Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
File: a0P3ovQ2ixel4DXOS9km-KFC1os.mft (raw, json)
Hash identifier: LIG7SeoYHV2KQXLLn5PWRR5NGZzUsfyTXnDin8LU5Yg=
Subject key identifier: 08:2D:18:E8:35:90:79:51:80:38:F3:2E:E3:96:05:1A:CD:AF:DA:17
Authority key identifier: 6B:43:F7:A2:F4:36:8B:17:A5:E0:35:CE:4B:D9:26:F8:A1:42:D6:8B
Certificate issuer: /CN=6b43f7a2f4368b17a5e035ce4bd926f8a142d68b
Certificate serial: 019CE523C8E1AE43C3F0CAE17801FE07ED58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
Manifest number: 1863
Signing time: Fri 13 Mar 2026 03:00:53 +0000
Manifest this update: Fri 13 Mar 2026 03:00:53 +0000
Manifest next update: Sat 14 Mar 2026 03:00:53 +0000
Files and hashes: 1: MuWBM4y_8sU7g6FEyEJdZpch7MA.roa (hash: polciHBhuEIudcpVsohkilsNPMnWK3IMSBDrJXYyToE=)
2: a0P3ovQ2ixel4DXOS9km-KFC1os.crl (hash: xZ61KA98lqRpp0voLAWrDsdb3d4/efVVpidcTdzjM4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:23:c8:e1:ae:43:c3:f0:ca:e1:78:01:fe:07:ed:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b43f7a2f4368b17a5e035ce4bd926f8a142d68b
Validity
Not Before: Mar 13 03:00:53 2026 GMT
Not After : Mar 14 03:00:53 2026 GMT
Subject: CN=082d18e8359079518038f32ee396051acdafda17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:62:75:5d:9b:00:4c:7f:62:5a:f8:1d:4c:f9:
61:cd:56:d9:96:60:ea:73:3e:a0:85:39:5a:15:17:
7d:f3:1b:a5:bf:c1:26:cf:48:68:10:b9:4a:6e:4a:
36:5c:33:55:78:a8:68:2a:26:2d:83:fa:3d:9c:94:
84:9f:24:f8:a5:2e:2b:34:82:0d:1e:6c:15:a2:2d:
cf:c8:0a:78:20:aa:2c:43:c2:da:8c:7b:b6:1a:4b:
91:cf:5c:1d:fd:e4:aa:5d:65:1b:9e:6d:23:03:5a:
ad:79:7d:0b:db:0f:56:b6:22:ca:e4:c1:a6:dc:26:
84:bf:4c:79:01:3e:46:61:94:de:28:3d:2f:06:0a:
fd:f9:e5:a3:f4:0a:7f:18:fb:82:03:83:3e:fd:e0:
e7:ed:a9:39:20:de:2d:26:8b:af:15:61:92:0d:d5:
57:bc:0e:1f:67:df:ed:79:44:ad:42:98:af:b5:39:
b0:46:8e:a1:5b:f3:45:be:28:75:bd:16:dd:16:ef:
1e:2c:b0:0c:a6:36:64:75:44:06:9f:da:33:1e:8e:
b3:b3:bc:1c:c9:c9:b3:fc:52:29:c9:5d:ea:51:88:
0c:a0:16:10:11:0b:26:c8:30:8e:f1:0b:27:c4:1c:
c3:d2:86:67:38:84:c4:00:1b:1e:ac:5c:34:61:3a:
76:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:2D:18:E8:35:90:79:51:80:38:F3:2E:E3:96:05:1A:CD:AF:DA:17
X509v3 Authority Key Identifier:
keyid:6B:43:F7:A2:F4:36:8B:17:A5:E0:35:CE:4B:D9:26:F8:A1:42:D6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:2e:2f:f1:13:5d:5d:89:07:9d:9e:17:c3:2b:0b:35:df:7b:
0b:48:1f:62:79:08:bb:9b:85:4d:7d:45:67:f3:dc:49:a1:af:
56:24:83:13:0d:ae:7d:63:4c:72:be:8b:b2:30:d1:df:8c:bc:
4a:3d:1d:61:c0:04:b4:51:95:bf:6e:c6:cb:76:39:61:07:86:
b6:76:f2:0e:7f:3b:80:ff:61:89:5e:27:07:ae:86:91:e6:a1:
56:54:b1:da:d2:a7:16:5d:4f:38:b0:ce:4a:d4:83:df:84:ea:
6f:e8:32:72:51:1f:ba:73:9a:7b:88:61:a3:da:5c:d6:ec:ce:
27:74:61:bb:a3:1e:af:1c:6d:3e:57:f3:eb:6c:b9:e2:3c:ed:
88:ff:3f:42:17:0f:89:78:6c:4d:c9:a8:56:d4:ee:c3:ae:d6:
bd:35:a7:c0:36:de:f0:2e:2c:70:fd:d7:0c:9e:a1:62:93:74:
3b:8a:cd:a3:0d:56:cd:5c:96:36:c4:5a:22:20:74:69:81:7f:
58:1b:a8:63:b9:f4:52:99:bb:d7:e3:2a:f2:e2:27:bf:ad:5b:
61:9a:80:7f:e2:8d:dc:08:43:6c:ad:4b:e1:88:6b:90:0e:15:
f5:90:45:d6:9e:00:dd:3b:07:3a:48:13:70:e5:c7:57:6b:47:
56:92:92:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 08:38:48 2026 by rpki-client