Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
File: 0tiRsOMo58hWrUt6B2TYLYVgltY.mft (raw, json)
Hash identifier: K1HOFHrGw50aIm/kBvuSFDtNgBz6EfGmiWBoAWBerP8=
Subject key identifier: 1E:4D:47:B6:01:1C:1D:4E:8B:72:26:34:34:87:6B:6D:65:32:BE:C9
Authority key identifier: D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
Certificate issuer: /CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Certificate serial: 019DA3E6420941523D83AC7A86B17C8BA613
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
Manifest number: 051A
Signing time: Sun 19 Apr 2026 04:01:09 +0000
Manifest this update: Sun 19 Apr 2026 04:01:09 +0000
Manifest next update: Mon 20 Apr 2026 04:01:09 +0000
Files and hashes: 1: 0tiRsOMo58hWrUt6B2TYLYVgltY.crl (hash: L1b9d/zSJQuDwzzRB9mBYa9z5WuwAu7SszXuo7NTveo=)
2: UCdWTcnF4ZVDrSnBvN43rU1Zk3A.roa (hash: Qw45xlTVvhAH55/GToKQCdfRTF8PLXCZ9h0uBYEUVtM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:e6:42:09:41:52:3d:83:ac:7a:86:b1:7c:8b:a6:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Validity
Not Before: Apr 19 04:01:09 2026 GMT
Not After : Apr 20 04:01:09 2026 GMT
Subject: CN=1e4d47b6011c1d4e8b72263434876b6d6532bec9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f9:af:1a:ab:1d:2d:8e:15:12:a8:a6:72:fd:
3d:b3:24:69:1a:ad:24:b9:01:7c:d7:31:46:f6:0a:
41:28:75:19:9b:b5:3e:fd:21:b0:e7:35:53:0d:8b:
29:2e:d3:aa:f9:98:22:67:37:dc:bf:39:1e:1d:ca:
97:76:13:0a:b2:23:63:4c:4f:be:21:05:d5:d6:25:
63:b4:a0:8f:37:bf:9f:ce:26:29:c4:c2:33:60:3d:
02:80:a7:95:15:6e:7e:35:f1:e4:71:b6:74:b2:14:
cf:ad:77:12:24:fe:ff:c6:fb:6a:33:27:2f:31:0d:
83:b0:f5:15:d6:68:c5:50:31:01:93:fc:cc:3c:82:
d5:21:cb:9b:cc:92:31:01:41:ad:6f:fb:13:f2:b2:
dc:8b:3b:b3:97:81:59:e1:1e:bf:1c:31:63:2e:ca:
fe:5b:c7:b7:48:ec:ed:05:90:77:e9:9c:ae:c3:ec:
a3:6d:4d:a7:12:24:f2:9d:83:33:1e:2b:91:90:8d:
21:71:18:08:ce:31:cf:2f:89:74:59:86:fd:fc:5d:
52:dd:55:b8:b5:6b:e8:f6:31:2b:ac:8a:96:9e:71:
09:29:66:3f:b2:f7:6f:53:05:46:f0:a8:5c:63:c1:
78:d5:83:db:eb:d0:b5:5a:e2:6c:b1:ac:5a:b3:4d:
16:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:4D:47:B6:01:1C:1D:4E:8B:72:26:34:34:87:6B:6D:65:32:BE:C9
X509v3 Authority Key Identifier:
keyid:D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:1d:46:57:20:45:4a:26:1d:65:8b:60:90:4e:5a:8a:7d:c7:
c5:63:ab:06:2f:11:af:80:83:39:bb:67:f1:a1:e3:c0:8a:28:
8f:f6:25:67:ca:20:76:69:f0:65:be:b8:e3:83:d9:79:17:5b:
ba:16:c3:dd:e7:a9:fb:e7:f2:5f:08:93:54:4c:b2:d5:d0:00:
76:7e:e0:ba:0d:59:72:56:a2:54:31:6a:95:df:1a:4a:2b:8b:
3c:37:9a:c9:1f:9d:29:53:54:ff:93:1d:ab:ae:42:31:85:de:
cc:7e:b6:a7:4a:8f:40:9b:5e:ca:c9:c2:c2:90:4c:f8:97:17:
4a:70:54:7e:57:95:92:93:42:e9:95:08:e2:ff:5c:fe:c4:6c:
f0:f4:a9:df:6a:7c:ee:49:84:39:e9:0e:6f:e7:d9:fc:3e:4d:
2b:4f:a8:39:c8:60:ad:9c:6c:c6:8d:6c:dc:b5:25:ab:36:97:
d7:69:98:8f:fb:a8:b2:f5:46:90:ca:fa:5d:80:e7:92:04:b9:
98:c4:f6:f2:e4:a4:24:73:4a:93:f3:c0:14:30:d8:fd:4b:56:
df:36:f9:ba:e0:c0:6c:9e:5c:0d:dc:0b:96:ea:d2:bf:f7:d0:
33:30:2e:aa:28:09:fd:62:31:6d:12:7c:56:d4:fd:f3:f1:4a:
88:d9:a0:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:01:48 2026 by rpki-client