Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
File: 0KNDo37K0r-yw1vZsm1_SLy1dTc.mft (raw, json)
Hash identifier: goP9mx90cSLJdefOAv1aDPjXPs7/sV+1UYCJxGJy/JE=
Subject key identifier: B1:17:4F:FA:87:E9:1D:96:C5:90:EA:94:AF:E9:C8:44:51:D6:62:01
Authority key identifier: D0:A3:43:A3:7E:CA:D2:BF:B2:C3:5B:D9:B2:6D:7F:48:BC:B5:75:37
Certificate issuer: /CN=d0a343a37ecad2bfb2c35bd9b26d7f48bcb57537
Certificate serial: 019D284E0C37D3A13FBAEF825DB27A64C3E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
Manifest number: 1818
Signing time: Thu 26 Mar 2026 04:01:36 +0000
Manifest this update: Thu 26 Mar 2026 04:01:36 +0000
Manifest next update: Fri 27 Mar 2026 04:01:36 +0000
Files and hashes: 1: 0KNDo37K0r-yw1vZsm1_SLy1dTc.crl (hash: b2/67uYONGiB/BPuv4CUK8jDTJsAaJl1GUoRTryBh5Q=)
2: MqEYcGP28yZryUtdD_3wTNGTAVc.roa (hash: p6r4IvQhkyRHVWZ8dRkzEjBjRhq65iPcj75XjeJcHaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:0c:37:d3:a1:3f:ba:ef:82:5d:b2:7a:64:c3:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a343a37ecad2bfb2c35bd9b26d7f48bcb57537
Validity
Not Before: Mar 26 04:01:36 2026 GMT
Not After : Mar 27 04:01:36 2026 GMT
Subject: CN=b1174ffa87e91d96c590ea94afe9c84451d66201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ec:0c:9c:da:c6:c1:61:3b:5f:5d:fd:7a:f2:
5e:fc:d0:47:4b:cb:1b:fc:20:dc:c3:89:4c:55:2c:
1d:3d:23:16:4e:fb:8c:e1:3b:ab:d4:90:f8:ae:2f:
0c:e4:fb:6c:98:e1:78:48:81:8c:aa:3d:91:e3:ff:
f4:aa:fe:be:ab:40:dc:b5:ff:0f:1f:bc:26:d4:da:
fc:3a:cf:68:a6:e6:e4:69:26:51:c7:d0:68:00:f8:
d3:87:f0:52:77:5d:c3:0f:f8:f0:a9:fd:ef:ea:48:
cf:1a:e8:b5:ef:99:33:50:d4:7c:60:10:76:09:e2:
a3:ba:f3:00:e1:e1:57:d8:63:cd:99:de:3d:10:26:
4c:12:17:f8:ab:87:fb:30:b5:83:64:07:f1:76:6e:
87:2d:1b:00:f7:55:c4:77:d2:91:95:70:fb:05:0f:
6e:7e:bc:3b:62:70:db:c1:25:c2:e1:d8:ff:81:5c:
f8:40:d6:90:b5:b7:ee:44:77:a4:af:a5:ec:a1:6d:
ea:49:9f:38:dc:ba:e2:e7:2d:b8:93:02:94:66:75:
83:bf:c3:a1:01:06:73:43:51:4a:ea:6c:08:b4:87:
55:4b:20:b9:a7:c7:01:0a:0c:af:67:7e:fc:b3:31:
ba:af:d6:03:b0:a5:03:74:cf:20:95:0a:a9:a8:27:
26:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:17:4F:FA:87:E9:1D:96:C5:90:EA:94:AF:E9:C8:44:51:D6:62:01
X509v3 Authority Key Identifier:
keyid:D0:A3:43:A3:7E:CA:D2:BF:B2:C3:5B:D9:B2:6D:7F:48:BC:B5:75:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d3:b3:62:07:d6:15:b8:d5:4d:5c:3f:9c:20:08:ab:55:df:04:
d2:14:22:8a:a0:92:3f:2b:90:20:74:08:9b:f9:be:7c:dd:cd:
8f:fd:2d:32:a8:25:b3:0f:97:ec:4d:cd:d9:8c:1e:ba:a7:95:
22:06:d8:0f:ee:93:87:02:82:1a:47:25:b9:c6:90:12:b3:a4:
9e:71:9e:d5:7a:5c:e3:ee:f1:a8:4c:16:28:e5:c1:40:c1:b4:
61:31:30:0e:b0:3c:d3:d5:5f:35:9b:7e:1b:bd:0b:dd:72:ca:
2c:f3:d1:a8:bd:95:c6:de:ba:8a:68:74:9c:c6:74:b1:9a:4d:
ea:5a:e5:ae:38:87:cc:76:9e:88:9f:bc:a3:e6:d8:73:c8:bb:
24:3c:18:1c:22:12:2a:1d:8d:cc:ff:43:d4:c3:32:59:62:76:
5d:ad:07:52:a6:70:a0:b5:e6:be:09:cf:88:96:a3:c2:0a:c4:
45:4e:55:55:2c:9c:80:51:68:1d:03:3d:fb:b9:fb:7e:d8:ce:
4a:ea:9f:89:65:3e:0a:6c:9a:b3:37:00:72:c3:c1:2c:79:aa:
9d:13:63:9e:a8:3f:3b:dd:0f:26:d0:35:82:8a:bd:0a:d3:0f:
e6:62:a0:0c:58:48:83:fa:de:9b:63:ef:71:12:09:e1:8d:9b:
86:f7:cd:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:55:41 2026 by rpki-client