Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.mft
File: 0tS9caQ9jN1GKmHu4NlHAMfmQl8.mft (raw, json)
Hash identifier: XHryK0gZGoZ0s3KAYd8Lf31DfyW8cQlfdj2OEsxTURM=
Subject key identifier: 10:B4:FE:78:E7:34:EE:EB:70:87:EC:8E:97:7B:1D:2A:36:D4:74:AC
Authority key identifier: D2:D4:BD:71:A4:3D:8C:DD:46:2A:61:EE:E0:D9:47:00:C7:E6:42:5F
Certificate issuer: /CN=d2d4bd71a43d8cdd462a61eee0d94700c7e6425f
Certificate serial: 019D39E58FE0DCCE23C8AC5A2BB5B7285DAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tS9caQ9jN1GKmHu4NlHAMfmQl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.mft
Manifest number: 020B
Signing time: Sun 29 Mar 2026 14:00:38 +0000
Manifest this update: Sun 29 Mar 2026 14:00:38 +0000
Manifest next update: Mon 30 Mar 2026 14:00:38 +0000
Files and hashes: 1: 0tS9caQ9jN1GKmHu4NlHAMfmQl8.crl (hash: AUY2+OobfQ3OS1uBMpRH1zEBLSTiJN7Ga6i8PftN3lM=)
2: 7y2-JyJSBLPzJ1F-GfRB9L2A1lc.roa (hash: Je64415GY9BUK++a0MLtgLPvf9KrlsWdU946uIXLKos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tS9caQ9jN1GKmHu4NlHAMfmQl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:e5:8f:e0:dc:ce:23:c8:ac:5a:2b:b5:b7:28:5d:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d4bd71a43d8cdd462a61eee0d94700c7e6425f
Validity
Not Before: Mar 29 14:00:38 2026 GMT
Not After : Mar 30 14:00:38 2026 GMT
Subject: CN=10b4fe78e734eeeb7087ec8e977b1d2a36d474ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:aa:5f:d2:b8:4f:78:e9:85:31:1e:cc:29:df:
ea:ed:6b:26:7b:8b:4d:b4:c3:57:83:ac:f6:f4:39:
bc:e9:ff:3b:64:83:39:88:71:18:a1:10:6b:48:78:
8a:df:b8:ad:c8:a1:c9:ad:e5:62:40:02:fa:94:42:
c8:93:d0:1c:e0:2b:ba:9d:fa:a1:4b:a2:32:94:89:
ad:36:1b:25:b1:0c:a8:71:cd:23:4b:80:c8:1e:2c:
4c:2c:e2:99:e5:f0:3f:50:88:7c:84:e1:2a:05:5d:
b8:ca:04:ca:1b:08:0c:89:e8:4f:ef:af:15:02:5d:
af:ff:12:8b:c6:dc:51:c1:3a:27:23:63:04:d7:14:
ac:f0:4a:38:98:48:68:3d:87:33:85:44:4f:13:03:
00:7b:b3:f0:92:6f:36:50:69:a9:c5:8c:ac:65:e7:
ee:8d:3f:c2:c6:cf:d5:c3:9e:f0:19:6e:e5:ae:45:
d5:b0:a6:c1:f1:96:43:2e:e6:22:92:9e:2f:00:ac:
62:35:c1:3a:0f:56:39:7e:2f:18:bb:1c:98:32:a4:
ef:48:d1:b0:ca:ca:b4:45:f3:c6:a5:ef:df:7c:bc:
df:f7:4f:33:ea:7f:94:96:c8:ff:a1:68:46:2d:d7:
43:bb:42:9b:44:23:65:a0:e3:93:78:aa:03:3f:69:
e2:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:B4:FE:78:E7:34:EE:EB:70:87:EC:8E:97:7B:1D:2A:36:D4:74:AC
X509v3 Authority Key Identifier:
keyid:D2:D4:BD:71:A4:3D:8C:DD:46:2A:61:EE:E0:D9:47:00:C7:E6:42:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tS9caQ9jN1GKmHu4NlHAMfmQl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:2a:21:e1:d9:1e:dd:eb:e5:7c:4d:7f:14:50:69:4d:0c:9e:
17:18:18:bd:34:a5:bf:98:5b:2e:19:e5:c1:ee:fa:0d:e7:a9:
a3:36:9d:26:dd:e3:22:40:f1:fb:c2:a5:9a:f4:9f:c6:76:64:
87:0a:c0:c6:07:ff:59:82:a9:a3:50:30:fb:ca:5a:2c:a2:d6:
23:5b:09:d6:8f:ac:bc:f3:0b:dd:be:d9:91:76:76:50:bd:24:
77:30:5a:ca:37:96:aa:d3:99:5e:0a:9f:74:6c:61:ab:74:a8:
37:8e:fa:99:2d:51:d2:7a:e2:51:6b:5b:8a:4a:2a:6c:c9:8d:
0e:68:ed:97:43:9b:a0:09:8b:be:62:50:62:de:a6:21:9b:48:
05:96:f7:a4:51:40:c5:d7:1d:39:85:a0:b2:c9:9d:b5:fb:77:
8c:f8:12:ea:61:8b:87:2c:3e:3f:8f:d9:07:58:8f:83:b1:c2:
06:80:df:ee:be:d9:71:82:5c:c9:de:94:29:4e:27:94:a2:2f:
2a:09:7f:ec:c7:b0:34:b4:df:96:e2:5f:31:a7:77:6c:7d:8d:
ac:a9:86:66:b6:cc:1b:01:ce:17:aa:02:5a:9f:df:35:6e:63:
5e:e7:9e:6a:04:24:29:fe:c4:79:6b:8d:39:25:86:cb:f6:13:
13:b4:05:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:00:52 2026 by rpki-client