Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
File: D5otI3SqascUtfim7duA3GlnnMY.mft (raw, json)
Hash identifier: BGsNGNTNrCtnH17YN3tpUsGEub00dJ/hGkMG1Q/ua6Q=
Subject key identifier: 01:B6:9A:EF:A7:47:9C:72:37:17:B3:17:C5:D9:11:58:45:7A:D9:01
Authority key identifier: 0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
Certificate issuer: /CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Certificate serial: 019CE55B5BA520BFB390F4E9543AE285C80D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
Manifest number: 0EC9
Signing time: Fri 13 Mar 2026 04:01:35 +0000
Manifest this update: Fri 13 Mar 2026 04:01:35 +0000
Manifest next update: Sat 14 Mar 2026 04:01:35 +0000
Files and hashes: 1: 8SEsdKMq767CnaRYG-1hJ5v6Hic.roa (hash: h/RdezdmLSdHmsoFs8q7JJ7Hnulds2LoEiNuAXGhUZg=)
2: D5otI3SqascUtfim7duA3GlnnMY.crl (hash: tL/9kzGnCTgLIaVdoAn7Sxv3gcCibYMke9uq9GZL/ys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 04:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:5b:5b:a5:20:bf:b3:90:f4:e9:54:3a:e2:85:c8:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Validity
Not Before: Mar 13 04:01:35 2026 GMT
Not After : Mar 14 04:01:35 2026 GMT
Subject: CN=01b69aefa7479c723717b317c5d91158457ad901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:70:25:c6:f2:11:97:44:d0:b7:09:fd:16:f1:
33:84:cb:f7:53:b6:4b:37:78:ad:f2:42:07:0a:21:
27:d7:59:05:4b:e9:32:66:7f:ee:1d:8c:91:34:85:
5c:c5:fe:37:af:2c:c0:b2:36:91:9c:3b:9e:46:81:
6a:91:08:a0:1a:64:5f:ae:3c:4b:64:31:ee:cf:79:
16:e1:b4:af:bb:e1:04:48:96:0a:6a:02:54:6e:b6:
6b:9d:5c:d6:f3:43:16:44:c0:e4:e3:48:2b:e5:99:
0d:3f:84:84:a2:33:89:e6:a6:c2:ae:8e:83:35:ef:
96:c1:6e:81:3e:3d:58:bf:68:08:e6:21:30:0c:f3:
ad:6f:e1:d1:ea:23:51:cd:a0:6a:22:7d:d4:56:f2:
2a:53:36:7e:7c:0b:5c:56:b8:98:84:7e:14:b8:6f:
a3:b6:de:10:8f:43:1e:d1:9c:5a:70:30:d9:d4:f7:
4f:8c:34:1f:2c:ad:34:dc:31:88:eb:52:52:24:df:
76:41:a5:97:19:15:63:07:f2:ea:30:50:6b:37:e8:
9f:8f:89:16:80:a3:e7:83:00:3e:27:cc:cf:51:10:
e0:80:17:ae:e0:78:2b:35:1f:33:85:ad:cf:95:81:
fb:ef:ed:88:e5:97:28:ad:68:fe:f1:d9:84:9e:c5:
be:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:B6:9A:EF:A7:47:9C:72:37:17:B3:17:C5:D9:11:58:45:7A:D9:01
X509v3 Authority Key Identifier:
keyid:0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:f2:e8:2c:9b:dd:c2:a3:13:b8:4b:6e:f3:4e:36:01:af:7d:
43:3a:39:59:f0:4a:1b:07:88:17:b5:0e:c3:78:ed:ec:4f:28:
4a:d2:fa:51:f1:59:e2:5b:c2:ee:ee:3c:56:fa:34:9c:a6:6a:
58:0b:fa:a9:00:c6:f8:71:ce:ad:f6:25:a4:21:e0:70:18:13:
11:44:11:40:c0:56:9e:77:32:a6:4e:66:27:35:eb:24:5d:d1:
26:61:c4:4c:75:8c:40:48:82:f6:33:a9:01:62:99:8a:37:fd:
e6:d1:ec:4f:8f:75:95:48:11:2f:71:1e:53:d9:0f:a5:47:cf:
a3:2a:68:d5:47:6b:8d:55:3a:c7:09:29:10:b4:7d:bd:0e:ac:
72:a9:0b:ef:e7:ef:27:c3:4a:dd:13:31:62:c2:d1:16:77:f3:
76:bd:f1:e3:e4:77:7a:3a:c7:ab:50:34:f2:b7:12:17:a2:38:
ad:52:2d:f3:41:cd:73:94:f5:c9:f4:53:65:08:a6:f1:4b:d2:
db:9e:ca:a5:c1:fb:29:06:03:ff:55:8d:dd:d3:41:bb:bf:e8:
2d:b1:7e:b8:8c:5f:aa:73:6e:06:ed:af:45:f2:82:6c:ca:76:
7d:0d:8b:ee:56:dd:a7:1a:df:e2:b6:98:40:60:c6:00:75:80:
06:82:15:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 13:54:30 2026 by rpki-client