Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
File: tD1On-OlSH0g8QABkWKRUPYo86E.mft (raw, json)
Hash identifier: +5JplA+T7QhKx1VMUZjttFJGJSe3en06XFrbBeDeHfk=
Subject key identifier: EE:46:0A:68:57:92:F5:17:0D:D1:1D:D6:75:B2:76:FC:8B:C5:86:48
Authority key identifier: B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
Certificate issuer: /CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Certificate serial: 019D99CFE96806DDA0C9623A6ED1D99DD711
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
Manifest number: 0D93
Signing time: Fri 17 Apr 2026 05:00:32 +0000
Manifest this update: Fri 17 Apr 2026 05:00:32 +0000
Manifest next update: Sat 18 Apr 2026 05:00:32 +0000
Files and hashes: 1: KwW1m_TU_lvvFLbiPGoG7omszF0.roa (hash: WLXCnKipjggD7aV7lsVpIwB0+MMzwHxcfHMGEgytPNc=)
2: tD1On-OlSH0g8QABkWKRUPYo86E.crl (hash: aAgffOgs24A8jNTvnLm+bqdJyWz6Y6BI7n5SjYm4XAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:cf:e9:68:06:dd:a0:c9:62:3a:6e:d1:d9:9d:d7:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Validity
Not Before: Apr 17 05:00:32 2026 GMT
Not After : Apr 18 05:00:32 2026 GMT
Subject: CN=ee460a685792f5170dd11dd675b276fc8bc58648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:bd:2c:5c:65:99:ec:bf:1a:1a:06:10:c2:33:
f6:e5:91:92:09:7d:d7:a7:a0:ca:aa:56:a0:a4:50:
db:bd:1f:70:b4:0f:e3:64:cb:a4:df:ee:03:2d:69:
36:5f:33:fe:b3:dd:d1:7a:79:56:0f:47:97:17:c1:
fb:0e:04:09:d4:14:b3:29:27:a0:f3:ad:59:6d:7c:
1c:36:15:a3:44:b9:32:ca:e3:4c:5c:ca:a9:3a:fd:
a8:64:6e:b0:11:49:f2:54:bf:40:ca:11:fe:52:ae:
2d:b5:ab:52:83:34:0b:9a:25:bc:42:d3:9f:5a:ff:
a3:a7:bd:06:01:ba:67:bd:30:0d:7f:a0:81:b1:fe:
e2:26:b1:a4:4a:98:3c:d6:68:80:b9:5d:51:14:61:
b5:ff:92:c1:73:42:1c:56:7e:14:3b:99:bc:55:0b:
94:31:bc:d2:cb:fb:19:b9:7d:83:bc:ed:54:a8:95:
68:02:d7:c0:6e:cb:ae:75:81:fa:23:ed:60:21:ba:
a7:81:f4:10:54:fe:ef:59:e4:7f:ea:88:43:2f:b9:
a9:e2:e8:ac:15:a7:54:54:d2:88:b2:47:e0:73:6c:
9c:50:49:3e:16:34:55:9b:40:f1:7b:c8:97:b6:07:
8f:05:6e:82:52:98:9d:91:27:d6:a0:80:82:f7:d9:
a5:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:46:0A:68:57:92:F5:17:0D:D1:1D:D6:75:B2:76:FC:8B:C5:86:48
X509v3 Authority Key Identifier:
keyid:B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:c4:41:c4:5d:40:97:1a:fa:d9:c6:95:e2:96:b8:c6:f1:ad:
08:65:d8:26:87:f4:45:4a:5e:99:6e:17:41:d7:68:b9:44:64:
07:bd:af:08:08:a3:bb:e2:71:e4:1a:de:d2:b9:dd:52:43:ff:
76:07:b0:59:a6:54:a7:b0:68:fe:03:50:a0:ae:04:67:0a:ab:
2b:7b:8c:7e:a7:a5:c6:dc:6e:63:ba:5c:13:d4:3e:4d:8f:67:
3e:ba:36:68:09:f3:00:85:b9:3a:af:20:89:10:90:28:20:74:
cc:56:dc:3a:19:5c:5d:a8:e5:70:5a:2e:a6:2e:c6:dd:06:31:
9c:f6:bf:dc:f1:a5:8c:ff:4b:55:ae:e6:5d:b8:1b:af:64:44:
ea:de:49:44:88:1b:bd:1e:d5:75:1d:3b:07:f7:09:b0:3f:01:
a5:85:0a:27:5a:e6:04:2a:68:af:ea:e9:25:67:a9:0e:2b:6f:
da:11:45:a5:38:2f:f9:cd:0a:ec:bf:b5:a6:e5:80:77:8d:a5:
44:91:2b:0d:35:3b:e7:ed:02:03:1b:78:ef:55:8d:f5:d2:f3:
9d:eb:db:bd:b0:9a:30:8d:33:2e:a3:3a:41:a9:84:8c:1a:53:
77:be:62:6d:b7:8e:67:15:e5:e4:b5:65:a4:a8:c4:44:27:6a:
96:b4:37:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:26:15 2026 by rpki-client