Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
File: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft (raw, json)
Hash identifier: ggIs/D1hCoEOkoypMJZM5JO4Itzgt4MjIraD7SZ3KYY=
Subject key identifier: D0:42:19:08:B2:D4:A7:02:91:F8:8D:2D:40:12:EC:81:D8:AB:45:59
Authority key identifier: D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
Certificate issuer: /CN=d248185956e443b55b062200f964537bc10bc130
Certificate serial: 019E303B15A87A42C76DF6669422DA0FB7B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
Manifest number: 057F
Signing time: Sat 16 May 2026 10:00:38 +0000
Manifest this update: Sat 16 May 2026 10:00:38 +0000
Manifest next update: Sun 17 May 2026 10:00:38 +0000
Files and hashes: 1: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl (hash: UTkL9/j+C9tYIff5+A6W9aqEFRxq/rvoIqr6l3v7m+8=)
2: Xudz0hLe8s3SLmiPVONXMND3hRM.roa (hash: oORSmt43XgnSynXZgH2ISuQJ8Cm/DBrmnJwy75rrXHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:15:a8:7a:42:c7:6d:f6:66:94:22:da:0f:b7:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d248185956e443b55b062200f964537bc10bc130
Validity
Not Before: May 16 10:00:38 2026 GMT
Not After : May 17 10:00:38 2026 GMT
Subject: CN=d0421908b2d4a70291f88d2d4012ec81d8ab4559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d1:2f:c7:7f:9a:8a:e8:a4:ca:6d:cc:a5:5b:
4c:d3:eb:8b:75:bd:36:72:84:7b:56:bd:89:60:8d:
65:82:1c:d1:4f:ae:5e:ae:b2:ef:46:f6:f8:82:ab:
fe:ce:35:cd:ec:26:95:72:0f:f9:a2:eb:02:03:62:
ee:f1:55:5a:bd:a7:4b:94:87:29:31:73:84:41:b3:
75:b9:78:8e:3f:0e:3e:39:e0:49:bb:a0:81:bf:cf:
d7:0f:c5:8c:30:0f:0f:d3:23:6c:32:a4:ae:cf:64:
f3:28:fd:1e:6a:dc:39:fb:4d:8d:df:12:c8:d2:bb:
a9:e1:a7:dd:d7:ae:4e:ce:03:3b:87:ba:be:5a:86:
f5:b3:01:36:5e:60:85:0c:b9:77:f7:de:0e:27:0e:
04:44:6e:42:fc:49:8a:1f:b8:57:a0:07:05:de:33:
de:30:f9:f6:75:34:f4:cc:5d:f0:7a:97:e4:8a:4b:
29:db:3f:75:40:7f:5d:95:b5:a9:a4:78:ee:d5:57:
23:c2:ab:54:77:b6:fc:4a:85:3e:e7:fc:e0:8a:f0:
42:6c:15:94:2c:a9:e2:42:85:b4:e6:5c:9a:67:dd:
e9:51:fd:d3:ab:6a:d8:b5:8c:9d:5b:78:60:95:e0:
39:67:d5:c9:23:4f:11:07:5c:78:93:6a:54:7e:00:
d9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:42:19:08:B2:D4:A7:02:91:F8:8D:2D:40:12:EC:81:D8:AB:45:59
X509v3 Authority Key Identifier:
keyid:D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:96:79:f9:a5:49:1a:26:28:70:18:1c:37:c9:ca:d8:f9:d3:
46:e9:af:52:23:2f:8d:05:5a:af:bd:70:4c:ec:74:e0:66:de:
93:79:9d:a7:05:49:dc:49:4d:ce:f4:66:9a:2f:a9:93:7a:74:
a7:c8:9c:7e:88:8b:15:46:5d:7f:d5:79:ec:08:a7:f9:a1:36:
62:ea:8b:2f:aa:73:dd:01:96:ca:5d:6d:eb:f1:56:6a:1c:00:
7b:87:57:b7:12:3e:ee:3a:10:36:e4:6f:13:ba:db:f7:dc:48:
6a:4a:35:b2:5c:14:b5:ea:15:b7:db:8a:2c:bd:b2:92:8f:67:
60:96:ce:86:d2:d3:7a:88:7c:b4:b2:50:c0:fd:55:7c:48:b0:
21:51:fa:4c:05:b5:70:85:aa:37:4a:77:67:3c:cf:c0:fa:0e:
d3:6a:ef:91:38:93:27:d0:80:ad:85:c6:cf:d6:59:00:b9:76:
7c:2e:63:ba:03:ad:f9:f7:ee:c5:59:d3:11:a5:ce:a4:29:78:
34:c7:11:bc:92:d7:6e:1b:3a:94:81:a7:00:04:5e:4d:5e:61:
e8:ab:8c:d1:bc:3d:cf:14:1d:cd:9c:50:4c:ef:c2:88:05:ff:
0e:a2:50:a9:5d:d3:94:09:3a:d6:af:ad:0f:d3:c3:bc:87:85:
c8:2b:61:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:20 2026 by rpki-client