Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
File: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft (raw, json)
Hash identifier: Bsce6O/EbXsfLjQwqSlTW8/pLw8ZZ+FbcGGW+X4/TjU=
Subject key identifier: 20:86:07:AD:91:41:95:90:29:2F:ED:EF:B9:AD:64:70:97:9D:66:20
Authority key identifier: D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
Certificate issuer: /CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Certificate serial: 019D38D3A2A024D597A4F80FB11190A8A65B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
Manifest number: 15D4
Signing time: Sun 29 Mar 2026 09:01:26 +0000
Manifest this update: Sun 29 Mar 2026 09:01:26 +0000
Manifest next update: Mon 30 Mar 2026 09:01:26 +0000
Files and hashes: 1: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl (hash: 2bcFy6B/SVENxlkLrLgd4sso/uCmf38XOPbBhfHMGFg=)
2: t0X5t_3y1eMrgSVfnROrir2IJb4.roa (hash: BPcyM2IeAIooAh+FVKFVf4qaLxjgFOkdsiFt2kQ2Eag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:a2:a0:24:d5:97:a4:f8:0f:b1:11:90:a8:a6:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Validity
Not Before: Mar 29 09:01:26 2026 GMT
Not After : Mar 30 09:01:26 2026 GMT
Subject: CN=208607ad91419590292fedefb9ad6470979d6620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:88:99:30:24:df:c9:56:bb:2e:bf:a6:67:fc:
96:a7:ab:fd:71:36:b6:4a:d3:3e:ba:7d:6f:1b:8b:
ea:09:f9:61:37:f9:7d:3a:14:fa:79:c6:fc:ad:80:
bd:b3:bf:9a:ae:be:5d:f6:b4:54:93:64:b4:5e:81:
cf:04:db:cb:29:fa:0c:e3:ad:a1:79:fc:a2:8d:d0:
37:72:44:17:f8:7c:95:47:f2:6b:ed:d9:8c:f6:57:
8a:87:e1:c1:9f:c4:de:c0:75:5f:5c:d4:d4:70:a6:
3e:4b:e5:35:c4:ac:22:e6:6d:e7:c3:50:62:c4:42:
03:82:12:2e:df:e8:d9:5c:7e:0b:28:e9:b2:c5:87:
15:5c:ea:13:d4:3c:0c:78:77:17:43:ab:73:07:8c:
a7:5f:7e:3c:06:5b:15:58:cd:77:5f:33:b4:95:23:
12:94:43:1c:2c:a0:81:0b:f5:c2:c9:9b:b1:74:5a:
87:51:8b:85:22:e6:03:41:2b:57:98:f4:b6:62:83:
91:f4:0b:df:c9:ff:18:fd:0d:d7:8f:77:68:f1:2b:
ad:16:fb:d2:3b:4c:1a:1a:c2:94:76:1f:db:81:3f:
01:80:ac:d0:34:03:b3:91:dd:af:07:7b:b9:4b:18:
ee:ee:bb:b1:53:28:d5:09:e6:2b:3a:98:a4:b7:f5:
c4:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:86:07:AD:91:41:95:90:29:2F:ED:EF:B9:AD:64:70:97:9D:66:20
X509v3 Authority Key Identifier:
keyid:D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:57:35:a9:1c:d3:7f:91:ce:d9:e0:c9:ad:32:1b:8a:24:fa:
e3:82:95:ca:ab:0f:61:27:7b:9f:8f:7e:bc:5f:ac:1a:ba:08:
2c:cd:17:2f:93:74:8b:fb:27:51:bc:27:da:7c:8f:e0:eb:b0:
56:68:4d:1b:a4:af:fb:d6:d5:80:61:24:af:fd:c5:37:57:20:
9c:2f:10:39:b7:b6:bc:3b:1b:47:44:39:dc:0d:6d:b7:a3:ef:
63:6e:59:f6:64:e1:60:8d:5a:72:ac:9d:64:cb:22:02:7e:6e:
b4:54:5f:82:85:e7:53:af:5e:27:52:bf:4e:ce:90:f8:ca:2c:
52:65:db:17:54:e6:72:83:a1:1a:60:2e:46:0b:bb:0a:ac:ab:
74:a4:d7:3f:f4:86:91:11:ea:5a:63:38:a2:d9:aa:92:c0:bf:
ba:03:f9:08:a6:f8:52:0b:96:e2:25:bb:1f:0b:2a:66:2e:b7:
50:cc:4e:74:92:dc:2a:56:3d:06:da:17:a1:43:86:57:4e:a6:
39:a4:34:a5:23:78:ff:02:f2:50:ea:ce:42:d3:74:d0:ba:86:
4e:b5:22:23:2a:28:5e:aa:f2:2d:00:3e:54:22:d6:4d:02:09:
c6:6e:ff:d3:33:8e:2b:eb:83:46:14:bb:04:6f:56:80:75:5b:
ca:4c:a1:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:03 2026 by rpki-client