Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
File: 0DjDOLEo-Drewvadk8MsU1PKA5g.mft (raw, json)
Hash identifier: wKFYYjLwof/Ga+gHLrsf60YlbLdlFShq6OtJu7reE7U=
Subject key identifier: 94:9D:A3:87:05:E0:DE:92:F4:8F:B6:AC:1C:1B:1B:2A:52:04:43:5C
Authority key identifier: D0:38:C3:38:B1:28:F8:3A:DE:C2:F6:9D:93:C3:2C:53:53:CA:03:98
Certificate issuer: /CN=d038c338b128f83adec2f69d93c32c5353ca0398
Certificate serial: 019D98F4329E58314AA5D8F8E1CA504BDAA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0DjDOLEo-Drewvadk8MsU1PKA5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
Manifest number: 155F
Signing time: Fri 17 Apr 2026 01:00:33 +0000
Manifest this update: Fri 17 Apr 2026 01:00:33 +0000
Manifest next update: Sat 18 Apr 2026 01:00:33 +0000
Files and hashes: 1: 0DjDOLEo-Drewvadk8MsU1PKA5g.crl (hash: fJcL4v08nbyNqSXdM9ftP/YqHCPnmRo84OKcUyXrJ4k=)
2: iYtloRWl9kFypd8JJUfmPgfj4cA.roa (hash: S73CmXUZ6HVY4mwA83JVTETkq549rHQpfRMzqNjQiJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
rsync://rpki.ripe.net/repository/DEFAULT/0DjDOLEo-Drewvadk8MsU1PKA5g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:32:9e:58:31:4a:a5:d8:f8:e1:ca:50:4b:da:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d038c338b128f83adec2f69d93c32c5353ca0398
Validity
Not Before: Apr 17 01:00:33 2026 GMT
Not After : Apr 18 01:00:33 2026 GMT
Subject: CN=949da38705e0de92f48fb6ac1c1b1b2a5204435c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:62:a2:c0:b0:d6:d7:b8:24:e2:6d:fd:81:fd:
0d:d8:be:0c:b8:c2:29:a1:8a:98:58:94:e2:14:8d:
e7:58:da:18:37:90:d1:fc:92:89:5f:e8:31:0b:8a:
b6:5c:6d:65:dd:98:3d:54:e9:f9:48:c5:31:60:68:
a0:67:18:9f:ab:80:78:d9:f8:15:df:dc:53:0c:4b:
af:2e:6a:61:6d:64:6c:52:fa:22:8e:25:b4:cd:72:
12:c5:f1:07:d6:ac:97:7a:cf:b8:1b:52:75:5e:d7:
cd:48:0e:ac:0b:86:e3:e0:56:d4:c9:9c:b0:54:e9:
c4:39:38:15:60:02:49:23:43:e6:43:dd:1e:60:83:
b9:4c:2c:3b:cb:81:4b:64:99:04:57:42:e7:31:f4:
78:16:5b:f7:c2:7a:d3:6b:e0:8c:1d:de:68:2f:bd:
e3:cd:42:44:4a:5e:55:cf:f8:61:ed:d5:72:63:95:
2c:a2:b9:8d:01:b8:6b:33:8c:fd:66:4b:5c:4a:8d:
f3:1a:0a:fa:ba:92:f7:8e:be:0b:7f:d9:c7:6b:46:
f6:24:5c:e0:e8:8c:0c:8a:36:6a:41:f6:aa:00:c7:
99:9a:82:dc:43:74:ae:06:e6:92:6c:0f:b0:5a:a8:
e5:6b:4c:64:94:57:cc:ce:dc:5b:36:bf:c9:79:7b:
82:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:9D:A3:87:05:E0:DE:92:F4:8F:B6:AC:1C:1B:1B:2A:52:04:43:5C
X509v3 Authority Key Identifier:
keyid:D0:38:C3:38:B1:28:F8:3A:DE:C2:F6:9D:93:C3:2C:53:53:CA:03:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0DjDOLEo-Drewvadk8MsU1PKA5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:47:e8:29:eb:95:33:5e:7a:f8:55:53:2f:0b:15:2f:d6:dd:
89:56:7e:0b:a6:4f:4a:f3:86:af:c4:77:f7:00:42:9b:36:ee:
3c:aa:19:c9:45:09:c9:fc:b5:59:dd:50:ab:30:84:25:83:49:
e0:25:fa:67:65:c6:32:e9:8a:5d:f7:41:af:63:5f:c2:92:a1:
e9:7a:55:c9:f8:f2:8d:aa:75:58:7e:69:ad:dc:d9:e3:08:01:
76:b3:e3:04:61:1b:b8:06:cf:ea:c5:9f:76:44:8e:05:39:6b:
06:9a:c6:7a:69:3a:71:ec:9f:8d:ad:51:65:36:37:4c:f2:6d:
e9:44:aa:a9:0f:8f:3a:96:18:ae:76:8b:c0:68:5c:5f:59:f8:
f7:cd:a2:44:e4:3b:50:98:a9:4c:27:8a:46:ff:4c:8f:c5:c4:
72:67:91:86:c6:06:e7:ed:b6:b7:7a:f5:4c:70:23:54:41:3d:
4b:14:3f:31:d3:6a:a6:07:48:fd:65:7a:f5:66:f3:29:f6:82:
2c:a8:af:f6:6e:b3:7d:31:f4:ac:ee:31:7d:03:60:b9:2a:0e:
12:9d:a8:e8:e2:c8:7a:b9:f5:fa:7a:06:5b:68:20:19:75:0f:
34:13:81:53:cf:41:7d:2d:3a:dd:f8:74:e1:b7:d2:28:3a:1d:
4a:40:c4:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:45:16 2026 by rpki-client