Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
File: 0luQuJgbWR11p-k14TBKdAdWAv0.mft (raw, json)
Hash identifier: z233j+xBEBZwKch7fo36gKsUZWw7/SktxsrHrSIIlJE=
Subject key identifier: 29:15:20:69:D0:EA:45:87:8C:97:43:AE:82:CA:6E:2F:74:FC:DA:8C
Authority key identifier: D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
Certificate issuer: /CN=d25b90b8981b591d75a7e935e1304a74075602fd
Certificate serial: 019D37C0DFBAC4EA56896114CB23ACE712C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
Manifest number: 1769
Signing time: Sun 29 Mar 2026 04:01:19 +0000
Manifest this update: Sun 29 Mar 2026 04:01:19 +0000
Manifest next update: Mon 30 Mar 2026 04:01:19 +0000
Files and hashes: 1: 0luQuJgbWR11p-k14TBKdAdWAv0.crl (hash: 7huJYyUOMKryf+z39hFb315rOXFnDPyj2Jea/bWvlH0=)
2: PzBJvCvuKoLcfTByzdz7KrKT9g0.roa (hash: 3oZ6E/qyPFCkNxJX9IOFDQ5m/aqdqH2CkJ/hq3ptHGc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:df:ba:c4:ea:56:89:61:14:cb:23:ac:e7:12:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25b90b8981b591d75a7e935e1304a74075602fd
Validity
Not Before: Mar 29 04:01:19 2026 GMT
Not After : Mar 30 04:01:19 2026 GMT
Subject: CN=29152069d0ea45878c9743ae82ca6e2f74fcda8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:77:ba:49:04:b5:56:45:eb:00:c0:5d:a3:22:
54:30:d6:5f:77:be:37:fb:1b:a8:58:8f:40:a0:71:
8f:92:07:aa:47:17:f1:96:10:6a:6b:6e:ce:d5:cd:
0d:53:98:5a:67:17:e2:37:b0:bc:8b:81:46:11:e5:
10:af:35:e2:60:0d:80:01:1a:aa:ee:7c:84:bd:a1:
fd:7c:68:65:22:68:6e:cc:2c:f6:59:20:91:6c:83:
cb:99:98:42:a6:9a:39:e2:e6:26:1b:d9:21:ab:35:
3d:b1:22:93:ba:e3:9b:63:d7:e9:a0:97:71:3c:de:
00:85:7f:52:a4:a3:f2:76:8e:35:23:9c:6a:6a:5f:
a6:b8:7e:60:16:74:0b:f3:00:01:46:a3:b6:24:34:
7a:9a:a2:e7:24:98:4a:1e:83:3e:b3:15:b8:36:64:
48:81:e2:69:fd:e7:25:31:67:bb:e7:13:be:51:1d:
f5:2a:29:d4:15:5e:42:1b:c8:f7:1c:b0:83:b7:5f:
9f:c5:43:8e:09:d7:ff:a7:35:ab:4d:36:a2:93:38:
a3:3d:43:09:0b:fa:e2:e0:68:36:a8:82:2b:e3:15:
93:f6:dd:f1:6a:8d:80:0d:b0:5a:24:7e:c0:a4:f4:
96:9d:69:87:c9:2c:45:4e:08:9b:e8:47:d1:b3:8f:
52:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:15:20:69:D0:EA:45:87:8C:97:43:AE:82:CA:6E:2F:74:FC:DA:8C
X509v3 Authority Key Identifier:
keyid:D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:aa:df:d7:a1:9a:1b:fe:4b:b4:bf:e2:c4:bf:9b:16:98:c1:
d7:b8:02:38:28:42:73:ee:8f:47:06:92:f6:05:35:31:42:36:
69:bf:fb:57:ee:bb:1e:bd:c1:93:2d:be:d9:6a:38:bc:10:9b:
ba:29:d2:9d:97:14:71:1d:6d:ed:97:78:3c:88:10:59:e0:ee:
18:58:3a:25:54:58:1a:52:ac:7c:d5:a9:d3:03:79:9d:47:d4:
a1:27:96:c8:1c:ef:47:21:17:a0:3d:27:64:01:bf:95:04:cd:
b2:bd:4b:73:6b:5b:b8:30:f6:4d:d4:61:5e:5a:1d:fb:ee:6c:
a6:93:97:be:5f:5e:de:b7:4e:1e:3b:c8:ef:42:7e:57:8a:33:
6a:e3:83:0f:3e:7b:86:76:fa:15:59:2f:bb:9f:a1:ad:c9:2a:
fa:77:50:2a:bb:05:e8:be:74:5a:2c:e1:37:39:da:13:2d:9f:
93:5d:b5:cc:36:51:eb:73:4c:13:71:5b:20:fa:84:d2:f1:1b:
1c:04:ae:fd:27:c7:88:bd:57:bf:70:04:8b:43:53:7a:75:c5:
50:47:23:40:9f:bd:9b:d1:77:90:9a:3e:ef:ec:ba:23:70:8f:
07:c0:19:a9:60:68:8a:ab:ae:d3:ce:e3:7a:cb:98:40:22:ee:
f8:f4:79:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:53 2026 by rpki-client