Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
File: 0PFLigjLX4BX1IsD5T9Fi44f7tY.mft (raw, json)
Hash identifier: gWu39Ni75lo58bp89FldqkrM3f5ckFk0tqjf1YmdYg0=
Subject key identifier: 41:7B:13:B5:16:85:E0:05:74:E9:C3:D4:7D:B3:B4:7A:08:49:3A:C6
Authority key identifier: D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
Certificate issuer: /CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Certificate serial: 019D371BF92F6E16A7944FC4B9EE7E95D6D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
Manifest number: 04DD
Signing time: Sun 29 Mar 2026 01:01:13 +0000
Manifest this update: Sun 29 Mar 2026 01:01:13 +0000
Manifest next update: Mon 30 Mar 2026 01:01:13 +0000
Files and hashes: 1: 0PFLigjLX4BX1IsD5T9Fi44f7tY.crl (hash: Ua2pfAToY+ngAvkzlmN+acC6ZhKdYs3+oalPeS7NT0s=)
2: Yp5EzvNAptv0FF3dq0dG-qbNXDE.roa (hash: rEVjSa04WTwHqfNGkpfReSocSUSeb47hyl6D9pld43I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:f9:2f:6e:16:a7:94:4f:c4:b9:ee:7e:95:d6:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Validity
Not Before: Mar 29 01:01:13 2026 GMT
Not After : Mar 30 01:01:13 2026 GMT
Subject: CN=417b13b51685e00574e9c3d47db3b47a08493ac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:dd:a8:59:72:87:53:f4:a1:a6:6f:2d:61:e9:
9b:b2:24:a1:38:48:41:7a:33:2f:2f:52:b8:61:0e:
41:26:21:2c:9b:24:7f:23:b5:23:cd:d9:f9:7c:e3:
ee:39:21:e3:ba:20:69:82:8b:ae:96:a3:dc:8c:fc:
b5:b1:19:4a:6f:55:ca:0f:0b:d5:b1:18:a9:5d:04:
6e:41:a0:98:39:fd:b2:9f:1f:a2:00:3a:d6:37:68:
fc:9e:28:78:cb:df:0c:a0:f7:e7:90:53:f5:f0:88:
97:3f:48:34:0f:0a:ba:35:62:bf:50:7b:ee:d1:c7:
8a:6d:2f:46:6a:78:59:1e:08:67:27:34:99:92:31:
37:75:73:e6:52:33:c5:0d:49:3f:d7:e5:67:88:36:
61:13:32:eb:0d:c6:2c:33:c6:25:c5:82:a0:41:12:
21:cc:20:1e:b0:ab:28:c1:89:65:8f:66:70:09:02:
7c:ef:7f:88:d3:76:53:3e:f2:22:01:d0:93:03:2e:
e1:4a:aa:64:86:00:d1:b3:14:95:f8:d3:5c:53:cd:
44:d0:a7:b4:1c:70:0a:cf:06:7c:24:fc:a1:1c:14:
1e:55:5c:02:10:a8:fd:46:75:54:3d:2c:67:f9:5a:
5b:58:23:11:fc:94:f6:5a:41:30:c6:e6:82:16:42:
38:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:7B:13:B5:16:85:E0:05:74:E9:C3:D4:7D:B3:B4:7A:08:49:3A:C6
X509v3 Authority Key Identifier:
keyid:D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:fe:4b:2a:0a:77:1c:c4:87:6e:3e:75:50:41:d1:b7:56:59:
2b:ac:31:17:2e:20:88:c1:b6:39:a1:22:fc:10:99:25:af:42:
a6:bc:7b:90:4e:f7:03:3f:03:7a:0e:8c:b3:93:7b:f2:58:b4:
80:41:06:4b:67:8b:c1:aa:39:0b:ef:39:e7:fb:c4:cc:db:73:
5e:41:f5:08:03:bc:bb:f3:6b:7b:f8:1f:18:67:90:a1:0d:0a:
81:35:8e:6e:57:33:07:7c:2f:c2:fd:0c:c3:65:60:ba:5b:79:
40:5b:37:39:f0:2b:42:31:65:ce:d0:ba:49:45:23:9d:e9:a9:
b5:75:53:1f:10:9c:1a:7b:db:37:cc:d3:75:d2:f1:5e:81:c4:
19:9b:4a:f1:8d:dc:11:27:e8:13:6e:80:51:b5:15:cd:97:1a:
2c:2b:67:bd:5e:a2:cb:d0:dd:3b:52:33:30:73:98:88:5b:52:
e6:e2:58:4d:90:48:97:76:0a:b6:09:b4:c7:1e:e2:b5:53:cf:
58:b8:6c:a1:f4:b4:69:2c:c2:30:c2:b2:35:87:ab:1f:d4:06:
b5:ab:56:8e:4b:a8:60:c0:a0:7c:3c:9c:52:86:d2:7c:c8:74:
f4:c1:02:7b:c3:4a:04:71:23:ff:95:7b:4b:8d:a6:0a:3e:ce:
ea:a2:dc:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:20 2026 by rpki-client