Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.mft
File: 02vm8HVADTBaFt3mkOJcvZRkXL4.mft (raw, json)
Hash identifier: XmTUs4JViv1HNYM6HtMjelunFd+NDF5ht/MwnrY11uU=
Subject key identifier: B2:FD:1E:71:52:8B:FC:95:61:71:AC:6C:04:38:66:D0:E7:09:F2:2A
Authority key identifier: D3:6B:E6:F0:75:40:0D:30:5A:16:DD:E6:90:E2:5C:BD:94:64:5C:BE
Certificate issuer: /CN=d36be6f075400d305a16dde690e25cbd94645cbe
Certificate serial: 019D38D304F1FF846B2112B13EB9D5540F47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02vm8HVADTBaFt3mkOJcvZRkXL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.mft
Manifest number: 17E1
Signing time: Sun 29 Mar 2026 09:00:46 +0000
Manifest this update: Sun 29 Mar 2026 09:00:46 +0000
Manifest next update: Mon 30 Mar 2026 09:00:46 +0000
Files and hashes: 1: 02vm8HVADTBaFt3mkOJcvZRkXL4.crl (hash: VtURZUmqlzZm/73cNBCR2ClYGZQ7/U+mybacEA1c9IM=)
2: tfcGfm5inMTt9cfihgrBHcgLBeA.roa (hash: wAYHYoqlbuhkIu13qc05BEwhuRgD+rXRGSKUOssyz4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/02vm8HVADTBaFt3mkOJcvZRkXL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:04:f1:ff:84:6b:21:12:b1:3e:b9:d5:54:0f:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d36be6f075400d305a16dde690e25cbd94645cbe
Validity
Not Before: Mar 29 09:00:46 2026 GMT
Not After : Mar 30 09:00:46 2026 GMT
Subject: CN=b2fd1e71528bfc956171ac6c043866d0e709f22a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:40:d4:80:9b:e6:2a:93:f8:bc:84:dc:db:59:
ea:7c:e0:fb:c1:76:08:49:88:e9:6d:f2:0a:67:2f:
d6:d0:db:dd:b6:3b:c2:cd:23:56:6c:99:8b:dc:f3:
c7:7f:40:b7:9d:2f:62:d6:31:b2:51:81:06:b8:b5:
2f:ab:58:5c:db:eb:c9:07:64:b3:85:e7:1f:c9:7b:
c3:44:1a:99:ac:0f:f6:79:22:59:29:07:bb:bd:93:
48:8f:be:4f:e1:15:c4:c0:a6:80:9d:71:c2:b8:05:
1c:11:72:ef:a3:7b:4b:e9:39:e9:fb:13:0b:1e:e0:
df:ff:4a:7f:78:01:ff:4d:79:a6:9b:88:a1:86:0e:
ac:ab:62:c4:5b:16:01:e1:6e:04:2f:8c:d7:8a:54:
e8:e9:6a:92:64:12:5e:2c:cc:77:17:00:07:63:4d:
91:74:db:fb:0a:59:df:b8:df:ce:f9:b8:f9:eb:f1:
fb:d4:47:f4:3c:f4:a3:9b:80:0e:6b:7a:ba:8b:5e:
33:b6:63:5d:56:f1:42:89:b9:9b:d1:5b:9b:41:7d:
91:71:fb:5a:7e:52:52:cf:46:87:75:be:ac:93:d5:
28:89:b2:ea:b2:20:8d:fe:74:f8:31:1c:6c:3e:b7:
57:0a:04:30:14:3f:db:28:27:f0:b3:4b:d0:09:d2:
76:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:FD:1E:71:52:8B:FC:95:61:71:AC:6C:04:38:66:D0:E7:09:F2:2A
X509v3 Authority Key Identifier:
keyid:D3:6B:E6:F0:75:40:0D:30:5A:16:DD:E6:90:E2:5C:BD:94:64:5C:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02vm8HVADTBaFt3mkOJcvZRkXL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:82:c9:4e:e6:fa:48:e5:c7:af:e1:a3:1e:13:2b:f6:b0:fb:
58:e9:e4:aa:65:cd:98:4b:04:c0:ae:c6:2a:0b:ef:46:9c:50:
e8:3d:60:76:ea:3c:3f:d9:49:62:7b:13:10:b2:b9:e4:4c:c6:
e5:23:30:f1:20:0f:d5:53:8a:74:ab:81:48:cb:97:bc:49:a6:
77:b0:b0:2d:c5:ac:5a:90:e7:b3:23:ab:2e:6b:b6:c0:c4:fc:
41:7b:0f:35:8d:c2:f0:10:e4:c4:e1:f0:34:58:87:5a:03:0f:
ab:9d:28:c6:3f:bd:9b:fe:fd:60:df:d6:58:87:df:99:27:97:
00:f5:ed:88:52:59:b8:84:83:80:05:15:09:19:5d:21:32:95:
8d:05:21:d7:93:c2:30:30:2e:36:2f:d4:e6:8e:28:5b:c7:24:
26:c5:49:3d:6e:ed:b1:a8:12:e5:a5:5c:99:a8:be:91:11:20:
4a:83:c6:0d:c6:84:82:4e:b3:c5:c0:55:e2:74:61:91:b1:fe:
85:cf:81:e8:e5:de:b9:ca:73:a0:10:e6:a5:38:5b:6f:80:b7:
1a:9d:9e:7d:49:ed:e0:a5:21:a6:c5:ee:0a:85:10:31:8c:75:
8c:45:a4:a6:3e:d8:cb:aa:98:1b:ee:5d:44:1d:18:f9:44:45:
66:97:33:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:54:53 2026 by rpki-client