Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
File: 0KNDo37K0r-yw1vZsm1_SLy1dTc.mft (raw, json)
Hash identifier: rYUoBfV2rQm8j+vLYDYQeoSnBul/JhRy60jjsxJydHg=
Subject key identifier: DF:9F:23:CD:BC:3C:0F:64:63:E0:BD:A8:AE:DA:BB:15:72:18:4B:79
Authority key identifier: D0:A3:43:A3:7E:CA:D2:BF:B2:C3:5B:D9:B2:6D:7F:48:BC:B5:75:37
Certificate issuer: /CN=d0a343a37ecad2bfb2c35bd9b26d7f48bcb57537
Certificate serial: 019E1D90D4D9A5CF7D2BDCC35D3D87FAD7FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
Manifest number: 1897
Signing time: Tue 12 May 2026 19:01:31 +0000
Manifest this update: Tue 12 May 2026 19:01:31 +0000
Manifest next update: Wed 13 May 2026 19:01:31 +0000
Files and hashes: 1: 0KNDo37K0r-yw1vZsm1_SLy1dTc.crl (hash: lMtTpatxifkBReAzAUvyk8EedCUR52BabaXwYE10bcE=)
2: MqEYcGP28yZryUtdD_3wTNGTAVc.roa (hash: p6r4IvQhkyRHVWZ8dRkzEjBjRhq65iPcj75XjeJcHaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:d4:d9:a5:cf:7d:2b:dc:c3:5d:3d:87:fa:d7:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a343a37ecad2bfb2c35bd9b26d7f48bcb57537
Validity
Not Before: May 12 19:01:31 2026 GMT
Not After : May 13 19:01:31 2026 GMT
Subject: CN=df9f23cdbc3c0f6463e0bda8aedabb1572184b79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7c:bf:31:c5:db:d7:7b:2e:95:30:18:9b:a6:
7e:ed:d2:48:42:df:f4:e5:09:76:43:67:2d:46:f7:
39:5d:7b:c2:19:07:1d:fe:fb:b1:b1:a0:9e:dc:00:
eb:aa:6e:d1:21:ad:93:3d:35:65:ba:7d:55:e0:dc:
08:49:a8:89:60:7d:18:9f:18:2c:3f:f9:3c:5f:92:
50:5a:77:93:7d:90:3b:97:dc:25:1a:7b:4e:27:f5:
8d:b5:09:a9:d4:3e:67:d0:2c:fb:6f:c5:f2:91:41:
20:1f:ec:91:5c:eb:b5:fc:a3:6f:8b:78:6f:19:ed:
95:45:99:b7:d5:5d:5e:62:86:5f:20:45:23:ae:89:
da:3b:f1:82:c2:f3:0c:e6:d6:73:b1:25:e0:43:65:
29:d3:d9:c8:49:d3:ec:54:e0:2b:af:df:ab:00:a9:
a3:c8:62:29:fb:97:cc:dc:d8:e8:7f:ba:0a:d1:b5:
b5:94:53:bc:e8:64:3b:e2:23:1e:cd:70:ed:8d:83:
a2:f7:48:72:b7:8e:9b:f7:80:62:fe:ac:bb:15:32:
70:ca:70:da:48:5d:ee:87:6a:c6:83:70:69:d8:f5:
69:78:ee:fb:6d:80:dc:30:70:82:b9:23:59:a6:c5:
5e:4c:57:48:d2:ef:e3:82:19:e4:e1:1c:78:cd:62:
c7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:9F:23:CD:BC:3C:0F:64:63:E0:BD:A8:AE:DA:BB:15:72:18:4B:79
X509v3 Authority Key Identifier:
keyid:D0:A3:43:A3:7E:CA:D2:BF:B2:C3:5B:D9:B2:6D:7F:48:BC:B5:75:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:4f:f9:ec:ce:40:a2:b4:f8:8c:89:13:b3:12:39:10:c2:c5:
55:a0:2d:9f:1c:d1:b5:7e:8e:60:8b:42:68:c1:16:b3:0b:c4:
26:f1:53:c4:65:bd:7b:9e:72:97:65:39:4d:6b:06:60:db:ad:
cd:d8:3d:43:68:7a:7b:a2:0c:6e:4a:c0:1c:e4:a5:2b:63:ee:
9c:ac:3f:7b:7c:14:0b:e0:98:c8:71:bb:ba:2b:da:76:0f:8d:
0a:b9:97:d1:db:ee:26:5c:b0:0a:41:23:1a:18:af:05:03:3b:
3c:f5:b1:89:a4:3e:90:ee:17:af:a1:fb:0a:04:0b:58:19:10:
6f:c9:24:a5:e7:7d:c9:8f:a4:27:25:58:52:0f:0c:8b:bc:fd:
69:7c:59:cb:83:69:8f:48:6b:62:76:1f:9f:6b:62:2b:fc:07:
d4:85:2f:64:fb:34:2e:90:83:dc:a3:77:08:96:b6:00:99:3e:
76:e5:5e:bb:d3:6f:ea:7d:e4:4a:84:ec:c7:92:21:b4:d9:76:
91:1e:51:dd:a6:39:f4:4c:61:57:15:ab:4a:20:a6:c0:d2:7d:
39:8c:41:f8:6c:5d:ed:bc:76:0b:8a:90:6f:4d:ea:14:ac:7f:
b9:30:bd:49:34:e4:4c:3d:8b:6a:3e:9d:d7:03:0c:04:fb:30:
1c:11:33:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:43:59 2026 by rpki-client