Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
File: CtBt0nvZOjgNpMddGovwdoKP1ko.mft (raw, json)
Hash identifier: KxuAZw/QddILpqkmbaPjZA/kn9IaIC9wbiqDT4rHGek=
Subject key identifier: 99:28:00:FD:A5:55:99:F4:5D:AC:4F:2B:62:C0:F3:DB:83:CA:43:F4
Authority key identifier: 0A:D0:6D:D2:7B:D9:3A:38:0D:A4:C7:5D:1A:8B:F0:76:82:8F:D6:4A
Certificate issuer: /CN=0ad06dd27bd93a380da4c75d1a8bf076828fd64a
Certificate serial: 019DCD8683117DBDC97F5F5EF0B6CAC19FF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
Manifest number: 0BD5
Signing time: Mon 27 Apr 2026 06:00:37 +0000
Manifest this update: Mon 27 Apr 2026 06:00:37 +0000
Manifest next update: Tue 28 Apr 2026 06:00:37 +0000
Files and hashes: 1: CtBt0nvZOjgNpMddGovwdoKP1ko.crl (hash: 58NzRTyCAXxhi4mr5BG77xcNOlmPx3BR4JMdfIeTWko=)
2: rRTCz9gdKZmCD2CPH7ZEPITaxno.roa (hash: IkdpUdMuuhLbUbcbS19kzqtq8+mEc9r+5ZSOWumJXFc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Apr 2026 23:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:86:83:11:7d:bd:c9:7f:5f:5e:f0:b6:ca:c1:9f:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ad06dd27bd93a380da4c75d1a8bf076828fd64a
Validity
Not Before: Apr 27 06:00:37 2026 GMT
Not After : Apr 28 06:00:37 2026 GMT
Subject: CN=992800fda55599f45dac4f2b62c0f3db83ca43f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a0:fd:15:e0:3a:cf:80:2f:e2:15:ba:0d:4f:
40:8f:c8:f1:05:0c:84:31:0b:fc:09:8d:c4:10:89:
df:17:74:34:2b:04:9d:f6:c4:bc:40:8f:a1:97:bd:
a0:67:03:de:44:3a:66:3f:b9:c8:da:47:bd:08:52:
85:77:25:ea:31:de:04:1a:73:1e:1c:9d:8f:45:67:
75:3f:4c:55:b4:e4:9d:f7:1e:8b:1b:7a:78:36:21:
7c:71:b6:6c:c9:d6:86:5b:94:a4:2f:11:90:df:41:
bd:f7:b6:69:42:46:27:cf:b3:df:05:e5:1c:4d:74:
8a:89:f5:5b:cc:18:e9:9b:16:d5:66:e0:c5:cc:bf:
17:cf:74:cb:dd:3f:3f:95:c3:de:5f:73:44:81:c6:
84:47:6b:be:83:a6:3f:31:8c:ea:51:31:c4:63:d8:
c5:0d:69:f6:c2:2d:5f:df:9e:59:05:a7:ee:ce:36:
4d:09:6e:95:2d:84:cf:9b:f6:19:bc:db:63:13:13:
87:30:28:20:6a:4b:e1:e3:fb:ea:12:17:77:5f:2d:
30:f8:49:89:18:2c:3f:20:ed:55:3c:26:57:0f:47:
69:ad:a8:23:40:81:be:87:63:01:58:31:5d:4e:59:
8c:5f:6f:35:69:a7:7b:fc:d7:ec:b3:a2:0c:4a:b4:
13:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:28:00:FD:A5:55:99:F4:5D:AC:4F:2B:62:C0:F3:DB:83:CA:43:F4
X509v3 Authority Key Identifier:
keyid:0A:D0:6D:D2:7B:D9:3A:38:0D:A4:C7:5D:1A:8B:F0:76:82:8F:D6:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:c6:a6:a3:63:3e:dc:38:49:7a:55:aa:dd:14:e6:ce:c6:ad:
89:db:20:47:76:51:fe:94:d1:22:c7:84:99:aa:15:42:7a:7d:
e3:e9:fd:cc:8c:bd:cd:a9:79:2a:df:cc:38:c7:89:21:86:1f:
8a:bd:4e:89:c4:23:85:76:77:63:69:be:ec:28:c2:a0:11:19:
c7:8a:23:2d:3c:b6:36:20:65:1d:02:11:4e:2a:25:d4:94:39:
03:74:fd:1f:33:51:5a:67:eb:17:df:d6:02:f8:dc:f0:19:7e:
d7:80:c0:02:56:7d:c6:56:06:46:5e:15:8c:2d:5d:e4:81:7f:
ad:8d:13:34:01:a5:58:21:fb:29:e7:2b:e0:52:bc:0f:20:70:
9b:fc:b8:59:07:cf:d9:fd:81:5e:e0:76:32:29:8b:f7:ca:a7:
4d:96:07:5b:cc:ce:3a:ee:54:5e:a6:96:1e:81:50:22:a6:83:
0e:9d:45:35:83:ae:65:5a:91:06:73:eb:77:3f:10:99:8d:39:
2d:d0:fd:e5:27:8e:4f:58:9c:4f:6e:a5:38:83:5c:0c:d9:44:
c4:b0:aa:b4:8c:df:c6:a9:a8:44:25:25:f6:d8:5f:1a:16:48:
17:c0:2e:7e:00:94:a9:86:af:33:f1:77:1a:8a:73:9a:e9:4f:
0a:02:a9:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 09:16:34 2026 by rpki-client