Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
File: 0mHPvAfsMGN33LFql6EWDHptgsw.mft (raw, json)
Hash identifier: 3v+6SmP9Ho2+wZQOOVA+cHH9vpa28fen4zV+i9FEHPY=
Subject key identifier: EF:42:38:BD:48:BE:9A:FA:02:3C:B2:FE:4B:52:6D:63:89:D6:FF:C5
Authority key identifier: D2:61:CF:BC:07:EC:30:63:77:DC:B1:6A:97:A1:16:0C:7A:6D:82:CC
Certificate issuer: /CN=d261cfbc07ec306377dcb16a97a1160c7a6d82cc
Certificate serial: 019D29CDD9E70A1CD4B2E593B4C1D71C4444
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
Manifest number: 04C9
Signing time: Thu 26 Mar 2026 11:00:49 +0000
Manifest this update: Thu 26 Mar 2026 11:00:49 +0000
Manifest next update: Fri 27 Mar 2026 11:00:49 +0000
Files and hashes: 1: 0mHPvAfsMGN33LFql6EWDHptgsw.crl (hash: +bdApLAnGUsmetvz//pDCqQFkOSpo2UiGqKHQCqJPQk=)
2: p0fL_-s25OijH9UglPLyGf3hQ3k.roa (hash: sp4Y+8h1IocJtG1a3SfrXHCpPOK9+n80lPdEb2+Nl4c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:cd:d9:e7:0a:1c:d4:b2:e5:93:b4:c1:d7:1c:44:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d261cfbc07ec306377dcb16a97a1160c7a6d82cc
Validity
Not Before: Mar 26 11:00:49 2026 GMT
Not After : Mar 27 11:00:49 2026 GMT
Subject: CN=ef4238bd48be9afa023cb2fe4b526d6389d6ffc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0c:7d:e7:1d:2c:1c:b0:9e:6d:46:64:86:45:
c5:a5:5e:0e:d7:0d:1c:84:ab:95:c8:57:50:32:87:
74:60:54:5b:a4:ec:b0:51:30:21:19:19:fc:47:a3:
a8:54:58:90:5d:cf:f0:e3:16:5b:44:e8:79:f7:12:
d4:db:07:90:58:71:cc:bb:73:c0:d0:98:e3:3e:90:
08:d2:1b:3c:f9:a8:08:a4:4a:14:fc:3a:03:1b:83:
31:47:b2:07:a5:ab:45:d0:b4:04:9e:e8:4d:2e:8a:
b0:77:3e:34:47:55:35:0f:14:fd:a0:c8:ec:64:65:
42:4f:2a:b1:f9:e3:66:3c:23:bc:92:90:03:4a:65:
8a:73:af:4f:d6:93:51:fc:0d:92:ee:44:a7:cf:56:
22:ec:34:cd:26:43:02:d5:16:84:46:5f:0f:56:7e:
42:6a:62:a5:a2:61:f7:45:53:63:14:b5:38:10:b5:
56:5d:77:96:26:66:ed:a5:48:19:6b:2b:70:be:0c:
5f:14:1b:2d:01:c6:3d:da:68:33:b8:73:18:93:1a:
bd:67:2e:44:b1:c7:3b:48:9a:b7:af:17:14:6f:90:
91:78:58:81:6e:0e:5a:14:7c:4a:4b:c1:ed:23:43:
5b:51:1d:a1:7d:4b:6f:3b:c0:ff:03:9a:88:90:f0:
c2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:42:38:BD:48:BE:9A:FA:02:3C:B2:FE:4B:52:6D:63:89:D6:FF:C5
X509v3 Authority Key Identifier:
keyid:D2:61:CF:BC:07:EC:30:63:77:DC:B1:6A:97:A1:16:0C:7A:6D:82:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:fd:c8:53:0d:4d:69:e4:db:a8:2d:19:25:db:58:0f:c6:43:
ce:04:ed:84:6a:4c:c6:97:05:a0:fd:ac:1f:5f:bf:32:bf:0e:
ec:68:3e:2b:7d:a1:ba:d9:66:f6:5a:1e:b8:58:46:fa:b0:05:
9a:9f:1a:2f:be:6e:1c:1d:0d:9f:bd:5d:31:c7:23:03:1f:11:
d3:ee:6f:91:08:ea:27:f1:df:aa:85:f8:d3:7a:56:eb:33:16:
94:45:5f:6d:65:fe:b4:3b:94:1d:e2:5c:17:3e:38:6e:0a:d1:
41:0e:36:b0:67:dd:c8:c1:7a:e5:0a:1e:f8:8c:41:8e:5d:a9:
b5:e6:c3:7b:71:00:5b:33:2f:82:a5:34:c1:8c:fb:27:84:0d:
37:f8:32:a4:75:71:e0:3b:d3:e1:df:76:99:8b:b3:2f:d6:8f:
69:c0:7a:59:27:f1:00:0f:b9:5d:87:d6:f7:c7:c8:13:21:4f:
71:eb:c6:8f:52:3e:80:68:0e:3a:df:75:a5:44:87:b5:ad:ea:
83:ac:71:84:91:00:4b:93:c8:71:e6:1e:9a:39:39:39:a5:9e:
00:de:d7:a9:bb:89:99:dd:41:57:ca:35:1e:95:c1:47:2c:75:
b3:5d:21:2a:31:8e:c1:11:f2:04:ac:e0:3f:63:b1:26:b6:b9:
b9:ae:f6:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:35:41 2026 by rpki-client