Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft
File: 0zWMPscfwZpqyYRrr03lmDY1cpM.mft (raw, json)
Hash identifier: 4g4Rdd46Q2bZjCjIY0uFZC3BQRy2GUknWnuu8svcqbc=
Subject key identifier: 3A:24:68:AA:A4:2E:50:AE:29:B7:15:21:2F:14:AE:AB:4D:C6:5C:8B
Authority key identifier: D3:35:8C:3E:C7:1F:C1:9A:6A:C9:84:6B:AF:4D:E5:98:36:35:72:93
Certificate issuer: /CN=d3358c3ec71fc19a6ac9846baf4de59836357293
Certificate serial: 019F1830FFB1EADEF38769107B7FED56295A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zWMPscfwZpqyYRrr03lmDY1cpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft
Manifest number: 1919
Signing time: Tue 30 Jun 2026 11:01:31 +0000
Manifest this update: Tue 30 Jun 2026 11:01:31 +0000
Manifest next update: Wed 01 Jul 2026 11:01:31 +0000
Files and hashes: 1: 0zWMPscfwZpqyYRrr03lmDY1cpM.crl (hash: CbHQLeqg9Md8MlJsg8brhVKDxNOvCtWdB/scNx6tAkI=)
2: kd2XyIAA-MPLC2WR1qBq8uj_YCs.roa (hash: Pu4TD0igNqCoga7095gS2kWNo5RYGEJpD46HuH2Gwbk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0zWMPscfwZpqyYRrr03lmDY1cpM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:30:ff:b1:ea:de:f3:87:69:10:7b:7f:ed:56:29:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3358c3ec71fc19a6ac9846baf4de59836357293
Validity
Not Before: Jun 30 11:01:31 2026 GMT
Not After : Jul 1 11:01:31 2026 GMT
Subject: CN=3a2468aaa42e50ae29b715212f14aeab4dc65c8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3f:70:23:69:e4:60:45:79:e9:69:65:c5:c9:
27:64:40:ff:cb:92:bf:87:6e:55:24:fc:0d:6c:1f:
77:55:b7:33:f5:61:1f:be:26:ca:0a:4a:f1:72:5b:
84:c2:cb:8e:3e:f2:46:b8:c2:98:49:b0:f8:49:2e:
8a:75:b5:12:a6:e7:d7:02:65:32:34:78:04:90:15:
98:dd:b6:ae:38:43:bf:18:c8:fa:d6:53:23:5a:6f:
15:e4:1a:68:5d:e2:85:de:4a:ee:04:f5:fa:3a:a5:
6d:2a:4b:65:db:ca:99:4c:8f:79:89:57:85:08:5d:
73:5f:00:c0:f5:c4:5d:5e:25:a6:d2:15:f6:21:7b:
ee:aa:00:0f:c2:84:c7:d8:b8:de:18:3b:99:a5:88:
ab:a0:63:cd:77:35:3b:b9:89:11:0f:59:60:36:b2:
2f:77:77:c5:02:60:ce:f9:f6:cc:7c:a7:d1:bc:1a:
86:46:2a:41:33:da:ca:5d:cc:7e:23:3a:22:51:41:
6b:ba:3f:39:56:ff:df:26:14:43:46:0d:1d:db:f9:
af:b9:1b:e3:b8:65:c2:a2:7e:07:f9:68:c6:4d:ee:
2e:64:c9:57:1a:da:80:81:40:80:67:59:30:88:60:
64:83:ef:ad:75:13:8e:bc:ad:69:a0:61:10:dc:a5:
6a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:24:68:AA:A4:2E:50:AE:29:B7:15:21:2F:14:AE:AB:4D:C6:5C:8B
X509v3 Authority Key Identifier:
keyid:D3:35:8C:3E:C7:1F:C1:9A:6A:C9:84:6B:AF:4D:E5:98:36:35:72:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zWMPscfwZpqyYRrr03lmDY1cpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:a4:30:0a:91:19:0e:39:e9:da:3a:4f:72:98:2b:8e:d1:12:
ab:b2:42:20:9b:4b:6a:ab:8a:4d:69:df:67:76:89:64:f9:7a:
23:ed:9f:d2:9c:12:63:cd:0f:ae:2e:4f:21:d6:f7:27:ed:9f:
1e:a6:60:71:53:7f:06:f1:b9:e6:0f:0e:d0:4f:2c:17:d8:5f:
5d:51:3f:1f:32:bf:72:15:25:c9:35:b1:dc:6e:87:60:28:00:
8a:39:c4:5d:aa:75:bb:1c:d4:ca:a4:07:15:9e:4a:d9:68:47:
51:d2:c8:13:d5:58:c9:e7:6f:e1:14:33:f6:7d:e0:91:d2:ce:
05:cb:b9:2c:f0:ed:40:bf:c3:05:57:04:c0:1e:43:19:05:41:
30:34:7c:81:04:bd:12:b7:e9:4d:06:b5:05:66:a6:a2:12:a7:
11:f2:be:c5:68:58:aa:62:e7:81:8d:70:96:ed:95:15:73:dd:
31:00:30:29:55:8b:c8:b4:4e:56:5c:3f:65:0e:aa:f7:95:fc:
61:c7:38:2a:46:a0:11:4e:a1:f5:4c:ae:e0:01:6c:c4:a6:16:
84:7b:e5:e9:ba:03:e4:c7:5e:9b:ab:c1:c9:74:d0:97:c1:c0:
50:19:8f:58:74:56:43:65:49:cd:8f:92:ed:55:5f:27:c8:69:
a1:97:49:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:19:18 2026 by rpki-client