Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
File: 0dI-JBGcupM36DRmSFv7EGsuJLY.mft (raw, json)
Hash identifier: 4nLm7fgwjscdBBzpDsYj5j8B/ri3sHSwQHsX+S02K8M=
Subject key identifier: 0E:FD:4C:53:A0:FC:EA:B5:38:54:B8:02:03:E8:20:AD:2B:23:8C:44
Authority key identifier: D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6
Certificate issuer: /CN=d1d23e24119cba9337e83466485bfb106b2e24b6
Certificate serial: 019D9A74DB1D634F7FC8DBAE233B7A1D86E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
Manifest number: 030A
Signing time: Fri 17 Apr 2026 08:00:42 +0000
Manifest this update: Fri 17 Apr 2026 08:00:42 +0000
Manifest next update: Sat 18 Apr 2026 08:00:42 +0000
Files and hashes: 1: 0dI-JBGcupM36DRmSFv7EGsuJLY.crl (hash: ir/UDUflylpUbfPDf06Z1A8YQfKXZQR0L0R+u+QUO5A=)
2: GBJ2X2TfbSwmmzgVVsME19XqtSw.roa (hash: 8eDDx0cI0Ia4YPWxch5djmmuUUa69P9GBwa1jUZnCWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:db:1d:63:4f:7f:c8:db:ae:23:3b:7a:1d:86:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1d23e24119cba9337e83466485bfb106b2e24b6
Validity
Not Before: Apr 17 08:00:42 2026 GMT
Not After : Apr 18 08:00:42 2026 GMT
Subject: CN=0efd4c53a0fceab53854b80203e820ad2b238c44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8a:7b:18:97:40:0a:39:1c:53:b9:1c:a4:8d:
2c:4c:6d:de:c8:4a:81:79:a9:22:3b:c7:71:42:bd:
89:56:ac:cf:41:16:fc:e4:bb:b3:57:86:ca:05:5c:
b6:0c:ce:d0:ac:59:39:ac:0b:f9:e6:1d:1f:af:c2:
d6:b4:f8:23:24:e7:36:e5:85:8f:79:85:0a:82:c5:
5f:cf:3e:87:17:75:42:02:03:55:60:2d:df:81:c7:
d1:8a:b7:9f:6f:79:bc:94:39:1e:fe:2e:5c:3a:df:
4e:3f:df:c1:c0:d1:81:7d:80:e7:e2:84:6b:3c:f9:
0b:24:41:63:6d:8c:5f:b5:1f:a6:98:35:de:13:a7:
f2:53:66:b2:5c:68:bb:62:27:0b:93:ed:9a:3e:d7:
b7:40:4e:24:8b:09:54:ce:22:50:4d:65:c4:66:81:
d4:58:91:4d:98:1a:82:6e:11:5a:47:b3:ae:bf:ab:
ae:a6:4b:ad:39:5c:ae:b6:34:ae:ba:17:05:83:7f:
0d:56:b8:53:5b:14:95:5c:b3:41:da:83:0b:4a:33:
cc:f1:a1:45:63:6c:f0:3d:d1:18:12:38:ad:63:e9:
30:dd:1f:44:d9:e1:4b:c5:17:c7:11:4f:70:1a:f0:
27:c7:e9:cd:d3:12:8a:52:07:61:e5:51:b9:1c:85:
0b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:FD:4C:53:A0:FC:EA:B5:38:54:B8:02:03:E8:20:AD:2B:23:8C:44
X509v3 Authority Key Identifier:
keyid:D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:84:f3:55:a9:46:94:cd:9e:fc:88:75:dc:cf:3d:78:25:63:
e0:2b:60:d0:23:62:bd:29:5d:2f:45:90:00:0d:ec:a1:7a:ef:
a9:18:6c:b9:ec:9f:6f:de:08:08:53:71:44:c9:43:5d:37:ef:
56:39:69:01:1c:69:a7:ff:66:c3:52:46:54:2d:0d:45:2a:fc:
f8:f3:bd:f7:b1:92:0a:fc:5f:b6:58:22:5f:74:e9:bc:83:b9:
77:bd:d6:91:95:57:f7:5a:c1:6d:04:b6:e3:d8:42:a7:ee:1d:
9c:d7:60:1e:5d:02:d2:b0:af:ea:17:e6:17:57:99:97:06:97:
99:a4:1a:23:9e:06:21:b9:52:80:6c:16:ce:cb:63:93:46:0a:
90:7a:f4:65:9d:7c:9f:96:6d:a4:ec:44:21:af:13:88:a7:b0:
63:0b:1f:ca:83:9b:ba:15:4a:06:34:62:ba:b6:07:63:57:7a:
86:73:ff:0f:46:34:79:14:a2:bb:ba:03:0d:19:2e:40:73:d7:
41:1e:5d:11:1c:33:46:2f:a2:01:28:fb:a7:53:51:1b:63:80:
9f:a8:61:91:bb:43:e8:49:d9:a5:e8:d7:ba:d8:2f:a5:f4:84:
98:76:73:f7:8d:f8:e0:20:0e:fc:a2:3e:9c:10:36:db:77:2d:
36:92:b0:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:17:48 2026 by rpki-client