Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
File: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft (raw, json)
Hash identifier: LPQC2EQin+5x4dgx/JabB6oM4lmhR5Mfh3DKX31rJ28=
Subject key identifier: BA:94:97:59:BD:34:28:40:92:A5:E8:02:C3:F1:38:B1:FE:24:99:E3
Authority key identifier: D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
Certificate issuer: /CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Certificate serial: 019CAA900723EAE881602F05BD9559A43805
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
Manifest number: 1844
Signing time: Sun 01 Mar 2026 18:01:31 +0000
Manifest this update: Sun 01 Mar 2026 18:01:31 +0000
Manifest next update: Mon 02 Mar 2026 18:01:31 +0000
Files and hashes: 1: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl (hash: M9FowGtZ+lTufAD3UjP8uiTVylhQvyAOYK9PWo14tYI=)
2: qB-yYmmoZAETKywXU4O90SMz9p4.roa (hash: zSfrh0GvpLorIoRjiLIdctGLnu0vrYxfcdrku/RI+Pw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:90:07:23:ea:e8:81:60:2f:05:bd:95:59:a4:38:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Validity
Not Before: Mar 1 18:01:31 2026 GMT
Not After : Mar 2 18:01:31 2026 GMT
Subject: CN=ba949759bd34284092a5e802c3f138b1fe2499e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:89:cb:62:74:b6:78:0c:01:42:ac:01:e5:5b:
62:ea:be:b1:da:56:d6:54:cb:4b:e8:76:20:60:2e:
63:c5:65:80:8b:dc:cf:88:b6:f6:99:c1:42:8d:74:
4a:53:2c:34:c9:0d:31:5a:5f:56:e8:1a:48:cb:af:
c6:97:46:6f:cc:23:19:68:9f:b5:72:e4:b0:f3:b4:
c8:dc:5e:a5:1c:d7:23:30:1b:2d:d5:ec:47:fd:86:
08:2d:1d:18:35:e6:78:3f:d6:be:88:00:ef:ad:c7:
ca:00:c9:6b:d5:18:8f:15:57:ee:5b:ea:ef:52:7f:
90:4b:96:01:a0:37:14:7e:f1:c2:b3:e9:ea:69:41:
51:10:76:17:7d:c5:6d:5e:3d:ba:1d:8a:cf:6d:3e:
e8:06:2f:c9:f3:97:2f:34:ed:86:0f:ef:8c:73:ce:
41:5b:d0:d5:62:22:94:25:55:ca:3a:3f:e8:72:d6:
b6:ea:5a:66:0f:36:26:37:92:96:e9:5b:08:8d:36:
6c:d8:a0:a2:11:27:8b:a0:e6:df:91:19:91:92:cc:
0e:18:a2:59:28:f6:47:22:8f:d1:51:71:a9:0e:a4:
a1:53:1a:c1:f3:32:67:23:37:a1:4c:56:be:77:13:
3b:9e:ba:2d:12:6c:8f:cc:9b:dc:d2:75:67:48:53:
db:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:94:97:59:BD:34:28:40:92:A5:E8:02:C3:F1:38:B1:FE:24:99:E3
X509v3 Authority Key Identifier:
keyid:D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:7a:ae:12:8e:b8:0f:60:c9:9f:23:17:c1:d6:6a:e2:59:f8:
f7:c5:9a:0f:be:37:16:bf:42:71:1d:11:67:71:f1:a1:77:0b:
76:f8:2e:e8:83:90:8d:5a:bd:95:21:26:55:1f:11:32:4d:4a:
ff:ba:c2:e7:f3:f9:13:a9:7f:8f:7c:c0:7d:50:c5:07:89:f9:
38:fc:3e:2b:d3:b6:78:25:0c:58:79:fe:19:d9:2f:68:af:7e:
c0:0b:1a:5a:54:bb:98:a5:7f:4a:c7:4f:9f:ee:9c:85:7e:7f:
4c:5b:4c:16:8c:66:6f:08:00:11:9b:81:8a:85:b7:bd:8d:91:
f2:ab:be:c3:c3:42:14:fa:8e:22:d9:32:d8:4f:c1:1b:a0:fd:
08:eb:56:54:cb:06:3f:dc:6b:56:61:8e:2c:c1:3b:2b:d1:40:
5c:8e:72:35:f8:a4:8b:13:6b:1b:61:85:1e:4a:a1:b4:26:5f:
11:a9:5d:40:b2:aa:df:44:96:42:89:05:d2:bf:8f:7f:9e:4a:
0a:07:9e:89:e2:d7:59:01:e7:bf:8c:36:41:51:8c:32:8a:38:
1c:b0:59:93:74:fb:84:d8:77:c6:cd:7b:5d:b2:79:ba:78:1f:
2f:9c:b1:40:ef:13:a5:e6:d8:e4:f7:a2:09:86:3e:cf:40:9b:
9d:fc:50:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:42:36 2026 by rpki-client