Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/901957-4e71-4cf3-acb8-fb2c8a814347/1/D0IHzoCFWlzJfAukc7lYcsfBk8Q.mft
File: D0IHzoCFWlzJfAukc7lYcsfBk8Q.mft (raw, json)
Hash identifier: s1KOz2m1pevQU/YjXh8sNIyyiVnxdyE8V1Puq0sZoks=
Subject key identifier: 86:B0:E3:EA:66:FB:F0:54:77:66:BD:54:7B:70:6C:FD:87:56:3F:CE
Authority key identifier: 0F:42:07:CE:80:85:5A:5C:C9:7C:0B:A4:73:B9:58:72:C7:C1:93:C4
Certificate issuer: /CN=0f4207ce80855a5cc97c0ba473b95872c7c193c4
Certificate serial: 019D3A1CE1DFEE129D4F6770FF12843CCF74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D0IHzoCFWlzJfAukc7lYcsfBk8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/901957-4e71-4cf3-acb8-fb2c8a814347/1/D0IHzoCFWlzJfAukc7lYcsfBk8Q.mft
Manifest number: 014A
Signing time: Sun 29 Mar 2026 15:01:04 +0000
Manifest this update: Sun 29 Mar 2026 15:01:04 +0000
Manifest next update: Mon 30 Mar 2026 15:01:04 +0000
Files and hashes: 1: D0IHzoCFWlzJfAukc7lYcsfBk8Q.crl (hash: Gnh2qEapiclAKJdEBc4WyHiIGU6nLQ6h+rG8q+MeXqQ=)
2: pw4Qm63r0Yhm9EXLlawhwoaF_-U.roa (hash: 8+hiFiQbRmFXAtO/lyNUE8HzfYdbB4RDkrD4zTsRyzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/901957-4e71-4cf3-acb8-fb2c8a814347/1/D0IHzoCFWlzJfAukc7lYcsfBk8Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/901957-4e71-4cf3-acb8-fb2c8a814347/1/D0IHzoCFWlzJfAukc7lYcsfBk8Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/D0IHzoCFWlzJfAukc7lYcsfBk8Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 15:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:e1:df:ee:12:9d:4f:67:70:ff:12:84:3c:cf:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f4207ce80855a5cc97c0ba473b95872c7c193c4
Validity
Not Before: Mar 29 15:01:04 2026 GMT
Not After : Mar 30 15:01:04 2026 GMT
Subject: CN=86b0e3ea66fbf0547766bd547b706cfd87563fce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d0:d9:12:03:89:34:ab:b2:4d:36:7d:64:49:
97:80:6a:b6:c9:51:09:08:c5:18:b3:78:20:9c:7b:
21:fd:3f:a0:56:5b:f1:ea:64:da:50:27:70:c2:37:
f6:b9:56:31:22:f5:2c:3d:84:11:6e:21:1e:ec:90:
68:b5:5d:fe:c9:21:31:d9:21:48:5b:8e:c4:39:b2:
2b:81:2e:04:09:e0:cb:74:fc:92:fd:47:b6:43:dd:
bd:c4:b2:a6:d6:af:c9:9a:91:27:ca:41:b9:c3:76:
16:f7:db:7e:54:41:00:8b:b5:1e:24:61:6a:0c:47:
11:f3:93:bf:a5:d1:ce:63:ca:04:c4:3a:50:55:32:
13:b1:a8:65:8b:2f:d1:16:ce:f9:ea:9b:8c:43:37:
a1:b7:98:0b:42:77:e5:50:1f:ad:09:3e:b4:1f:41:
70:68:2c:27:6e:ca:12:20:57:ae:79:4e:cb:a9:c6:
16:53:a4:32:af:9f:34:4a:0d:a8:dc:d2:a2:4c:c8:
b3:72:92:d0:72:f1:9b:85:c1:ea:7d:95:85:aa:9f:
04:b5:ba:90:5a:c8:cc:dd:85:a2:f8:04:c6:3a:ce:
96:16:7a:ec:59:6b:2d:46:65:d8:17:48:e0:96:8a:
a8:16:8a:11:64:1e:13:28:d7:dc:a7:85:0f:5b:3f:
68:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B0:E3:EA:66:FB:F0:54:77:66:BD:54:7B:70:6C:FD:87:56:3F:CE
X509v3 Authority Key Identifier:
keyid:0F:42:07:CE:80:85:5A:5C:C9:7C:0B:A4:73:B9:58:72:C7:C1:93:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D0IHzoCFWlzJfAukc7lYcsfBk8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/901957-4e71-4cf3-acb8-fb2c8a814347/1/D0IHzoCFWlzJfAukc7lYcsfBk8Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/901957-4e71-4cf3-acb8-fb2c8a814347/1/D0IHzoCFWlzJfAukc7lYcsfBk8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:44:d1:9e:38:c6:38:3a:13:0c:c8:87:ef:bd:73:f1:da:7d:
fd:18:b2:58:03:9a:58:6c:66:f3:c7:b0:0a:d9:8b:b8:df:4e:
fc:4d:fb:f2:ea:60:60:e0:a5:3e:d3:37:7c:98:91:c0:9c:c6:
b3:e0:b7:27:ab:b2:3b:ad:51:d9:41:9a:b3:46:02:e1:c6:e1:
2a:85:d6:c8:d5:b8:a3:77:db:b9:72:a1:0f:45:f6:37:35:ae:
55:b6:1b:31:d4:4e:5c:2d:45:40:eb:b7:a7:0d:69:d0:27:c1:
1a:95:0b:aa:ac:3e:b5:20:11:ec:64:47:fa:95:5d:86:1c:c0:
db:18:81:b8:5d:b9:cf:96:25:1c:f3:08:ad:30:cd:bc:17:0d:
fe:4c:2e:68:54:5b:1a:2f:6a:42:3e:45:35:16:dc:69:74:e3:
c6:8a:57:8a:96:7a:8f:c5:8c:a7:30:70:67:26:c7:7f:08:0b:
f2:4c:0f:11:33:80:c8:e0:99:a5:67:6b:49:33:8a:43:f8:0f:
ed:11:56:45:e9:46:22:cd:8c:0f:ad:56:e7:ab:34:50:c0:c1:
11:6e:0a:3a:2f:6c:4b:c6:93:3c:3f:22:cd:6a:20:de:50:ef:
46:4d:71:6f:4c:82:29:68:3e:2d:3f:4b:ac:0f:24:a6:24:53:
75:a3:6b:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:49:11 2026 by rpki-client