Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
File: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft (raw, json)
Hash identifier: dbJhJxuqqzvSSfN4FoEKDYPf8WKQttQQ1ynwsg02G78=
Subject key identifier: C6:F8:E3:C5:6C:D0:91:D9:E8:3C:D5:6F:D8:91:1A:9E:D3:3D:B4:6C
Authority key identifier: D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
Certificate issuer: /CN=d248185956e443b55b062200f964537bc10bc130
Certificate serial: 019D9998FE52EA5923B3DF5711CA66872E1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
Manifest number: 0531
Signing time: Fri 17 Apr 2026 04:00:33 +0000
Manifest this update: Fri 17 Apr 2026 04:00:33 +0000
Manifest next update: Sat 18 Apr 2026 04:00:33 +0000
Files and hashes: 1: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl (hash: fFBe6knM3OudsXQqeBBvQ+ClcAYMrTApKq6gM+TlcEY=)
2: Xudz0hLe8s3SLmiPVONXMND3hRM.roa (hash: oORSmt43XgnSynXZgH2ISuQJ8Cm/DBrmnJwy75rrXHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:98:fe:52:ea:59:23:b3:df:57:11:ca:66:87:2e:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d248185956e443b55b062200f964537bc10bc130
Validity
Not Before: Apr 17 04:00:33 2026 GMT
Not After : Apr 18 04:00:33 2026 GMT
Subject: CN=c6f8e3c56cd091d9e83cd56fd8911a9ed33db46c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:fd:49:25:d8:d7:d3:28:d1:ca:a3:43:06:f3:
20:9a:86:b2:92:71:a5:47:92:16:ac:d7:16:4e:27:
99:a6:b8:41:48:87:78:37:29:44:16:66:82:33:60:
a4:7c:b2:be:b3:a3:20:26:22:93:49:34:1c:c0:0c:
d1:d4:98:fb:ba:f7:60:c4:a7:4a:07:e4:9e:58:c0:
27:57:a3:c2:fe:4a:64:a2:48:15:0c:ae:1a:d8:ff:
25:47:7b:c0:c6:08:50:c9:04:77:5d:80:cb:9c:62:
a4:9d:7a:e5:16:e3:d0:bd:e9:2d:35:56:52:2f:6f:
69:0d:b7:4e:ac:37:e2:cb:6f:1a:13:43:b8:94:90:
9c:0e:97:94:fd:f0:ec:ae:fc:a9:02:1c:e7:1d:a1:
ae:75:39:d1:a3:7e:2e:ef:2e:af:2f:55:c7:fa:bc:
1e:32:bb:bb:2c:b2:a7:8f:d9:6f:4f:ea:68:b3:52:
f6:11:1e:fb:c2:24:f2:fc:1a:db:e5:09:4b:87:26:
3d:36:0c:95:ea:2d:57:e6:eb:3e:2b:7d:ca:81:c9:
e7:c6:2b:9e:52:c4:14:65:5d:77:7b:ba:ca:d8:17:
84:57:d3:f5:27:1b:6e:0c:ba:1f:00:87:69:95:ff:
6f:69:f8:c6:f6:73:9a:c4:05:74:95:37:6b:2e:c5:
95:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F8:E3:C5:6C:D0:91:D9:E8:3C:D5:6F:D8:91:1A:9E:D3:3D:B4:6C
X509v3 Authority Key Identifier:
keyid:D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:e7:9f:68:ea:e2:4a:f5:8d:b3:0f:c8:a8:62:63:eb:41:4c:
67:f0:d2:70:b3:aa:6c:52:11:80:75:fb:d5:5b:16:c1:41:45:
f9:86:f6:10:41:85:5f:03:78:33:53:31:8e:0b:b5:2d:8b:39:
f0:4e:c9:53:ae:63:ff:6a:5a:5f:87:68:73:98:6e:37:1f:a5:
21:40:98:80:77:65:43:e2:ab:6a:cb:f6:2b:b2:9b:cf:ff:72:
16:94:46:31:8b:3c:f4:17:d7:3a:cf:da:1d:59:7d:4e:5c:55:
97:2d:11:49:8d:1e:40:26:4b:40:da:e5:17:fd:70:4f:04:8e:
ef:f8:13:f4:6c:7d:39:b7:0d:f2:96:ce:40:32:e6:d2:6d:19:
02:3a:f5:2a:f3:7e:31:d0:d0:9b:d8:71:a0:98:b0:ac:96:c8:
5e:5d:57:b3:75:a7:89:86:ed:8d:07:54:56:2c:a5:9f:44:34:
7f:f5:fd:1e:76:bf:3a:35:17:da:c4:70:ee:bd:37:10:84:c6:
2d:b3:2f:b7:c5:b7:35:de:0b:83:23:fd:06:10:f0:0e:c0:1c:
62:af:bd:0a:98:8f:db:e8:8c:54:70:2b:b7:81:4a:8c:ab:18:
e6:b6:5d:cd:50:41:d7:7d:31:99:26:7a:c2:6a:84:26:70:ff:
a3:ae:9c:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:26:44 2026 by rpki-client