Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
File: 0DjDOLEo-Drewvadk8MsU1PKA5g.mft (raw, json)
Hash identifier: 3yY/b7etO7oAGHbuugsRrHVUq3uG21cQYAWFpz/bJnw=
Subject key identifier: E4:BE:05:9A:0A:A5:82:E6:CA:A4:8D:A5:E3:AD:FD:72:E0:0C:E4:97
Authority key identifier: D0:38:C3:38:B1:28:F8:3A:DE:C2:F6:9D:93:C3:2C:53:53:CA:03:98
Certificate issuer: /CN=d038c338b128f83adec2f69d93c32c5353ca0398
Certificate serial: 019CAB6B564DB5B7CDA45A1B77FA27FD1A93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0DjDOLEo-Drewvadk8MsU1PKA5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
Manifest number: 14E4
Signing time: Sun 01 Mar 2026 22:01:04 +0000
Manifest this update: Sun 01 Mar 2026 22:01:04 +0000
Manifest next update: Mon 02 Mar 2026 22:01:04 +0000
Files and hashes: 1: 0DjDOLEo-Drewvadk8MsU1PKA5g.crl (hash: splGO+4fVqouDd3Ovq1QK/dSA5OzfzXjtWDVlIN5fiM=)
2: iYtloRWl9kFypd8JJUfmPgfj4cA.roa (hash: S73CmXUZ6HVY4mwA83JVTETkq549rHQpfRMzqNjQiJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
rsync://rpki.ripe.net/repository/DEFAULT/0DjDOLEo-Drewvadk8MsU1PKA5g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:56:4d:b5:b7:cd:a4:5a:1b:77:fa:27:fd:1a:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d038c338b128f83adec2f69d93c32c5353ca0398
Validity
Not Before: Mar 1 22:01:04 2026 GMT
Not After : Mar 2 22:01:04 2026 GMT
Subject: CN=e4be059a0aa582e6caa48da5e3adfd72e00ce497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:63:48:f8:03:bc:dc:00:ca:0c:86:81:88:c5:
72:54:84:3e:c4:60:b6:24:01:5b:89:d5:94:80:56:
f3:b7:4c:47:76:25:72:ea:1c:68:03:4f:e9:a9:6d:
ce:bc:79:a5:fb:81:9e:71:af:4e:75:4b:12:e7:24:
72:9f:66:4a:3b:bb:39:62:f8:f6:9d:fc:f8:b1:2d:
2d:c2:da:33:25:b4:a1:8c:28:a0:8e:e7:60:85:8c:
f3:ce:36:62:a2:5c:c1:fd:fd:2d:3b:0b:b2:45:58:
73:e7:c1:14:3a:56:04:81:6a:51:d2:ed:2c:af:fd:
d8:32:4f:5b:cc:70:5d:4f:4e:d0:0e:39:12:31:65:
16:15:bb:58:5e:41:98:df:d1:02:8b:5d:05:21:0d:
c0:54:30:9c:b6:73:c0:33:c2:45:a9:61:3f:27:fe:
bc:1f:da:95:b0:f0:6f:d0:c5:18:d8:92:71:1f:80:
66:5b:84:71:5d:2e:e2:01:b5:f6:17:2d:b6:4d:10:
12:64:40:fc:b3:c0:13:2f:3a:4f:b8:2b:4b:e4:4e:
51:e6:d3:9b:66:fd:60:9e:69:c8:fc:2c:a2:7d:b5:
df:bc:6a:22:3b:93:7a:7d:e2:e5:51:70:48:70:2f:
55:e8:99:da:3e:bb:09:36:47:69:c6:3e:59:86:73:
fa:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:BE:05:9A:0A:A5:82:E6:CA:A4:8D:A5:E3:AD:FD:72:E0:0C:E4:97
X509v3 Authority Key Identifier:
keyid:D0:38:C3:38:B1:28:F8:3A:DE:C2:F6:9D:93:C3:2C:53:53:CA:03:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0DjDOLEo-Drewvadk8MsU1PKA5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:34:5f:95:ae:79:4c:8d:b4:e1:83:c4:58:24:f4:17:0b:ab:
45:aa:c8:de:fb:d3:e8:79:76:23:2e:a5:6d:1c:19:20:a6:07:
5d:0a:9c:b0:cf:18:7c:d6:ed:b8:d2:8b:b5:8a:f0:b8:64:d6:
ef:1f:3f:8a:d6:4a:c5:38:a7:99:75:cb:bf:54:81:d7:ed:ba:
01:06:bc:0c:1a:7e:4e:47:7e:3f:0e:d0:83:a1:c1:a0:cf:26:
4a:db:a6:83:aa:57:eb:43:de:94:95:95:eb:ea:49:cb:a1:1b:
34:a4:0c:e8:e8:a2:cd:e4:98:cc:5a:a9:21:6a:24:8d:fc:cf:
00:c8:98:26:a4:18:33:4e:cb:86:50:0b:fb:3e:9a:5c:06:e4:
d9:44:65:93:23:68:8a:0a:f6:2b:9a:5c:2b:f4:3b:af:d1:c8:
2b:91:67:60:e4:25:40:30:94:e5:fb:36:ae:6f:2f:32:fd:63:
f1:f4:af:7c:4f:1a:70:15:8e:f8:6e:e4:8f:9b:67:08:b6:5b:
cb:a3:80:5a:29:4a:83:cc:5a:06:36:75:8c:4c:bb:e1:d2:f8:
d0:53:d1:6f:a3:9e:be:03:6f:2c:f2:93:00:25:db:4e:9d:39:
e0:db:98:cf:59:34:73:ad:99:d1:d6:f9:d2:f0:0f:7d:95:2f:
5f:f9:4a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:44:24 2026 by rpki-client