Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json)
Hash identifier: xnJT1JeothxWnZBLh6RQ6sxGs31f3TTOCk3NfX8/bO0=
Subject key identifier: 17:D3:B5:15:13:5D:55:F0:38:F6:88:B0:4F:43:53:03:C5:7D:EF:07
Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8
Certificate serial: 019D3789148403DBD58418BE8D754A15D22C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 03:00:23 +0000
Manifest this update: Sun 29 Mar 2026 03:00:23 +0000
Manifest next update: Mon 30 Mar 2026 03:00:23 +0000
Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: GOEWXPe1VXuncekg5RxiLkEcLYZJDDazJxVO8IdnY1s=)
2: pQs3JKfMOeGGwz6xcK4hqR0QChk.roa (hash: +rzonnKLVZvpF/nb1uT59jY0FH0KqsDx047Wn251P8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:14:84:03:db:d5:84:18:be:8d:75:4a:15:d2:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8
Validity
Not Before: Mar 29 03:00:23 2026 GMT
Not After : Mar 30 03:00:23 2026 GMT
Subject: CN=17d3b515135d55f038f688b04f435303c57def07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:94:6e:d4:33:81:08:10:79:c2:a6:47:4f:50:
c3:2b:7e:1a:83:de:d3:38:7e:03:a4:d9:3b:58:0a:
71:e8:e3:62:da:ba:13:cd:76:fc:af:ae:3c:d8:bc:
cb:08:25:06:b8:e5:c3:e8:01:bd:3a:08:b9:8a:27:
22:f9:ad:36:23:fa:3d:3d:c8:00:35:ae:7e:ff:cf:
2d:3d:bc:22:02:1f:94:84:49:88:ec:3f:c6:9a:f3:
37:44:80:59:fc:e2:40:1a:d4:f4:a4:4d:37:39:b3:
0c:56:b9:08:f0:3a:df:16:2e:48:be:2f:58:c7:ac:
a5:86:60:a6:4c:57:7e:4a:71:bb:7d:e2:cb:bc:86:
80:cb:51:e5:00:98:2f:01:32:6a:ef:32:b5:6b:0d:
21:91:f7:b5:f2:d5:1f:e3:c8:5f:93:68:8f:a9:57:
28:cd:3b:c3:0f:75:f6:df:f7:79:db:ed:cd:de:47:
c6:c5:cd:f4:53:a2:b9:91:82:7c:be:6b:e0:75:cc:
e8:7a:a4:df:15:39:f5:07:49:61:4b:6f:e0:ae:69:
dc:17:71:29:e4:63:bd:7b:af:bd:8f:71:07:f0:c5:
c8:54:3a:7e:1f:0c:e4:9d:46:8a:b1:63:6a:46:6f:
2d:47:06:a8:ef:0e:3b:a7:ed:66:be:b7:2d:37:9e:
5c:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:D3:B5:15:13:5D:55:F0:38:F6:88:B0:4F:43:53:03:C5:7D:EF:07
X509v3 Authority Key Identifier:
keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:6d:a8:ab:eb:32:9f:f1:82:98:ea:dd:c2:c4:51:4f:18:07:
e0:37:96:e4:06:24:8e:3a:c0:17:2c:42:b5:21:d9:96:4b:21:
fa:03:36:00:61:6f:99:84:a8:9c:6d:3e:86:8e:ca:bd:43:84:
e7:dd:ac:26:18:06:24:a1:1d:86:83:c0:d2:5d:1c:9c:e8:65:
3d:1e:11:4a:25:10:da:dc:22:06:8f:04:cc:c3:bb:e7:81:7b:
67:1d:06:31:b9:bd:f8:b3:41:68:e7:f7:e3:46:45:49:32:55:
89:ab:01:aa:23:d1:f6:1c:d6:53:a3:a3:a7:87:ed:91:c0:27:
9f:97:6b:b9:31:67:87:db:97:28:f2:4e:08:88:2d:f3:ae:85:
43:01:c9:bb:9e:d9:72:0a:d5:6a:20:22:fc:0e:0a:54:57:0b:
05:ee:12:43:7e:f1:69:da:3c:b1:a1:9d:51:2c:15:80:f7:24:
e4:10:8e:09:5c:d7:2d:11:39:bf:e6:30:40:cc:a1:61:60:a0:
ed:e2:18:28:6f:d6:04:e4:7b:11:22:7e:af:bc:c6:1d:c8:0c:
cc:d7:e6:f3:e2:15:48:c2:ce:44:e8:32:d1:79:b5:d0:ea:23:
52:6e:44:71:2b:22:e3:e0:89:2b:8c:a4:ef:92:37:37:3f:68:
3b:7e:c4:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03iRSEA9vVhBi+jXVKFdIsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxZGRhODMyNzY5YzMxNjgxZjgyNTY4NTE0NzM2OGFmM2Ex
MWY2ZjgwHhcNMjYwMzI5MDMwMDIzWhcNMjYwMzMwMDMwMDIzWjAzMTEwLwYDVQQD
EygxN2QzYjUxNTEzNWQ1NWYwMzhmNjg4YjA0ZjQzNTMwM2M1N2RlZjA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn5Ru1DOBCBB5wqZHT1DDK34ag97T
OH4DpNk7WApx6ONi2roTzXb8r6482LzLCCUGuOXD6AG9Ogi5iici+a02I/o9PcgA
Na5+/88tPbwiAh+UhEmI7D/GmvM3RIBZ/OJAGtT0pE03ObMMVrkI8DrfFi5Ivi9Y
x6ylhmCmTFd+SnG7feLLvIaAy1HlAJgvATJq7zK1aw0hkfe18tUf48hfk2iPqVco
zTvDD3X23/d52+3N3kfGxc30U6K5kYJ8vmvgdczoeqTfFTn1B0lhS2/grmncF3Ep
5GO9e6+9j3EH8MXIVDp+HwzknUaKsWNqRm8tRwao7w47p+1mvrctN55c8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBfTtRUTXVXwOPaIsE9DUwPFfe8HMB8GA1UdIwQY
MBaAFNHdqDJ2nDFoH4JWhRRzaK86Efb4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGQyb01uYWNNV2dmZ2xhRkZITm9yem9SOXZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81YTZkM2MtMTdkYS00NGQzLWE0MDIt
ODYyMzZiYWMxMzA4LzEvMGQyb01uYWNNV2dmZ2xhRkZITm9yem9SOXZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC81YTZkM2MtMTdkYS00NGQzLWE0MDItODYyMzZiYWMxMzA4
LzEvMGQyb01uYWNNV2dmZ2xhRkZITm9yem9SOXZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADm2oq+sy
n/GCmOrdwsRRTxgH4DeW5AYkjjrAFyxCtSHZlksh+gM2AGFvmYSonG0+ho7KvUOE
592sJhgGJKEdhoPA0l0cnOhlPR4RSiUQ2twiBo8EzMO754F7Zx0GMbm9+LNBaOf3
40ZFSTJViasBqiPR9hzWU6Ojp4ftkcAnn5druTFnh9uXKPJOCIgt866FQwHJu57Z
cgrVaiAi/A4KVFcLBe4SQ37xado8saGdUSwVgPck5BCOCVzXLRE5v+YwQMyhYWCg
7eIYKG/WBOR7ESJ+r7zGHcgMzNfm8+IVSMLOROgy0Xm10OojUm5EcSsi4+CJK4yk
75I3Nz9oO37ELw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:52:26 2026 by rpki-client