Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json)
Hash identifier: mToZk5ZuSlc1NVGqcFJdGa9tEItvlh4cUrY51XPLZKM=
Subject key identifier: 4D:5F:7F:C7:87:32:7B:3F:17:C9:01:77:53:A0:62:04:43:BC:02:3E
Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8
Certificate serial: 019D9818FD1879C90DF41DA4F106E1E22BAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
Manifest number: 18C2
Signing time: Thu 16 Apr 2026 21:01:07 +0000
Manifest this update: Thu 16 Apr 2026 21:01:07 +0000
Manifest next update: Fri 17 Apr 2026 21:01:07 +0000
Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: 662ZciDJaLmVnIfuylqbh5tXo05XRn1hkMsOsakskpU=)
2: pQs3JKfMOeGGwz6xcK4hqR0QChk.roa (hash: +rzonnKLVZvpF/nb1uT59jY0FH0KqsDx047Wn251P8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:fd:18:79:c9:0d:f4:1d:a4:f1:06:e1:e2:2b:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8
Validity
Not Before: Apr 16 21:01:07 2026 GMT
Not After : Apr 17 21:01:07 2026 GMT
Subject: CN=4d5f7fc787327b3f17c9017753a0620443bc023e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3a:c8:ce:9a:f3:e0:6f:d8:27:83:c1:a6:b4:
93:a2:02:68:e0:cf:20:46:72:47:ee:cb:62:31:cd:
2d:f1:98:9e:6f:f4:a9:7e:a1:8e:71:86:ff:88:75:
ee:e6:31:f7:e7:fd:be:c8:41:05:bf:5e:5a:2c:11:
71:50:7a:65:d7:ab:db:2b:e9:97:c7:9b:30:64:17:
10:86:8a:3f:28:67:d1:84:32:6c:3e:a5:29:7b:09:
39:92:06:29:9c:29:05:66:53:82:1a:bf:3e:7e:08:
3e:ce:fa:7b:51:98:34:97:49:42:41:c0:55:cc:8b:
47:3d:7f:39:da:7f:6c:a4:16:97:c8:86:45:b5:5a:
14:45:17:47:20:52:13:e7:77:08:ee:f5:df:c4:10:
75:83:80:2b:2f:f3:2a:52:2f:67:23:c6:fc:45:ee:
e7:a3:ca:8d:84:33:d6:be:16:b4:c2:50:dd:4a:54:
7c:d0:22:bc:e2:2e:65:72:f5:9d:63:25:ca:32:88:
49:25:fa:6d:31:1e:eb:4a:a1:f2:23:c2:03:ac:9a:
b5:3f:90:da:c4:4e:15:b1:79:4d:dd:9e:f7:f4:94:
e2:c1:d3:2e:a8:aa:53:c3:a8:9d:15:16:1a:ea:04:
e8:63:e0:4d:e7:e4:4a:7f:b4:a9:57:62:d8:12:09:
5b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:5F:7F:C7:87:32:7B:3F:17:C9:01:77:53:A0:62:04:43:BC:02:3E
X509v3 Authority Key Identifier:
keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:0b:bb:58:de:08:ef:5e:97:97:bd:3c:9f:de:ee:17:4f:18:
91:e6:4c:89:51:b7:ae:c7:ab:7e:5d:be:e7:4f:bf:1a:54:59:
cf:fb:f8:1a:8e:10:7d:62:7d:96:c3:7d:c8:4c:e2:9a:a9:1a:
aa:53:7b:b4:7c:1f:6c:90:5c:73:a9:29:01:26:12:8b:1f:15:
0e:48:33:25:f5:b5:c7:6d:2a:6a:47:98:2e:d2:96:f1:da:91:
5f:52:24:97:58:38:a1:84:a5:8f:25:9a:77:d1:1c:79:43:13:
03:68:ef:01:c4:ad:00:4f:20:cf:19:e0:66:d0:7f:76:47:a1:
f1:75:7c:99:0b:de:52:d0:2a:fe:0c:e8:38:2b:55:cd:23:c5:
bb:03:bb:89:44:a1:bf:2a:c7:37:65:ce:7a:eb:bf:3d:dc:45:
cb:29:f5:ab:f2:7e:46:5c:20:2a:d0:44:9e:42:e3:c5:9a:fe:
c9:09:55:d1:2b:ac:26:ea:2c:52:ca:0e:ce:1c:c0:01:ef:18:
00:4a:fe:a9:63:0d:20:86:14:10:10:7a:cf:48:6d:cd:54:d2:
ac:bc:0a:82:84:5b:ae:71:56:87:06:d5:bb:84:ce:22:c2:4a:
c6:ad:b8:32:dd:d5:85:76:15:ac:67:cb:0b:8f:39:2b:56:77:
b6:4f:01:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:03:51 2026 by rpki-client