Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
File: 0tiRsOMo58hWrUt6B2TYLYVgltY.mft (raw, json)
Hash identifier: 2TR9X0+fZlHc20CtLBA+X59CDehImACo4iooQTWd7YY=
Subject key identifier: FD:B4:F3:DD:81:F7:04:2E:B4:BA:D6:E6:28:2E:04:BF:19:09:7D:BF
Authority key identifier: D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
Certificate issuer: /CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Certificate serial: 019CAAC6FE0E69C3673FD81790382002AB16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
Manifest number: 0499
Signing time: Sun 01 Mar 2026 19:01:33 +0000
Manifest this update: Sun 01 Mar 2026 19:01:33 +0000
Manifest next update: Mon 02 Mar 2026 19:01:33 +0000
Files and hashes: 1: 0tiRsOMo58hWrUt6B2TYLYVgltY.crl (hash: c2VNepSRbctZfZQqkIINUuX5lzWNDWqWCtbeqG2VY7U=)
2: UCdWTcnF4ZVDrSnBvN43rU1Zk3A.roa (hash: Qw45xlTVvhAH55/GToKQCdfRTF8PLXCZ9h0uBYEUVtM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:fe:0e:69:c3:67:3f:d8:17:90:38:20:02:ab:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Validity
Not Before: Mar 1 19:01:33 2026 GMT
Not After : Mar 2 19:01:33 2026 GMT
Subject: CN=fdb4f3dd81f7042eb4bad6e6282e04bf19097dbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:89:5b:98:17:e6:47:71:ac:47:2f:ab:82:47:
7b:e6:45:97:f9:ea:5f:1e:1f:22:b1:05:9b:95:e6:
91:76:f9:cf:3e:6f:75:12:1f:0a:f2:3c:ea:0e:c9:
ff:6b:ab:08:b1:67:90:f6:51:17:38:af:ad:3c:59:
f1:00:07:b6:b8:1e:ef:4e:46:c1:64:ee:fb:84:c0:
e7:a2:fe:2d:38:da:71:ee:66:81:2e:31:0b:db:c2:
e9:93:e2:dc:77:36:35:4c:3d:60:6e:e9:ba:fb:de:
2c:d8:ce:ab:a8:44:72:14:24:d2:6d:8b:13:7c:ee:
82:64:3e:ca:12:d0:34:f5:0f:a9:ff:31:c6:3e:08:
dc:67:99:d8:dc:83:3a:ce:63:38:71:97:5e:6e:7a:
ec:99:22:43:54:03:5f:61:e4:67:a6:55:a6:77:0b:
fa:67:1c:1e:ce:bd:42:b5:95:11:ec:f6:8f:40:14:
11:d3:f4:29:2c:ce:22:3c:32:80:f1:e1:e7:11:af:
f4:c6:ab:59:8d:9b:d1:c7:4f:80:9a:aa:ba:55:bf:
22:bf:d7:c0:37:ad:9a:fa:44:ee:60:3b:f4:f2:c8:
ed:f7:81:f3:b5:99:ac:7e:1f:0c:e1:c6:07:31:75:
8e:5a:5e:40:e0:a5:75:d0:c0:ff:5e:dd:0c:37:67:
74:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:B4:F3:DD:81:F7:04:2E:B4:BA:D6:E6:28:2E:04:BF:19:09:7D:BF
X509v3 Authority Key Identifier:
keyid:D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:81:8e:a2:2e:c2:4f:40:66:c5:b6:cc:ea:a2:69:ff:1d:f7:
cb:2a:a7:21:c8:af:f8:15:a1:50:e2:24:c8:cb:79:b4:20:d7:
56:5f:6b:e2:1b:58:bf:b2:6c:a6:67:bf:f2:d9:c2:78:17:8e:
e7:04:aa:17:c3:08:4b:12:41:46:c4:0c:fd:13:b5:f5:2b:b6:
57:8d:7f:46:0c:c0:c5:a9:92:86:88:0b:ad:fd:69:48:54:4b:
4d:2e:0a:9d:11:3d:48:03:70:e2:77:2e:69:aa:e3:60:b1:00:
33:d3:3a:d7:08:d0:27:70:9e:ad:dd:c8:99:9d:df:0d:6c:d5:
f5:77:ed:37:9f:05:7e:d3:61:95:a8:bc:58:40:65:7b:c5:fb:
b5:ce:0c:da:c5:a4:6e:b2:2d:02:e5:50:2f:f6:54:e0:a3:bf:
b9:b5:0f:76:ff:cf:8c:b2:8d:5e:bc:a7:54:af:ce:69:72:00:
83:11:40:ed:67:f7:03:33:8a:f9:04:35:5d:e4:a7:09:23:9a:
15:0a:ef:f3:f1:67:8b:1a:55:dc:2d:06:8e:2a:ea:85:ed:b8:
af:0f:a9:e0:f1:76:a0:83:ff:21:5e:9b:c7:7e:87:ab:50:7a:
1a:85:78:cf:4d:f2:ae:39:cd:2b:77:71:10:9a:8c:a6:91:e0:
98:77:1b:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:43:02 2026 by rpki-client