Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
File: 0tiRsOMo58hWrUt6B2TYLYVgltY.mft (raw, json)
Hash identifier: aDtLnFh58jrI+SEs0TXORzTz8aYRBSh+cAmJH04usmk=
Subject key identifier: 0A:92:4B:59:B5:C2:ED:D2:C1:78:EE:CC:AF:08:CB:34:C7:20:1B:0E
Authority key identifier: D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
Certificate issuer: /CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Certificate serial: 019D39AE547466DD04EE558527D39B42BEA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
Manifest number: 04E3
Signing time: Sun 29 Mar 2026 13:00:19 +0000
Manifest this update: Sun 29 Mar 2026 13:00:19 +0000
Manifest next update: Mon 30 Mar 2026 13:00:19 +0000
Files and hashes: 1: 0tiRsOMo58hWrUt6B2TYLYVgltY.crl (hash: OLiL05EA8pTrFCUVedvQiUlZDdSSWMCc7U3eaZOSyuE=)
2: UCdWTcnF4ZVDrSnBvN43rU1Zk3A.roa (hash: Qw45xlTVvhAH55/GToKQCdfRTF8PLXCZ9h0uBYEUVtM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:54:74:66:dd:04:ee:55:85:27:d3:9b:42:be:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Validity
Not Before: Mar 29 13:00:19 2026 GMT
Not After : Mar 30 13:00:19 2026 GMT
Subject: CN=0a924b59b5c2edd2c178eeccaf08cb34c7201b0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:55:35:58:f1:f5:62:ef:f3:bb:79:ca:2b:62:
10:00:8d:ce:75:f4:5c:01:03:cc:ba:a4:bc:7f:33:
e4:af:75:80:be:b4:bf:15:35:7b:1e:74:cf:16:2c:
40:30:b8:a6:92:53:23:19:fd:16:d5:73:53:7b:35:
6d:30:80:29:3d:9b:95:ed:3c:7b:06:84:ba:c7:28:
56:ee:42:b5:ff:5c:1b:b4:02:d8:17:4f:2f:26:8c:
a6:cc:e9:6d:65:ae:a9:f2:fa:82:57:89:6f:2e:62:
1f:05:5e:b9:37:57:83:34:aa:7b:8d:5d:36:ff:8b:
e0:b6:a6:08:87:3e:9c:04:bd:83:6e:66:bb:69:bb:
15:87:9d:47:fd:14:b0:5b:4b:8f:4a:5c:22:cf:3f:
9b:1d:27:ee:f2:03:0c:07:fc:7b:82:e3:da:8f:a5:
73:59:db:d4:1a:1a:e6:4d:48:7b:9f:db:21:c8:a4:
ec:2f:7b:99:22:f2:10:7a:7b:d0:9f:29:a6:e9:c1:
02:47:0e:93:51:30:3d:50:d5:a4:a2:49:16:a3:62:
eb:43:99:3c:6c:07:3b:7f:08:61:d7:db:32:36:46:
e3:c6:15:33:9c:b0:ad:a3:4a:65:5d:06:3f:26:70:
cc:4a:ae:33:15:03:4f:5f:6c:e6:c9:60:c3:3a:2a:
ac:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:92:4B:59:B5:C2:ED:D2:C1:78:EE:CC:AF:08:CB:34:C7:20:1B:0E
X509v3 Authority Key Identifier:
keyid:D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:46:aa:86:d8:02:75:b4:48:4a:9b:61:b9:55:9c:00:5d:b4:
df:85:29:85:fa:8b:bf:25:6f:07:18:ef:5a:59:4a:9b:c5:74:
85:d5:7c:62:78:d1:94:85:20:5a:71:2b:0c:4c:a5:46:fa:0b:
5f:5f:cb:dd:df:46:ef:18:a7:91:ad:0f:51:3e:1e:d9:fd:c4:
5f:c1:de:0a:db:b1:92:42:aa:79:28:8d:68:1e:04:46:55:ee:
92:ae:76:85:d4:06:4c:28:e9:2a:1b:4f:b4:e8:51:ca:4a:e4:
34:3d:dc:85:8d:b4:49:a0:fd:6a:33:84:11:5e:48:46:29:75:
81:89:32:7d:9a:b8:a4:20:e4:dd:c8:6e:a8:51:23:6c:e0:31:
88:92:8c:cc:bd:2b:a3:af:e3:42:89:df:e9:70:e6:c1:79:e6:
b8:65:30:77:cc:c1:c1:aa:ed:a0:b2:ef:fa:ae:6e:70:f4:cd:
18:90:53:40:ec:10:e6:9c:e3:8c:33:ec:27:e8:03:82:18:64:
67:d2:3b:e0:3f:cd:8d:69:29:76:8b:73:71:e9:8a:b2:86:b0:
38:28:07:99:0d:10:b1:a7:31:72:b2:cb:d7:5e:e4:fe:f8:42:
96:c2:d3:a6:83:b7:50:cf:b9:36:95:48:60:29:b9:73:c7:e7:
27:5b:ca:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:48:36 2026 by rpki-client