Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json)
Hash identifier: 6YEaVselCrmN9DPmeJRn5oHSqwAqUO0sD0TYGYN0hg4=
Subject key identifier: 61:6A:FC:6D:C1:72:0A:AC:94:3B:B1:FE:E7:BF:25:5C:F7:89:A9:49
Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8
Certificate serial: 019E30A9672384AF5AE0912BAE1272CC8A83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 12:01:08 +0000
Manifest this update: Sat 16 May 2026 12:01:08 +0000
Manifest next update: Sun 17 May 2026 12:01:08 +0000
Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: hjulj1n9D/brL4dDw2SsGkyOh59E22t5GTzGuZR65Zo=)
2: pQs3JKfMOeGGwz6xcK4hqR0QChk.roa (hash: +rzonnKLVZvpF/nb1uT59jY0FH0KqsDx047Wn251P8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:67:23:84:af:5a:e0:91:2b:ae:12:72:cc:8a:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8
Validity
Not Before: May 16 12:01:08 2026 GMT
Not After : May 17 12:01:08 2026 GMT
Subject: CN=616afc6dc1720aac943bb1fee7bf255cf789a949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:96:8c:cc:eb:f2:8b:12:f7:90:cf:26:54:53:
18:9f:57:8b:2a:0e:17:7c:71:3b:a2:34:fb:a0:9d:
00:25:6b:e5:ea:6d:50:d9:f7:11:23:f4:b1:c4:95:
37:81:23:d8:6f:d2:c4:67:61:d3:31:35:26:9c:99:
80:cb:03:fc:3e:16:0a:46:25:46:6d:0b:c2:ab:d5:
4e:37:5f:6a:52:ce:0a:1a:e1:ab:d4:63:68:37:1d:
63:6a:d0:31:c3:4f:b1:be:4f:9e:2c:92:9e:2b:72:
14:e3:ca:48:c6:c9:d3:6f:e8:80:01:8e:1e:c1:4c:
ae:af:53:53:97:c2:3c:46:3b:42:f0:16:5f:26:06:
f5:bf:cb:fc:9a:e0:ef:df:61:f1:90:89:8f:d1:4f:
75:8b:0a:f5:fe:b6:20:70:fa:1e:a1:79:fd:dd:76:
77:12:65:78:f0:ef:f7:c4:87:bb:8d:1b:ae:5e:29:
34:a3:bd:9f:d5:b5:a2:6d:55:94:d9:15:33:e5:c9:
bd:1a:4b:50:b8:cb:0e:d7:4a:5a:fd:d9:bb:4c:45:
4a:32:f7:93:f5:59:f6:1f:be:74:1d:99:00:a0:a5:
ab:05:62:97:66:9e:5d:be:81:60:c8:95:f0:e0:51:
fa:17:f4:90:48:29:d1:e6:e0:09:8e:5e:0d:91:bc:
ab:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:6A:FC:6D:C1:72:0A:AC:94:3B:B1:FE:E7:BF:25:5C:F7:89:A9:49
X509v3 Authority Key Identifier:
keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:6d:29:c7:1f:26:0e:f7:c1:f1:ba:6c:81:81:8f:93:d7:83:
79:00:27:97:09:96:d3:5b:17:c9:d0:d5:37:2b:70:f7:47:e2:
66:7e:60:16:ee:13:2e:9a:8f:2c:06:45:23:86:27:a7:ae:1f:
76:2a:54:41:30:69:12:ee:0b:80:5f:5d:a1:12:03:98:06:37:
0d:4a:0a:62:67:09:62:29:db:d6:ab:6d:5c:d2:40:61:e4:b2:
bb:3a:95:46:79:36:d8:3e:33:8a:af:a4:d4:4b:3c:9a:f3:1c:
90:42:b0:88:93:d4:22:3c:74:ff:66:a3:f2:00:92:e3:22:9e:
1e:6a:4e:68:96:75:93:1e:f1:d1:9e:ef:09:d4:56:27:e1:dd:
33:86:47:24:6b:5c:aa:70:a9:03:e6:94:e6:e2:c8:d4:da:9d:
4e:d2:c5:10:32:db:c2:81:b0:45:b8:0f:8e:98:be:e6:2f:bf:
ff:a4:e6:8f:be:21:d8:5b:83:aa:44:e8:ff:cf:22:ad:f1:6c:
de:ad:63:58:a5:7c:43:87:0f:77:50:ac:68:fc:96:cc:1a:e4:
1c:57:bc:29:2d:57:6a:16:1c:b5:5d:e0:1a:0c:20:7c:d6:d4:
2e:d4:cb:9f:58:eb:31:8b:0c:6b:1b:fb:43:a9:a9:7b:c1:5b:
d2:2e:4f:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:55:12 2026 by rpki-client