Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
File: 0nuHf4mTQSab7GfG46CoiLp66Y0.mft (raw, json)
Hash identifier: YnyyfCVP9YpHTxxjf/E2USPM214Jz7POPgqj0T8Ko0s=
Subject key identifier: 95:CB:62:87:1C:D7:4E:A6:DE:45:D8:4E:01:14:C0:E8:BD:75:B7:BF
Authority key identifier: D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D
Certificate issuer: /CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
Certificate serial: 019DB0FD1C2C7C870534745105E6539BF86B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
Manifest number: 0CD3
Signing time: Tue 21 Apr 2026 17:01:10 +0000
Manifest this update: Tue 21 Apr 2026 17:01:10 +0000
Manifest next update: Wed 22 Apr 2026 17:01:10 +0000
Files and hashes: 1: 0nuHf4mTQSab7GfG46CoiLp66Y0.crl (hash: TQy/xVpTKCUK+z9nFyRUx7qZGF6vaZPqhkd+NfPUrqw=)
2: ESKSicApbc_Lc7K1oxfrHyvWB2A.roa (hash: 9hp563pGKax4wS0ioE86wmQq8LK8c0yOcQLKfH9tKgk=)
3: GzzDQC3ubi3zt1X18DBGioGRdBc.roa (hash: D/wNKKfIUY9J0S4B/WgJwAFtRjUwUsHpDQtQvyp4Lvk=)
4: a8xxFezDGCmHsEOSRqb1XFyjzzQ.roa (hash: UKvCG+Ut498aH2KrK/T04+U4clxpUw2ygew8dg+YGZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 17:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b0:fd:1c:2c:7c:87:05:34:74:51:05:e6:53:9b:f8:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
Validity
Not Before: Apr 21 17:01:10 2026 GMT
Not After : Apr 22 17:01:10 2026 GMT
Subject: CN=95cb62871cd74ea6de45d84e0114c0e8bd75b7bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:cb:da:af:42:55:a2:f1:ac:4e:74:b4:84:f8:
77:f6:05:6e:d3:e0:ca:1a:f1:81:40:67:ed:b4:33:
ff:4c:a2:7c:79:05:1a:93:57:00:2b:d3:31:15:a8:
c1:33:6c:9a:18:d6:2f:6c:44:db:39:6c:74:e7:c0:
7b:2b:cf:64:36:80:5f:a0:9a:08:b7:ad:3d:1f:55:
f7:58:72:17:1f:b5:0c:69:88:79:f1:30:59:cf:a4:
80:00:f8:3b:a1:cb:88:8c:43:b6:c0:63:ad:48:f4:
c1:c5:75:a2:4a:92:59:90:e8:84:14:bd:cc:75:19:
7c:ea:e7:ae:b6:ef:b4:98:33:8d:db:89:f1:dd:c5:
31:22:0c:f4:98:9c:50:43:12:a9:ea:3f:b3:c4:7d:
83:09:1f:97:4a:5f:47:c5:91:7c:95:bc:a9:19:7b:
51:71:18:b8:d0:7d:b4:95:73:88:5c:cd:10:a3:9b:
2d:87:23:27:0f:a4:75:10:18:1d:fd:9f:a7:1e:75:
a8:88:97:9a:cc:2d:05:7c:63:28:87:53:26:cf:c0:
1b:cf:8d:18:08:de:c4:b8:0d:23:fd:c9:25:f4:b5:
08:67:93:ac:b9:c2:b9:cd:92:59:57:d5:52:b3:a2:
e5:5a:35:b1:ec:25:99:66:03:12:ec:bf:e6:63:d2:
91:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:CB:62:87:1C:D7:4E:A6:DE:45:D8:4E:01:14:C0:E8:BD:75:B7:BF
X509v3 Authority Key Identifier:
keyid:D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:79:cf:6c:52:d6:ff:9a:d0:7e:57:34:0a:80:84:7c:fc:e1:
b5:b2:ee:e3:e1:3a:a1:0e:bd:21:10:43:63:64:ba:a8:00:cd:
2d:14:87:11:92:a6:09:c7:23:19:e7:5d:36:ce:e5:45:a0:b7:
76:ae:c6:72:4c:10:0e:10:9e:a4:a4:8c:54:e1:84:52:3b:3a:
14:e9:e3:aa:b6:54:ee:bf:d5:04:15:f3:4e:45:f3:ed:b7:f6:
2d:b1:6c:e2:9c:9b:5f:de:ec:61:2f:2b:25:f3:98:44:13:2b:
f3:31:d9:7f:ab:83:03:d5:c8:7b:1c:46:1f:8a:59:c1:e4:70:
e1:6f:d2:be:72:29:b0:d1:9f:1a:d0:3e:e8:dc:f0:68:61:52:
a2:71:7f:b5:6f:0b:49:f2:3d:c9:20:f2:cc:37:c1:56:77:a3:
33:83:ef:6b:44:21:b1:71:db:8e:26:96:13:28:23:52:3d:93:
ea:d1:65:2e:8b:7d:ba:98:eb:9d:40:fe:0e:5d:4c:ad:2d:45:
ae:cc:f0:11:73:23:be:95:c0:02:ca:d2:0c:cd:de:fc:d1:aa:
74:94:59:b3:06:50:2b:53:1c:b1:e4:9d:1f:a5:29:6c:fc:51:
56:d5:d0:aa:33:ac:7d:34:cd:d0:d8:9e:b2:b8:fc:0c:ae:82:
a6:04:d3:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 04:08:19 2026 by rpki-client