Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
File: 0RIqXLBkP3NsfseWGAmiWThmjw4.mft (raw, json)
Hash identifier: 2huws+JMm2WXH0LiCYrVW/SC5Gvbm4ovfHfmEZXkKjM=
Subject key identifier: F3:14:61:8F:05:00:27:52:9F:FC:E2:EF:BB:89:88:B9:F1:C4:91:B5
Authority key identifier: D1:12:2A:5C:B0:64:3F:73:6C:7E:C7:96:18:09:A2:59:38:66:8F:0E
Certificate issuer: /CN=d1122a5cb0643f736c7ec7961809a25938668f0e
Certificate serial: 019D382E56A1612C205D5668052E264B8935
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
Manifest number: 1893
Signing time: Sun 29 Mar 2026 06:00:54 +0000
Manifest this update: Sun 29 Mar 2026 06:00:54 +0000
Manifest next update: Mon 30 Mar 2026 06:00:54 +0000
Files and hashes: 1: 0RIqXLBkP3NsfseWGAmiWThmjw4.crl (hash: qAswVkotFBgB6qN5+9xFPpDoHVSiPJANbRfxdyD27yw=)
2: fSmn7fdIQV-BhV-TX9ikmCr8pz0.roa (hash: aPwivrJczNCFzMJcf0LFQLamq3ppdLsG7e6V+tPBFE0=)
3: zlj3QQBO1pX9fbxSwUBHMbiiOHk.roa (hash: d8BRjHjOAoCosOpbXFORgs5eLwaEvFtFykIWpPWeeu0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:56:a1:61:2c:20:5d:56:68:05:2e:26:4b:89:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1122a5cb0643f736c7ec7961809a25938668f0e
Validity
Not Before: Mar 29 06:00:54 2026 GMT
Not After : Mar 30 06:00:54 2026 GMT
Subject: CN=f314618f050027529ffce2efbb8988b9f1c491b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:52:45:97:a8:dc:fa:ed:35:70:7d:f1:8c:53:
3e:0a:0b:82:81:b9:24:93:e5:40:32:ee:80:cc:9f:
cf:d8:1f:96:e0:55:e6:d0:c6:0c:ea:91:25:03:f0:
47:0d:c9:98:fa:a1:8b:a3:08:31:67:18:39:0c:14:
7b:c5:e0:61:74:50:62:c3:6d:ca:ab:22:b1:1a:9b:
e6:95:32:58:62:67:7d:d4:1e:cf:22:de:03:f1:ae:
e1:f5:f7:00:c9:be:52:a3:19:28:6f:23:7b:ad:0c:
52:3f:69:ba:0d:3b:51:15:b2:f5:e6:b2:41:6e:58:
48:6c:e0:dc:a5:d7:7e:7c:72:dc:2f:4c:3b:39:b5:
33:41:34:1c:c8:28:49:74:ad:13:35:50:64:dd:e8:
ec:85:5b:ab:80:3e:3f:41:a2:aa:cf:e0:6c:27:18:
90:3a:13:cf:21:3e:eb:b9:01:d9:d9:df:fe:4b:47:
40:be:fa:70:bb:22:de:21:3e:87:1a:1b:10:35:8e:
b5:f9:83:a6:9c:66:b2:7a:a9:7b:7c:30:ab:e2:d6:
de:c8:3e:fe:7d:67:09:2a:d2:ca:92:4d:cb:67:a3:
68:45:9b:d4:c4:8a:50:eb:0e:38:16:7f:53:bd:67:
14:07:5d:45:69:c3:ee:ef:fe:12:8a:3b:48:10:b2:
83:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:14:61:8F:05:00:27:52:9F:FC:E2:EF:BB:89:88:B9:F1:C4:91:B5
X509v3 Authority Key Identifier:
keyid:D1:12:2A:5C:B0:64:3F:73:6C:7E:C7:96:18:09:A2:59:38:66:8F:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:c2:f3:d6:0d:63:09:78:69:6b:65:a5:a4:5a:93:72:e7:f2:
38:4b:5a:d0:0f:45:a1:4b:0a:34:b5:a3:d9:f1:00:0b:16:41:
93:d6:97:1b:5d:c5:9c:74:85:3b:65:5c:f0:1c:42:b3:11:4d:
b1:3c:9c:69:57:7f:1c:9f:f8:aa:5c:1b:ae:44:97:b6:0a:fc:
24:7f:ac:7c:dc:78:85:4e:f3:09:19:16:49:ef:56:6f:3a:9a:
87:87:fd:90:ff:32:34:ce:58:9d:51:95:4c:f4:76:43:66:64:
b4:c9:86:e6:a6:65:63:56:5f:3f:84:42:47:f3:18:b6:c8:8b:
91:2c:db:64:84:ec:9a:20:57:40:73:ed:c8:d6:0a:25:08:04:
a6:16:16:49:0d:6e:87:d2:cb:c5:4f:97:2a:70:cf:63:5c:bc:
d9:cc:5d:c5:61:80:72:9f:29:4d:f4:8e:04:3b:8e:7f:9e:be:
0e:94:30:b7:7e:26:84:71:41:89:48:68:68:20:4b:62:63:b5:
a3:c7:43:33:98:df:2b:09:d1:89:11:48:63:4c:43:9e:4a:84:
c6:da:0d:e7:1c:c8:c8:94:7a:7d:16:78:7b:ef:85:d8:c4:b9:
b7:0c:0a:46:97:32:c3:4f:e9:ff:1e:84:c8:a3:5f:ef:99:23:
eb:aa:5f:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:48:26 2026 by rpki-client