Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft
File: 0zWMPscfwZpqyYRrr03lmDY1cpM.mft (raw, json)
Hash identifier: 9ralB/6rVgBtt2XBodTkht2Onojxvi09h4GmUdtay7w=
Subject key identifier: A0:41:31:42:D4:A3:B0:E3:56:E8:D5:84:88:9F:CC:E8:BF:F6:93:49
Authority key identifier: D3:35:8C:3E:C7:1F:C1:9A:6A:C9:84:6B:AF:4D:E5:98:36:35:72:93
Certificate issuer: /CN=d3358c3ec71fc19a6ac9846baf4de59836357293
Certificate serial: 019E30721DB64075F4F476FF1D8B34F9D898
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zWMPscfwZpqyYRrr03lmDY1cpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft
Manifest number: 18A1
Signing time: Sat 16 May 2026 11:00:45 +0000
Manifest this update: Sat 16 May 2026 11:00:45 +0000
Manifest next update: Sun 17 May 2026 11:00:45 +0000
Files and hashes: 1: 0zWMPscfwZpqyYRrr03lmDY1cpM.crl (hash: nAeKqVFjY1lakYrMaLVkJpSSlDaElAzCj1QRLmsVcts=)
2: kd2XyIAA-MPLC2WR1qBq8uj_YCs.roa (hash: Pu4TD0igNqCoga7095gS2kWNo5RYGEJpD46HuH2Gwbk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0zWMPscfwZpqyYRrr03lmDY1cpM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:1d:b6:40:75:f4:f4:76:ff:1d:8b:34:f9:d8:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3358c3ec71fc19a6ac9846baf4de59836357293
Validity
Not Before: May 16 11:00:45 2026 GMT
Not After : May 17 11:00:45 2026 GMT
Subject: CN=a0413142d4a3b0e356e8d584889fcce8bff69349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:33:cf:a7:7b:46:9d:6d:ef:55:bd:05:f6:35:
e3:c6:6a:db:83:1b:f5:56:3d:46:6b:d4:90:f8:46:
ca:c4:f0:71:97:a9:39:75:b5:a9:99:15:06:d1:2e:
7c:42:b5:79:ac:df:49:42:0f:00:bb:19:17:7b:ca:
fd:6f:64:18:83:cc:1b:6b:25:87:47:be:89:5d:5d:
6d:f6:1d:1e:65:bb:f6:58:a7:3f:99:c1:dd:c6:a5:
fa:d2:4b:11:e3:2f:05:88:67:a4:bf:e4:13:b9:20:
0e:1a:f3:30:b9:c4:60:d0:34:3c:ff:8c:e0:64:b3:
03:ce:b0:f3:69:22:46:50:c4:ef:0d:3a:76:eb:c0:
f1:8b:cf:bd:f4:9a:54:4f:31:1b:cd:1b:6d:7a:bc:
5a:78:d8:4f:a2:a2:6a:09:10:85:ee:a4:23:68:dd:
2a:71:3f:2d:41:be:c7:73:f8:6b:7b:3f:d9:fa:42:
ec:78:29:6d:78:3a:d0:b4:cf:ad:3e:03:58:d1:a2:
bf:c0:dc:e5:75:57:da:68:eb:e0:92:1b:fd:44:00:
64:04:d4:e9:9a:2d:d7:44:6f:f4:8b:10:f2:76:32:
19:ff:03:6c:98:ec:e6:ac:e9:4c:29:2a:74:a1:57:
d4:7d:9d:a4:84:31:48:c1:1f:20:76:c3:1b:92:57:
0e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:41:31:42:D4:A3:B0:E3:56:E8:D5:84:88:9F:CC:E8:BF:F6:93:49
X509v3 Authority Key Identifier:
keyid:D3:35:8C:3E:C7:1F:C1:9A:6A:C9:84:6B:AF:4D:E5:98:36:35:72:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zWMPscfwZpqyYRrr03lmDY1cpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:e4:b9:e6:7e:e5:71:68:d1:b1:93:8b:1e:9d:af:1f:0d:46:
ee:7f:05:a2:cd:e6:34:9d:c6:e3:24:f5:34:b7:d8:87:85:f8:
20:c4:78:fb:7c:d7:f5:eb:0b:d2:86:d4:2d:f0:a4:a0:35:4d:
8e:fc:66:6d:77:04:9b:68:b1:73:af:c8:f6:dc:cf:87:8e:7b:
ee:3f:50:71:e5:b6:9c:18:a1:2b:fa:f5:be:bb:e4:81:a9:8b:
7e:6c:67:c1:c3:24:43:b4:6e:03:b2:f9:40:ea:49:9c:da:e6:
83:48:19:db:c7:eb:f8:b8:26:1d:55:5b:a8:c1:fa:62:f3:b8:
51:5b:ff:4c:2d:76:cd:ed:81:6b:12:f1:28:e9:00:9e:09:4b:
ae:ae:67:c9:3a:d6:2d:cf:ee:82:cd:98:3e:a9:4b:02:7c:e2:
f8:4c:a6:bf:20:33:e3:7f:11:ff:c8:20:6f:21:9c:a7:04:8a:
39:d2:41:08:8c:73:ea:eb:45:c9:cd:38:44:7a:ae:7b:90:f6:
c6:92:30:07:68:c8:18:15:6c:8a:73:27:da:0e:91:9d:f5:4e:
d9:66:f9:c1:9b:c0:13:a1:37:22:c7:06:34:80:e6:e3:4d:7d:
b7:1d:69:ef:9a:c9:c2:6d:77:8b:bf:ce:17:2b:04:d8:9f:76:
20:22:ac:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:14:06 2026 by rpki-client