Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
File: 02JOkIx0mP22E1QnU-9Wx1zXBL0.mft (raw, json)
Hash identifier: 9ecWdt4By3NXIAd4QjgdbCnF6Rbt38sxgPgiIWrzbrw=
Subject key identifier: 27:EF:25:43:F0:DC:BB:3C:1D:8A:30:7D:AB:93:B1:44:30:75:11:BA
Authority key identifier: D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
Certificate issuer: /CN=d3624e908c7498fdb613542753ef56c75cd704bd
Certificate serial: 019D2704C2E64811E36587DE0B9D6B3CD479
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
Manifest number: 0CC2
Signing time: Wed 25 Mar 2026 22:01:56 +0000
Manifest this update: Wed 25 Mar 2026 22:01:56 +0000
Manifest next update: Thu 26 Mar 2026 22:01:56 +0000
Files and hashes: 1: 02JOkIx0mP22E1QnU-9Wx1zXBL0.crl (hash: nvysyZygEmGY6cfQYxbCBTJjgY7yJyu1Eznuu7FO3L4=)
2: xY4otenPhOP0H70AgN8yfipmuag.roa (hash: j8oE81MNRmqQfvzLQxhYODVo2K+D9FqNssi/KIrbHB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:c2:e6:48:11:e3:65:87:de:0b:9d:6b:3c:d4:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3624e908c7498fdb613542753ef56c75cd704bd
Validity
Not Before: Mar 25 22:01:56 2026 GMT
Not After : Mar 26 22:01:56 2026 GMT
Subject: CN=27ef2543f0dcbb3c1d8a307dab93b144307511ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a9:23:b1:91:31:93:ce:18:85:83:b1:6d:f5:
f6:73:74:0d:eb:7d:83:c4:37:4a:b7:ff:e9:76:3a:
cf:52:68:65:51:7b:05:99:42:15:dc:6f:e1:0f:f2:
74:60:0f:89:7a:48:37:a2:48:7a:f3:fc:12:32:a5:
d8:84:73:84:c6:7b:bd:36:b9:52:e3:df:37:2b:c2:
84:d6:c4:0c:be:32:84:4d:f8:24:ad:cf:2f:d3:df:
04:2e:8b:ac:48:27:22:30:7b:e7:b8:c2:e0:4e:92:
3f:93:8f:c8:7a:b7:2b:95:7a:11:0d:5e:51:9e:3a:
f5:7f:9b:65:73:f0:54:7d:c2:44:2c:a9:50:8c:99:
10:88:78:a5:24:6c:a1:0c:4e:c7:07:eb:a5:d3:d7:
a9:2c:72:ad:c3:be:77:64:92:1d:5c:d5:c5:6f:4b:
ae:46:55:79:54:40:8e:98:6b:af:23:8b:75:c3:7c:
8f:58:ff:0e:9b:53:dd:08:bb:0c:bb:70:3f:0d:1f:
29:70:96:1b:08:d2:2d:a3:b6:41:2d:93:08:bc:1b:
7a:3c:24:d5:46:90:09:63:f6:b4:af:78:d3:21:83:
5f:af:e2:ee:2c:9d:55:ff:b4:a4:d7:b4:46:3d:f8:
42:e4:df:b6:fa:d0:e8:43:05:1e:63:4d:30:17:c1:
56:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:EF:25:43:F0:DC:BB:3C:1D:8A:30:7D:AB:93:B1:44:30:75:11:BA
X509v3 Authority Key Identifier:
keyid:D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:17:69:5c:61:94:ba:13:a1:17:6e:25:35:84:f7:1a:f3:f4:
bf:8e:d6:08:a5:80:de:a3:04:cd:24:de:e8:c6:c0:8b:53:a6:
73:4a:de:ca:0c:b5:08:44:6e:24:9b:6e:ae:41:23:54:9d:56:
b1:36:7d:ad:4b:8e:50:12:b9:3d:16:c9:b8:b8:70:58:f8:e1:
3e:c9:77:e1:0f:c2:75:0e:9e:11:18:3e:21:3b:a7:f6:1a:9d:
e6:68:60:b6:ae:45:87:43:a6:5b:d2:8c:1c:01:a9:fe:54:c0:
0c:94:47:9b:2e:44:8f:0d:df:96:48:cf:b5:1d:02:4d:20:b5:
c4:3b:a0:23:74:c0:13:81:ce:4d:bb:5f:50:38:d3:f3:6a:76:
fd:41:1c:cc:5d:38:a8:fa:f8:75:64:bb:52:ef:7a:81:3c:dc:
77:5f:c2:f7:20:89:b6:55:6c:a9:d4:fb:46:42:b9:0f:63:10:
56:fa:8b:4e:ce:d2:23:45:ec:79:c5:d4:cd:03:64:36:b8:c9:
f6:f1:47:c4:e1:13:3b:32:e0:d1:71:fe:3b:39:83:eb:b7:50:
63:aa:60:ab:cd:50:1d:0a:ae:12:c7:be:9e:eb:a7:82:0b:7f:
83:40:13:8d:25:22:59:32:16:a6:3e:28:f1:fc:e3:c9:1f:70:
05:d4:f1:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:22:09 2026 by rpki-client