:be:cd:96:21:a0:7e:b7:67:67:6a:bf:2b:
fb:96:db:9d:5e:8c:8f:40:91:f8:b9:3d:e7:02:6d:
f8:9b:28:2a:a8:49:b7:1a:0f:75:79:1f:15:4a:c2:
9e:ae:48:36:ae:e0:b8:78:77:17:ae:a3:14:75:75:
3d:f6:2c:a6:d6:f6:e3:2d:39:1e:2c:c7:2c:1a:d8:
6e:45:03:33:ad:bd:c6:19:d6:2d:7c:d7:14:69:21:
01:a7:af:e9:5f:94:f5:80:3a:af:31:15:7d:0f:ab:
df:2a:c5:00:14:96:ed:06:17:f1:9a:0a:e7:d1:74:
ee:15:c5:7d:1e:51:9e:6c:08:a6:f6:1a:f0:7c:26:
44:5b:63:a9:81:b4:d5:e3:63:10:4f:ee:c9:84:92:
ee:ce:09:a1:8a:25:a9:a8:22:d7:da:10:0f:2d:29:
1c:57:9c:27:6a:f8:83:0c:81:ad:e5:c9:5f:79:58:
6b:a9:3d:14:78:1a:b4:59:df:68:33:ec:ba:09:10:
40:b5:a1:58:e2:96:33:ac:1c:2b:8b:33:f8:e9:cf:
fb:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:DC:7C:89:2A:C7:F6:01:41:C6:84:38:7B:1F:BB:74:8A:E8:BA:86
X509v3 Authority Key Identifier:
keyid:D0:F4:FA:80:75:87:53:B2:43:A2:16:5E:DD:EA:75:DB:EE:E8:26:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:33:f1:af:d3:e1:d7:bd:e1:1d:8c:0c:f1:47:28:47:67:16:
8b:62:a3:25:21:6a:bf:3e:c0:63:7d:d5:f4:c1:4b:99:db:56:
47:7f:38:18:2d:91:70:3d:73:10:b0:4e:36:4a:5f:15:f9:1a:
d2:68:ac:57:68:44:71:c9:28:6d:66:23:de:64:d3:b0:56:d6:
3f:c4:cf:8a:27:cf:ce:7d:3b:95:e7:16:dd:62:19:8b:65:b9:
38:5c:3f:1d:76:fa:21:28:bc:84:1e:07:b0:e7:23:b4:d2:48:
8d:d1:16:94:3c:cc:7f:8f:45:cb:87:14:23:f5:35:a6:27:89:
c4:00:61:aa:d2:82:40:c8:18:73:ee:8b:77:34:eb:47:87:56:
83:0b:21:9c:7b:33:b9:03:31:33:e1:df:97:39:9b:d3:51:d9:
eb:5a:f3:3d:d7:3a:ea:ba:0b:07:d4:58:3c:f4:ba:58:63:dd:
06:40:38:15:d3:28:08:f9:d6:65:77:a7:df:8a:a0:71:66:90:
a1:f5:84:66:6c:c2:55:ba:22:a4:33:af:44:0d:1b:af:6d:43:
f7:c2:eb:f0:03:c7:c8:61:af:cd:7a:e3:a1:27:88:de:0d:9b:
0b:cd:88:23:97:f2:6c:93:83:c9:1b:d1:62:c2:56:c5:14:30:
d2:0f:a7:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:32:36 2026 by rpki-client