Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
File: 0dI-JBGcupM36DRmSFv7EGsuJLY.mft (raw, json)
Hash identifier: zc7nE6pBlcgXT/O0+EDx93u3GFfg8sZeBoVtYXs5aWI=
Subject key identifier: F9:43:F6:08:02:4A:A3:CB:F3:A5:AE:D9:F0:70:D5:0C:FB:09:BD:FE
Authority key identifier: D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6
Certificate issuer: /CN=d1d23e24119cba9337e83466485bfb106b2e24b6
Certificate serial: 019D37F7084104D24C7C0AE6E1B49548CF94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
Manifest number: 02D7
Signing time: Sun 29 Mar 2026 05:00:29 +0000
Manifest this update: Sun 29 Mar 2026 05:00:29 +0000
Manifest next update: Mon 30 Mar 2026 05:00:29 +0000
Files and hashes: 1: 0dI-JBGcupM36DRmSFv7EGsuJLY.crl (hash: v904zsTMFzdXWaIp84X/paD99p5KBQFOIH1oTNx9JFY=)
2: GBJ2X2TfbSwmmzgVVsME19XqtSw.roa (hash: 8eDDx0cI0Ia4YPWxch5djmmuUUa69P9GBwa1jUZnCWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:08:41:04:d2:4c:7c:0a:e6:e1:b4:95:48:cf:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1d23e24119cba9337e83466485bfb106b2e24b6
Validity
Not Before: Mar 29 05:00:29 2026 GMT
Not After : Mar 30 05:00:29 2026 GMT
Subject: CN=f943f608024aa3cbf3a5aed9f070d50cfb09bdfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7e:aa:7d:24:19:07:20:99:de:ff:72:d8:42:
3c:13:c4:30:26:ab:f0:85:32:2c:4a:9a:a1:93:3e:
3f:3b:74:ef:9d:7d:19:69:2d:4d:a9:50:22:4f:76:
7f:bf:10:37:3d:2b:1a:5d:e4:1e:54:26:46:f8:c3:
31:45:1c:8d:f0:30:74:c9:bd:c3:83:13:3a:05:99:
8d:62:53:a1:dc:26:2d:7f:00:1a:14:25:48:30:8a:
eb:23:86:56:3f:1c:71:aa:30:3d:34:88:4e:b9:77:
6a:1a:6c:b3:c7:8f:2e:67:bc:13:71:2f:e0:3f:d8:
3c:1b:7c:41:6d:43:de:2d:b5:33:52:89:9c:a6:4a:
6f:f4:fa:fc:10:27:03:64:6c:50:6a:6d:53:16:43:
54:d6:83:8d:c2:35:59:4e:fb:b5:c5:ad:02:1f:05:
6c:72:dd:74:2c:d8:ae:0a:7d:61:64:34:2c:c7:e9:
1a:4e:4f:64:f3:a6:0f:f0:76:3b:b9:b9:6d:d3:38:
f4:c7:c9:91:75:a6:67:71:f4:ff:c6:0d:86:df:c2:
b6:54:b3:64:49:a1:72:d6:4a:e9:7f:90:d0:b2:11:
29:e7:c9:9e:1d:92:c4:5e:00:cf:f3:11:4e:a4:2d:
a7:cc:3f:44:02:f8:85:c0:bb:24:c2:a3:4f:24:47:
0d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:43:F6:08:02:4A:A3:CB:F3:A5:AE:D9:F0:70:D5:0C:FB:09:BD:FE
X509v3 Authority Key Identifier:
keyid:D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:ab:be:b2:71:9c:84:57:5c:43:bc:ea:80:10:70:6b:18:a9:
1e:fa:0a:50:47:04:ee:12:37:0c:a5:47:48:7c:33:92:08:d1:
14:51:a8:8c:b7:82:10:11:a8:f3:3f:7a:29:be:92:63:f3:c2:
18:e2:8a:a4:e9:75:4c:94:16:b6:c2:5e:8f:29:69:85:6f:14:
ad:e4:7a:34:9c:84:a2:83:1c:15:a4:13:97:bd:0a:cb:d7:d8:
5a:ee:50:ef:49:80:69:56:e9:00:c5:d0:1b:8c:ec:eb:d9:1b:
45:96:f3:19:8a:b3:3e:68:b7:48:a8:66:48:ac:2b:a6:5f:10:
8f:e0:9a:09:7a:de:ff:ff:36:39:5f:83:c4:a1:16:ec:5f:06:
f0:77:ca:7d:7c:e0:cd:ad:35:c6:7c:2d:c2:15:3a:2a:59:6d:
5c:f4:fc:9c:9c:ea:fb:3f:26:2a:3c:d0:ea:bb:4d:26:c7:95:
57:28:93:e2:78:c1:33:27:67:a6:34:ec:d2:3c:4d:d8:eb:d0:
d5:47:7e:7d:ac:b6:ad:2f:29:1d:03:9b:2f:93:bc:be:d7:e1:
c3:3f:3a:5f:8d:5e:08:e6:d8:12:f6:10:05:76:9b:32:94:7a:
77:dc:a5:79:b6:57:bb:cf:ed:a6:20:4d:81:8a:8d:ed:da:4f:
70:1c:06:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:26:05 2026 by rpki-client