Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
File: tD1On-OlSH0g8QABkWKRUPYo86E.mft (raw, json)
Hash identifier: xN416BvyancjHAj2Z98+dJss7qubnKqpVqeurYacf34=
Subject key identifier: 69:93:1A:36:40:FE:02:C2:7F:58:76:73:63:CE:38:6E:DF:18:84:0F
Authority key identifier: B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
Certificate issuer: /CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Certificate serial: 019D37526C583A5B8D0FF2B41876F3C5BB94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
Manifest number: 0D60
Signing time: Sun 29 Mar 2026 02:00:41 +0000
Manifest this update: Sun 29 Mar 2026 02:00:41 +0000
Manifest next update: Mon 30 Mar 2026 02:00:41 +0000
Files and hashes: 1: KwW1m_TU_lvvFLbiPGoG7omszF0.roa (hash: WLXCnKipjggD7aV7lsVpIwB0+MMzwHxcfHMGEgytPNc=)
2: tD1On-OlSH0g8QABkWKRUPYo86E.crl (hash: vpGPi3TY5tLYk38kNNtWcUTwO7wNWQ9Sgw6Y4ZJNyps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:6c:58:3a:5b:8d:0f:f2:b4:18:76:f3:c5:bb:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Validity
Not Before: Mar 29 02:00:41 2026 GMT
Not After : Mar 30 02:00:41 2026 GMT
Subject: CN=69931a3640fe02c27f58767363ce386edf18840f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0d:a3:64:07:cf:e8:83:7e:b2:bb:20:c2:af:
f0:f1:f6:2c:e3:1d:02:32:b7:1b:eb:9c:ff:da:e5:
30:c4:cb:78:d7:eb:1d:2d:32:46:3f:f4:4e:c5:b9:
5a:56:c5:76:c4:8c:45:50:af:52:4d:de:6a:8b:64:
fe:5a:57:7c:82:d1:3f:63:7a:c6:bc:a1:17:cb:9d:
0e:65:d4:de:f8:6e:0d:2c:ad:29:cb:cc:e8:95:c4:
d7:4f:92:28:ff:e6:2a:d6:d1:d2:9d:2b:27:c5:9a:
de:3b:b6:a6:54:76:0d:fe:23:4f:9c:96:a3:35:44:
57:b2:bf:e8:6a:c6:b8:bc:ee:03:05:34:d7:e2:6b:
39:09:4f:14:d1:33:7e:ef:d8:ae:ea:bd:3d:20:a9:
93:7d:65:d7:9e:10:7a:3f:e0:c5:e7:8b:f7:9b:f0:
24:d4:03:f2:a1:63:70:58:b3:f1:bc:05:32:8e:a9:
c5:44:5f:65:91:4f:fc:c1:ae:52:1f:6b:be:02:bc:
db:81:8b:0d:b5:e1:60:50:2a:83:87:84:55:99:be:
05:ec:42:70:ac:0c:84:15:3a:1a:66:ea:16:fd:0b:
67:8a:59:78:25:b4:ae:eb:f9:76:09:8e:00:fe:65:
b7:74:72:67:d2:27:7c:27:a8:c1:5e:ff:06:6b:8e:
5e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:93:1A:36:40:FE:02:C2:7F:58:76:73:63:CE:38:6E:DF:18:84:0F
X509v3 Authority Key Identifier:
keyid:B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:41:6e:cd:19:b8:27:11:01:bd:5e:a1:1f:9a:08:af:63:bd:
8b:7d:37:bd:2c:d7:76:15:14:1d:01:19:58:ef:4b:5f:ee:d0:
d5:9e:3a:fc:69:b7:8c:61:85:dc:cd:81:c9:36:39:3d:ff:e2:
1f:39:55:49:1b:da:c4:b2:7a:c4:17:c0:8c:5b:6e:2a:26:85:
54:b5:04:96:df:1e:51:1f:b1:0d:ae:4f:9f:ad:9f:9e:42:0f:
1c:1f:46:6f:74:ec:77:6e:c3:c8:98:d8:ab:86:a2:42:e1:45:
de:73:2b:54:a4:7c:22:81:ee:11:d1:74:4b:8e:49:e2:94:69:
0c:4c:90:a8:54:ca:65:f3:fe:10:6b:5c:9b:08:1d:a4:f8:27:
16:b4:c7:c9:44:70:6b:6e:bc:3e:7b:99:cc:30:cf:da:59:20:
37:c1:c3:41:22:cc:16:10:8e:75:0f:74:83:33:8e:9a:13:55:
98:d7:1c:e0:4e:70:27:4c:ca:3b:64:a3:2b:c6:ed:3c:b4:43:
4e:d2:8b:56:20:ef:40:5c:1e:04:42:98:32:46:fe:ed:bc:ee:
1d:85:3f:6d:ea:2a:6a:a9:a6:59:35:80:a7:75:d3:e7:42:10:
b7:05:a9:5b:01:03:dc:73:a1:14:8c:2f:58:4b:a0:bf:50:5b:
00:c8:1a:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:42 2026 by rpki-client