Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
File: a0I7KaGCk2si34-YJt1YOgBZE0o.mft (raw, json)
Hash identifier: ufp62N1Me72LpXD2vLF4InGxCppZQPQJxobAd98Dv3I=
Subject key identifier: 1A:5D:3F:DF:CE:40:2D:5F:C9:69:8F:21:DE:F3:4C:BE:52:24:85:61
Authority key identifier: 6B:42:3B:29:A1:82:93:6B:22:DF:8F:98:26:DD:58:3A:00:59:13:4A
Certificate issuer: /CN=6b423b29a182936b22df8f9826dd583a0059134a
Certificate serial: 019D99D0A3B52460CD6040BFB3C23A060900
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
Manifest number: 09E7
Signing time: Fri 17 Apr 2026 05:01:20 +0000
Manifest this update: Fri 17 Apr 2026 05:01:20 +0000
Manifest next update: Sat 18 Apr 2026 05:01:20 +0000
Files and hashes: 1: a0I7KaGCk2si34-YJt1YOgBZE0o.crl (hash: I8p0jBmz93iBrPTIkgqbJDNNBclRjGDrOnivJ/VVJ6E=)
2: betqUpBNxt2fw8P1gRb-nmRchZ0.roa (hash: TA1LiGt+yd3esB5iVavjPJEuxZ2ixHs066seZWy0AXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:a3:b5:24:60:cd:60:40:bf:b3:c2:3a:06:09:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b423b29a182936b22df8f9826dd583a0059134a
Validity
Not Before: Apr 17 05:01:20 2026 GMT
Not After : Apr 18 05:01:20 2026 GMT
Subject: CN=1a5d3fdfce402d5fc9698f21def34cbe52248561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1e:c7:74:ac:e4:20:96:cb:7e:ad:09:48:cf:
53:21:1a:dc:89:66:e7:fd:15:8a:9b:80:c7:92:c6:
3c:4d:84:cc:d7:66:9d:b6:78:f0:6e:cd:ae:b6:d9:
53:4e:99:73:b2:26:79:f8:fd:23:61:f4:90:53:dc:
41:d6:79:57:c3:bb:ab:a1:bd:6a:49:86:55:9e:1a:
1f:e1:e0:19:72:d5:2d:e6:33:2e:e2:61:71:8a:7c:
e5:9c:41:6b:76:b3:fa:9b:b9:38:0a:29:bf:5b:0d:
4c:86:67:31:b8:b2:7f:08:2d:0a:20:a6:16:67:c3:
8b:e2:95:bc:54:9f:0f:76:46:1f:51:99:1a:6e:86:
ee:2e:ad:1b:65:75:ec:29:e0:58:b5:71:b9:f2:92:
99:33:64:0d:ec:51:4f:42:a2:3b:eb:32:aa:89:2d:
6d:82:1c:e9:a7:d8:60:e2:ce:11:37:0d:1a:4e:45:
7c:c8:dd:b3:a9:e0:f8:d4:1d:75:93:20:49:65:fe:
61:5e:a3:f4:82:5a:72:15:af:ae:58:fa:93:b2:f5:
5c:98:10:23:92:5c:a1:91:53:4c:89:00:82:94:0b:
7e:2a:89:dd:c3:d2:fc:72:2a:cb:d2:d4:62:27:f6:
b9:21:57:7b:66:90:1d:1d:86:00:80:ee:a0:a9:a1:
0e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:5D:3F:DF:CE:40:2D:5F:C9:69:8F:21:DE:F3:4C:BE:52:24:85:61
X509v3 Authority Key Identifier:
keyid:6B:42:3B:29:A1:82:93:6B:22:DF:8F:98:26:DD:58:3A:00:59:13:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:f0:38:52:0e:4c:3d:00:e2:32:36:e5:38:35:7f:c9:9b:ad:
d8:45:a4:6b:f5:b3:7b:7f:b0:92:cc:e0:4d:d7:0e:49:fa:06:
af:36:0a:84:3f:dd:aa:4e:cb:5f:09:8d:4b:68:4b:44:80:85:
14:97:48:ce:28:92:ee:f1:aa:9a:1e:de:5a:f2:bc:c7:3f:60:
23:39:67:60:91:00:f9:6a:65:14:dc:cf:4e:8f:af:e1:7a:99:
37:4b:bc:30:3d:c4:aa:0f:a3:87:ff:9d:bc:42:dc:03:66:f9:
db:44:e9:59:c9:e6:28:fd:ca:43:e3:c7:87:08:38:9e:ce:96:
2c:d1:d1:d3:a4:c7:10:56:11:f9:34:7b:18:06:77:05:ae:60:
c2:66:97:53:45:97:e7:6b:3a:26:ce:ef:9a:6d:e0:2a:5b:d2:
7e:db:a1:8a:37:18:f4:69:17:c8:e3:44:a6:a3:61:1f:e7:4f:
1a:2e:36:07:70:3e:f4:d7:79:5c:3f:52:ca:25:53:ca:2f:63:
b9:0d:e9:63:00:26:62:56:27:65:0f:33:f1:f9:7c:6c:38:1d:
91:06:28:7c:0c:7c:67:18:42:e0:ae:b0:33:23:6f:27:ec:bd:
d4:07:77:5e:74:72:83:8b:93:df:61:2f:83:0b:b6:33:92:b0:
a8:e9:29:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:08:03 2026 by rpki-client