Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
File: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft (raw, json)
Hash identifier: MQjpS5jh2C9nsE121VT9NoO8gzQoXuyzXSTprdgjL7Q=
Subject key identifier: 69:9A:CE:59:09:E1:26:4E:0A:CC:B8:E6:39:C3:AD:41:AF:D3:2D:CA
Authority key identifier: D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
Certificate issuer: /CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Certificate serial: 019D37897E35F825463F08917859E9384251
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 03:00:50 +0000
Manifest this update: Sun 29 Mar 2026 03:00:50 +0000
Manifest next update: Mon 30 Mar 2026 03:00:50 +0000
Files and hashes: 1: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl (hash: umLOP7rcHDB+olGoclpr6+WlTjJOiBOEgZPULVGFaxQ=)
2: qB-yYmmoZAETKywXU4O90SMz9p4.roa (hash: zSfrh0GvpLorIoRjiLIdctGLnu0vrYxfcdrku/RI+Pw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:7e:35:f8:25:46:3f:08:91:78:59:e9:38:42:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Validity
Not Before: Mar 29 03:00:50 2026 GMT
Not After : Mar 30 03:00:50 2026 GMT
Subject: CN=699ace5909e1264e0accb8e639c3ad41afd32dca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:88:8c:b5:16:7a:2a:15:83:a8:5e:05:ad:ea:
e5:0f:17:4c:c3:7f:6a:0a:5e:4b:df:22:ff:fe:d0:
63:60:93:4a:82:ea:63:50:63:36:40:79:c5:3a:1f:
f8:73:5a:bc:84:c8:e5:42:8a:60:83:0a:cb:23:f8:
c0:28:17:ff:25:13:88:c2:d3:87:04:b5:5a:47:41:
e6:08:52:de:81:54:84:f2:32:4e:b0:87:78:12:2f:
2d:2d:26:1a:80:98:bf:66:0c:3e:53:36:64:04:6f:
8b:8d:c9:b1:0d:0c:70:21:b0:78:d6:4e:24:5f:94:
dd:ec:d6:f0:b3:bf:b5:bc:e4:37:d0:4c:2c:d1:45:
19:12:68:1a:40:15:12:81:17:28:f9:25:7c:29:de:
68:9a:7b:f7:a1:ae:7c:49:6e:f6:95:c9:ee:da:d7:
35:0e:a2:aa:ef:8b:bd:67:4a:5c:8d:51:8e:2e:6d:
c4:f0:90:60:e5:ac:9c:09:ef:b0:e7:8f:1f:19:25:
17:26:41:7a:79:25:eb:64:5e:bc:d5:49:0e:17:37:
fa:e0:46:44:96:26:6f:fb:f7:e7:40:f6:f4:48:1a:
94:4a:c0:05:5f:55:d4:46:d3:2e:57:57:25:67:9a:
6a:66:b3:aa:c8:c1:48:9c:b2:1d:13:fb:82:01:0e:
93:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:9A:CE:59:09:E1:26:4E:0A:CC:B8:E6:39:C3:AD:41:AF:D3:2D:CA
X509v3 Authority Key Identifier:
keyid:D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:15:db:a6:16:cb:70:25:66:a7:82:b8:a5:aa:e9:64:b7:6c:
dd:87:d0:17:9d:1e:1a:1f:da:26:14:eb:d3:0b:5b:47:5e:7d:
14:14:11:4e:c3:e8:0f:a9:b7:74:cd:57:6a:03:2c:17:4d:3e:
be:c5:85:a9:fa:3a:55:6e:cd:2b:eb:6b:49:fc:b0:88:01:62:
5a:55:9e:58:29:c8:11:99:d9:5f:6f:cd:40:33:26:26:94:00:
25:92:b8:25:8f:95:3e:e0:3c:ee:09:cb:ad:0d:9f:07:1a:d0:
ed:dd:b7:e9:22:26:11:15:78:33:e7:ce:c5:dc:98:9a:48:11:
5e:06:7e:90:6a:64:92:cc:19:8d:22:4c:20:03:55:1b:02:ab:
38:d4:2a:3f:a6:9b:63:8e:74:4a:ad:cd:13:80:1d:6b:53:c0:
f1:39:7b:46:9d:1c:57:a1:22:2f:f5:02:05:f3:dc:13:c0:a2:
2d:95:d3:4f:b8:4e:b2:9d:81:38:3c:2c:2a:04:48:e6:1e:ad:
3d:a7:55:90:d1:e0:2e:05:94:35:e0:01:4b:69:81:8e:f7:48:
24:df:a6:51:74:64:61:ab:a6:06:b3:89:39:4f:7b:67:fd:c6:
d2:36:8c:02:11:e7:58:4b:56:ba:19:1d:ff:d1:49:96:a5:c6:
6b:89:30:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:41 2026 by rpki-client