Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
File: 1onLcYkcbZS9nm8U8W5-N8LHKL8.mft (raw, json)
Hash identifier: ys22YOytq/C6Rzdh2SGZq+DBFBybWwdB8vLjgOFB4o0=
Subject key identifier: 47:AB:76:84:65:5A:73:F2:0A:D3:34:24:FA:A9:BB:DF:F4:49:FE:BA
Authority key identifier: D6:89:CB:71:89:1C:6D:94:BD:9E:6F:14:F1:6E:7E:37:C2:C7:28:BF
Certificate issuer: /CN=d689cb71891c6d94bd9e6f14f16e7e37c2c728bf
Certificate serial: 019D1045A1819D98BD2B4F590E0DACF9744A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
Manifest number: 0630
Signing time: Sat 21 Mar 2026 12:01:31 +0000
Manifest this update: Sat 21 Mar 2026 12:01:31 +0000
Manifest next update: Sun 22 Mar 2026 12:01:31 +0000
Files and hashes: 1: 1onLcYkcbZS9nm8U8W5-N8LHKL8.crl (hash: 7rhlnRgUdIbH1/qCSyGHe2ZUVjyk0DGdIJG/est4m2o=)
2: A1S7zaMW03197K0PFUGmkuS6qHc.roa (hash: P0RbhOWnYpuPcWIDbY8PS2tuKH+AkCqge3UmcT8QPYg=)
3: HcWgx2MiMP_xtGT9IucxolgQeIY.roa (hash: rcEUsMaoUm7Xd2I+QLC1mGGbjcwOScogc6eZLbEfymQ=)
4: iTT1Go78g5owZfyu9ktxbP5JHAk.roa (hash: Qjj93lcgSQbKTpiPRrMG7KIy0uRqncRntlD8V9IPje4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 22 Mar 2026 12:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:10:45:a1:81:9d:98:bd:2b:4f:59:0e:0d:ac:f9:74:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d689cb71891c6d94bd9e6f14f16e7e37c2c728bf
Validity
Not Before: Mar 21 12:01:31 2026 GMT
Not After : Mar 22 12:01:31 2026 GMT
Subject: CN=47ab7684655a73f20ad33424faa9bbdff449feba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:cd:23:67:52:da:13:41:ef:b8:f9:74:73:78:
80:e2:c9:77:c3:61:85:91:32:22:6e:57:9f:b2:a5:
fb:e8:5e:84:4d:38:24:4d:be:ed:59:65:28:d3:7d:
d8:d7:d4:1c:5c:7b:01:42:ee:95:19:46:cc:9a:2d:
ff:30:30:38:e6:79:d5:90:53:a3:5f:30:73:e7:be:
c5:ee:0e:df:3a:c0:d2:19:ea:3e:c0:29:f5:4e:4c:
d1:6f:f7:a8:01:3e:2c:0f:eb:10:b2:ed:79:bc:e3:
13:8d:1d:f9:38:1a:11:29:16:3f:8c:8d:7a:97:7f:
0e:49:b1:30:8d:e6:d9:58:ac:c8:dc:44:86:3e:8b:
a6:26:fd:6d:13:b8:e1:19:6a:c9:44:ab:81:18:aa:
c8:d5:3c:e8:de:2f:14:fa:87:01:05:e8:43:37:fa:
86:d5:0f:af:bb:66:17:d1:7c:59:ce:39:bf:2d:4b:
7c:96:bb:fc:21:c5:1d:20:32:ae:8b:8c:40:e5:45:
82:56:47:57:9b:0f:74:73:dd:87:7c:a9:28:4e:9f:
06:77:8b:2c:66:f0:11:54:35:17:eb:76:ac:fb:b9:
8f:7b:e8:34:a7:af:4d:4d:3c:6f:f7:da:91:38:5c:
57:03:7a:13:0a:b9:be:d8:7b:37:6b:17:10:9f:9f:
05:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:AB:76:84:65:5A:73:F2:0A:D3:34:24:FA:A9:BB:DF:F4:49:FE:BA
X509v3 Authority Key Identifier:
keyid:D6:89:CB:71:89:1C:6D:94:BD:9E:6F:14:F1:6E:7E:37:C2:C7:28:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:9d:ad:e6:f2:6c:d1:93:8f:06:7f:fb:34:c0:26:90:2b:f1:
0c:8d:d0:f1:0e:cf:ff:9e:60:ea:63:20:d6:75:01:50:2e:a4:
9e:2d:39:0e:bb:c7:4f:f5:94:82:dc:cc:ea:78:00:25:56:ba:
18:17:0a:2c:e1:19:b1:00:14:0f:ce:a5:1e:5a:93:25:b2:93:
d8:0d:28:75:84:f3:9b:31:e4:2d:63:b4:bb:84:18:c9:b5:a6:
41:80:04:15:6e:fe:31:29:14:45:9d:20:15:e8:cc:6c:85:16:
6d:ac:38:4f:85:f0:c7:1a:d2:f8:1c:82:c0:95:e0:7e:06:50:
88:4e:e6:00:3f:c0:6e:3c:ed:35:b0:82:c0:ef:46:7a:af:e0:
08:a2:1e:2f:12:6d:c8:84:d1:93:0e:1e:38:a7:70:f7:99:c9:
82:0b:57:32:ca:74:a7:94:3d:76:0f:49:4f:48:99:9e:e6:42:
fd:7a:c5:bc:22:5f:48:b7:e2:0e:44:72:9f:51:f0:2b:a3:9d:
66:2d:f5:54:da:0d:56:4f:fa:70:d3:4c:56:93:16:3e:51:9d:
c1:48:b1:9f:90:36:49:1d:84:84:dc:f6:84:fa:83:30:48:c2:
cd:0f:65:be:9a:44:bc:c7:ed:67:50:0a:85:e8:9d:57:6d:8d:
42:bb:3a:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 21 22:11:07 2026 by rpki-client