Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
File: tD1On-OlSH0g8QABkWKRUPYo86E.mft (raw, json)
Hash identifier: 7ES+wXg63gCyuJQoLnYfdGjNCbgOq1AiTRsEVV5Ku3w=
Subject key identifier: C6:DA:7E:3D:28:F3:49:42:AE:7B:92:59:F7:97:50:FE:5B:81:27:1C
Authority key identifier: B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
Certificate issuer: /CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Certificate serial: 019CAC471EB3B463A5131A412235D22E3F24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
Manifest number: 0D18
Signing time: Mon 02 Mar 2026 02:01:07 +0000
Manifest this update: Mon 02 Mar 2026 02:01:07 +0000
Manifest next update: Tue 03 Mar 2026 02:01:07 +0000
Files and hashes: 1: KwW1m_TU_lvvFLbiPGoG7omszF0.roa (hash: WLXCnKipjggD7aV7lsVpIwB0+MMzwHxcfHMGEgytPNc=)
2: tD1On-OlSH0g8QABkWKRUPYo86E.crl (hash: anblp/l75NSF2/zuSy7SHhFW1wgsUS3ugwBx5qDt/SI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:1e:b3:b4:63:a5:13:1a:41:22:35:d2:2e:3f:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Validity
Not Before: Mar 2 02:01:07 2026 GMT
Not After : Mar 3 02:01:07 2026 GMT
Subject: CN=c6da7e3d28f34942ae7b9259f79750fe5b81271c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0e:4a:36:6e:fb:ee:07:37:59:0c:00:30:ab:
6d:54:eb:9e:2a:73:5a:93:83:30:1d:96:fb:b3:f3:
9c:f4:06:9c:de:d0:f5:0a:81:54:ce:7e:7f:98:06:
bd:f1:92:b9:22:bd:b5:19:61:8e:98:7f:57:2a:71:
b7:a1:c9:05:49:c4:13:64:0e:bd:f0:36:05:ef:72:
a6:95:2d:da:f9:d9:d9:bd:17:97:eb:a6:e0:48:2e:
fa:ba:08:56:88:5a:75:78:1b:ed:86:52:eb:e8:f3:
c1:37:57:73:8c:90:a7:53:f4:2c:f8:a8:68:24:00:
7e:85:44:1f:70:98:f5:63:8f:ce:53:9b:83:0f:ca:
54:38:54:c4:b0:e0:d5:eb:59:10:24:f3:f4:88:ee:
77:5b:a6:d0:0b:0b:1b:3d:15:e4:cc:c8:4a:92:4b:
91:16:ab:64:2f:78:20:ef:09:d1:87:ae:6f:3b:57:
97:86:14:c8:0e:1c:61:e2:10:11:5e:4c:86:56:65:
f9:92:29:ac:ed:bb:65:30:2f:c9:14:0d:77:81:b5:
f7:be:5f:43:ff:20:a4:90:02:fc:12:2e:9a:c6:40:
58:8b:5b:5d:bd:79:a2:7e:87:73:16:7a:e2:fb:d3:
b8:1a:04:36:5f:f3:3d:26:03:a7:e5:66:45:a7:45:
7c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:DA:7E:3D:28:F3:49:42:AE:7B:92:59:F7:97:50:FE:5B:81:27:1C
X509v3 Authority Key Identifier:
keyid:B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:ab:a7:8a:be:27:97:61:40:96:a7:cb:1c:82:1d:e8:7b:49:
01:78:af:d1:23:0f:12:29:66:6d:82:86:bd:cc:26:c2:90:f7:
ec:a3:49:35:68:7f:f5:f6:9c:5c:f4:87:a1:21:b5:fe:62:f3:
43:d2:c9:6a:0a:33:a0:3e:7e:5a:47:58:69:f9:6f:f4:8d:df:
3d:0d:b1:07:22:85:54:c3:73:c1:f6:a7:88:a8:f5:a0:22:03:
e1:cf:57:4b:bc:b9:2a:b7:46:fd:a8:48:9c:83:ad:27:e1:18:
69:97:6e:43:a0:38:f5:31:0f:7b:5a:08:0f:50:48:9f:00:2f:
a7:a8:6e:f4:8a:5a:83:e4:be:0f:db:0c:43:88:b7:f2:f3:05:
58:a5:a1:6a:41:79:e0:9c:7e:e8:36:d0:63:d3:bd:9c:16:2e:
f2:03:ae:82:17:b0:bf:bc:2d:8d:34:65:9a:8d:a5:48:92:b3:
ac:06:2d:47:d4:44:d2:96:6a:a2:a6:1c:66:b8:01:59:17:73:
c2:ca:7b:02:99:0e:d5:fe:a5:41:d7:1b:d3:b8:13:ca:3f:96:
59:ce:53:4b:0f:e1:9a:88:51:b2:7c:2b:a0:8e:f8:67:df:c0:
58:3a:48:ea:a1:e9:89:04:29:0e:f4:4f:50:56:01:08:86:09:
4c:bf:da:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:40:05 2026 by rpki-client