Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.mft
File: 0dMLd0soDDfhxe1dimnLmvZIsGU.mft (raw, json)
Hash identifier: vX3weMnokidEP9FQk3a577JqHsyfljj/5XHsiWHH0uk=
Subject key identifier: B1:7C:C2:12:FD:AE:EF:22:D6:BE:CF:4F:91:FD:99:1D:73:5D:48:FD
Authority key identifier: D1:D3:0B:77:4B:28:0C:37:E1:C5:ED:5D:8A:69:CB:9A:F6:48:B0:65
Certificate issuer: /CN=d1d30b774b280c37e1c5ed5d8a69cb9af648b065
Certificate serial: 019D3909EBD4273C63FFEA229F5A192B1BB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0dMLd0soDDfhxe1dimnLmvZIsGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.mft
Manifest number: 0CFD
Signing time: Sun 29 Mar 2026 10:00:44 +0000
Manifest this update: Sun 29 Mar 2026 10:00:44 +0000
Manifest next update: Mon 30 Mar 2026 10:00:44 +0000
Files and hashes: 1: 0dMLd0soDDfhxe1dimnLmvZIsGU.crl (hash: jCl7+GJsyZngb3x91cbOeFFs3m/dnxCsW/YjG3IxmYM=)
2: 4uCW8KDL5eygnSjCYi7-Nukptjw.roa (hash: Lz95AsDo4OKSWuKZICMJRolQCwkNIP0tKUYk7qYQ5RA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0dMLd0soDDfhxe1dimnLmvZIsGU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:eb:d4:27:3c:63:ff:ea:22:9f:5a:19:2b:1b:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1d30b774b280c37e1c5ed5d8a69cb9af648b065
Validity
Not Before: Mar 29 10:00:44 2026 GMT
Not After : Mar 30 10:00:44 2026 GMT
Subject: CN=b17cc212fdaeef22d6becf4f91fd991d735d48fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:52:ba:71:1c:f0:71:14:c3:1e:d7:c5:1f:87:
1d:eb:b2:45:0a:f2:7e:40:32:06:43:96:f0:09:65:
b0:4f:10:c6:5d:8a:16:59:0f:ff:7c:29:e9:eb:e0:
df:63:78:fa:01:06:d9:74:4a:21:b5:d2:29:77:5a:
af:e6:97:cd:bb:c3:0c:1a:ff:26:08:b9:ca:ab:16:
fd:f5:c7:d7:bb:20:95:6d:da:d4:cd:25:c4:35:f7:
3e:53:0e:36:9c:27:50:f3:4c:bc:c8:d3:a7:54:2d:
52:4b:cd:b8:cf:0b:aa:7e:28:a0:1d:68:28:2e:02:
b1:0d:da:8e:c6:f7:9f:31:3e:39:94:72:39:19:d4:
55:5e:4b:30:17:3a:26:a3:16:86:e9:4e:32:a3:b6:
ea:3b:46:8f:89:7c:50:b8:46:12:fb:12:30:69:6c:
f6:cb:1c:11:ab:b0:98:89:5e:7c:24:91:31:41:b4:
b2:d3:69:72:13:03:68:e3:bb:71:27:50:df:f8:42:
22:b7:e4:4b:13:57:bf:c6:59:01:95:34:f9:6a:72:
8c:45:df:b7:87:75:f5:c6:37:2a:45:40:7a:0a:3b:
e5:eb:c0:6d:1d:5d:ff:09:4f:89:3d:66:83:5d:d6:
a4:36:06:6b:99:27:a5:76:36:3c:8d:52:ac:77:90:
76:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:7C:C2:12:FD:AE:EF:22:D6:BE:CF:4F:91:FD:99:1D:73:5D:48:FD
X509v3 Authority Key Identifier:
keyid:D1:D3:0B:77:4B:28:0C:37:E1:C5:ED:5D:8A:69:CB:9A:F6:48:B0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dMLd0soDDfhxe1dimnLmvZIsGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:09:04:64:cb:2a:e2:56:cc:b2:ec:ed:d8:ce:cd:9b:cb:24:
d8:d7:1c:a3:8b:0c:25:c5:ac:74:24:69:e8:e2:6d:c0:2f:70:
70:f6:62:80:4c:51:52:b4:74:0f:04:a9:88:d6:ab:1f:80:be:
53:42:9c:29:1f:b0:9e:02:fd:ed:9b:ec:f2:9e:0a:b5:5e:4a:
2c:0f:24:07:10:6e:f1:e3:92:2e:1d:86:9b:f2:28:1c:33:f6:
2b:02:93:c2:80:37:db:10:44:87:03:5d:91:d6:dd:68:89:f4:
7a:26:ea:74:a9:d3:47:40:7d:5f:e3:44:e9:ea:02:75:55:e4:
92:dc:61:b4:b1:be:00:95:60:d5:1d:1b:2b:d8:2b:52:74:40:
60:f4:41:f9:83:f2:02:1a:e7:39:81:02:79:02:0b:17:26:09:
72:71:d7:76:7b:e2:a1:73:37:54:4d:fa:f7:e5:75:01:84:7f:
9e:88:09:e6:7a:42:4c:79:c9:54:6f:c7:8f:b6:7c:31:c2:ba:
4c:48:43:33:b0:1b:26:81:fc:7f:e7:e7:db:e8:80:69:1c:ed:
df:c9:87:c5:52:8b:4c:1b:0b:63:06:cb:07:e2:de:c4:72:7e:
e5:bd:c4:f4:b1:a5:5d:bb:aa:bc:f9:1b:6d:34:73:8a:a0:7c:
6b:53:31:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:49:18 2026 by rpki-client