Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json)
Hash identifier: FA26n47y89q6DK1gUwLO30ud2IXtnErc7r1oa8jQon8=
Subject key identifier: A6:1E:64:4F:C3:7F:AB:77:9A:77:73:7F:A2:43:0A:46:72:6A:C5:FF
Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8
Certificate serial: 019CAA8F606475C05F32B88FF6F1653FBA72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
Manifest number: 1847
Signing time: Sun 01 Mar 2026 18:00:48 +0000
Manifest this update: Sun 01 Mar 2026 18:00:48 +0000
Manifest next update: Mon 02 Mar 2026 18:00:48 +0000
Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: /22lvVQtGPENS627xIduISEkKTAv7zoWujkXYZDXINM=)
2: pQs3JKfMOeGGwz6xcK4hqR0QChk.roa (hash: +rzonnKLVZvpF/nb1uT59jY0FH0KqsDx047Wn251P8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:60:64:75:c0:5f:32:b8:8f:f6:f1:65:3f:ba:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8
Validity
Not Before: Mar 1 18:00:48 2026 GMT
Not After : Mar 2 18:00:48 2026 GMT
Subject: CN=a61e644fc37fab779a77737fa2430a46726ac5ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f6:b6:18:91:e2:20:b8:9b:34:26:5b:b0:8d:
a4:30:7e:bc:d9:a9:c8:93:be:31:d1:0b:a4:9e:ca:
0d:ed:3e:69:07:22:6c:7d:0d:8d:04:75:3f:2c:7b:
0a:ea:49:b5:84:57:cb:f8:8d:86:35:26:20:31:3d:
e3:da:4d:14:ea:56:94:9f:68:83:f2:cf:6c:19:31:
c3:15:19:7a:d6:04:e0:cf:91:5e:c8:f9:40:29:fd:
88:b2:70:49:91:2c:c7:52:73:d3:7e:6e:03:a7:50:
f1:a8:41:9c:5a:13:49:b6:0e:a9:24:9e:de:da:bc:
b2:3c:58:fa:a6:a7:3f:57:cf:3a:c4:88:df:34:8e:
a6:10:fe:39:8c:0e:4a:5b:19:6c:3b:d9:ac:69:e1:
5b:0c:31:90:ff:07:16:f2:62:c3:af:cc:47:88:3c:
9a:71:10:cc:be:a4:fe:3d:db:73:cd:8f:45:46:e3:
56:21:b1:b8:7c:de:8d:14:3a:97:82:80:ee:1b:6c:
69:49:9e:1d:4b:6d:dd:1b:ca:74:50:1d:d4:20:3c:
6f:e4:67:6e:e7:66:75:49:e3:24:33:7d:3a:30:5b:
ce:36:e0:76:a2:8a:f8:d6:b6:8b:6c:09:d7:1f:9b:
b8:75:e4:fe:8a:64:20:74:ba:bb:6b:83:d2:e0:dc:
85:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:1E:64:4F:C3:7F:AB:77:9A:77:73:7F:A2:43:0A:46:72:6A:C5:FF
X509v3 Authority Key Identifier:
keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:cf:62:7f:a9:91:78:40:9d:11:f1:87:51:8f:f5:df:0c:b7:
15:10:8e:62:28:e8:13:b0:86:5d:49:52:4b:bd:8a:9a:66:5a:
d6:15:f4:22:50:28:3d:10:5f:26:db:b2:5d:db:ac:95:c8:d4:
64:e7:b7:b1:b6:2f:7d:93:f9:cc:48:57:8a:41:ff:5b:81:9e:
2c:a2:2f:7f:7e:7a:b7:f9:0e:a8:e2:95:c5:f1:12:08:50:0b:
49:3c:5a:4d:4c:e3:40:6e:7d:58:87:9f:94:f9:3a:68:67:63:
6e:e5:d7:04:0b:4c:c8:e9:fd:9c:9d:e3:a7:65:57:0f:2b:4f:
ee:9b:6a:41:60:fe:04:5d:97:f3:ae:a8:0c:a7:6e:b5:b4:d5:
5d:b2:17:d9:c2:b1:b1:22:a7:d7:ad:c2:44:ac:d5:a0:f3:92:
e2:40:95:5d:5a:28:d4:1f:ba:49:f3:f2:25:e2:08:42:33:88:
df:d4:f9:b5:37:85:a4:ef:55:39:7b:ff:74:fc:b5:21:fc:f1:
9c:79:ac:2e:ba:21:32:cc:71:a6:bd:0e:95:69:3c:5d:1a:e2:
5a:3c:e5:47:86:b5:e9:2f:48:14:03:e0:10:0b:ed:6b:34:4b:
30:26:08:3e:82:12:eb:9a:fa:75:ce:fe:9c:3c:94:c6:0c:39:
9e:fe:2a:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:43:53 2026 by rpki-client