Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
File: 0dI-JBGcupM36DRmSFv7EGsuJLY.mft (raw, json)
Hash identifier: YroiJPzL+m5sRoskGUfcWuAPqgba84TNVJIPS5w9pQo=
Subject key identifier: 36:25:DF:B8:ED:88:02:D7:41:78:99:54:ED:DA:75:99:10:CB:A1:B5
Authority key identifier: D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6
Certificate issuer: /CN=d1d23e24119cba9337e83466485bfb106b2e24b6
Certificate serial: 019CAED9F83334F21747E1181924B047BFD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
Manifest number: 0290
Signing time: Mon 02 Mar 2026 14:00:46 +0000
Manifest this update: Mon 02 Mar 2026 14:00:46 +0000
Manifest next update: Tue 03 Mar 2026 14:00:46 +0000
Files and hashes: 1: 0dI-JBGcupM36DRmSFv7EGsuJLY.crl (hash: aMgb+4sSc36apK+DclmU7piFNMCGRVBW59oRkFKqG2c=)
2: GBJ2X2TfbSwmmzgVVsME19XqtSw.roa (hash: 8eDDx0cI0Ia4YPWxch5djmmuUUa69P9GBwa1jUZnCWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 14:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:d9:f8:33:34:f2:17:47:e1:18:19:24:b0:47:bf:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1d23e24119cba9337e83466485bfb106b2e24b6
Validity
Not Before: Mar 2 14:00:46 2026 GMT
Not After : Mar 3 14:00:46 2026 GMT
Subject: CN=3625dfb8ed8802d741789954edda759910cba1b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:be:3f:a2:0d:6c:03:c8:66:8e:29:df:99:f7:
79:57:cf:97:20:46:20:40:37:b8:bf:ba:2b:5c:b6:
8f:2a:83:6a:f3:e3:83:63:f8:55:68:db:bb:a5:30:
19:4f:92:7b:bd:e4:17:b6:17:cf:1c:33:45:ba:2b:
15:ab:7b:1a:32:b9:29:7d:f8:b9:b2:b5:b7:88:a4:
39:8b:56:48:6e:e2:57:ec:36:83:01:4c:f2:92:c8:
29:28:e5:fc:e7:e7:66:08:ed:8a:8d:2e:3e:12:dc:
c5:a4:f8:5a:1e:be:11:64:5e:10:47:22:59:26:90:
7c:8a:c6:ef:71:4d:1c:69:e4:5e:f8:57:99:e6:f6:
6a:88:50:59:88:52:1d:42:3b:c6:f2:4b:90:13:01:
7e:f0:c1:d8:bd:d0:3e:cf:84:2a:12:aa:eb:99:b9:
a1:3b:7f:4d:e3:71:5a:21:90:66:2e:bd:74:49:99:
74:f0:a0:bf:66:28:1f:6a:0b:ba:74:7f:42:92:f2:
9d:21:5f:1f:c1:75:a6:37:c7:83:8a:89:d1:92:e2:
48:11:8a:6f:1a:c4:4d:59:0e:53:88:b5:4c:38:ea:
8b:e8:4d:87:ba:04:73:3b:ba:46:5c:57:93:44:a1:
a5:69:3c:37:89:b8:5b:40:7f:b0:58:bf:c5:8a:64:
48:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:25:DF:B8:ED:88:02:D7:41:78:99:54:ED:DA:75:99:10:CB:A1:B5
X509v3 Authority Key Identifier:
keyid:D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:cf:8d:a0:cc:cc:64:8d:fd:e0:29:ae:e7:db:a0:b6:65:bd:
59:40:1d:04:14:9f:70:81:51:50:09:76:74:72:ca:4d:1c:b3:
7f:34:50:65:12:89:bb:ad:82:a9:4c:e9:be:85:63:b2:b0:c9:
86:46:3e:40:6f:30:ac:b3:ea:a9:50:af:22:d3:f4:31:5f:3c:
4b:e4:36:aa:72:9b:b5:96:f9:ea:05:bd:d1:d1:e2:a6:40:6c:
93:6e:cd:eb:e0:8f:2c:f3:2a:bd:09:21:eb:02:9b:98:4a:c5:
b3:4a:65:a2:2e:41:46:e8:4a:bc:7a:1d:36:6c:f9:9f:88:f5:
21:50:55:f9:78:9f:ad:36:bd:91:31:2c:07:e4:49:6f:ae:0b:
95:dc:da:60:b3:c4:7d:2e:02:7c:cb:7f:2e:d0:35:29:e7:01:
c0:61:56:d6:1c:24:ff:af:65:e3:1a:4e:3f:3d:ba:4f:bc:bd:
40:de:3d:89:d4:c0:98:1c:52:40:0d:fa:da:40:f2:d7:db:fd:
e8:fe:08:10:17:05:c6:f8:d6:fe:04:73:a5:6e:cc:30:2c:ca:
6e:ae:57:71:52:19:0f:3d:0e:b5:74:49:fa:a7:39:62:39:b0:
57:44:84:66:e7:8e:90:4a:8a:e7:23:80:b2:df:70:7a:e4:b3:
4d:d3:e0:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 22:18:30 2026 by rpki-client