Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
File: 0-2n3wX226CeOefUvex7rg7_urA.mft (raw, json)
Hash identifier: cBf2aianJ1leTtYZLAoyYDEw6vc/FMfXryTm6pnYa3U=
Subject key identifier: E6:F2:45:B0:8D:7A:9E:D0:F0:E1:B7:81:5C:37:DD:88:39:83:AE:5F
Authority key identifier: D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
Certificate issuer: /CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Certificate serial: 019D992B59DEAFB160C9E39CEF7F30F2E203
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
Manifest number: 05CA
Signing time: Fri 17 Apr 2026 02:00:48 +0000
Manifest this update: Fri 17 Apr 2026 02:00:48 +0000
Manifest next update: Sat 18 Apr 2026 02:00:48 +0000
Files and hashes: 1: 0-2n3wX226CeOefUvex7rg7_urA.crl (hash: mIfvHhgT2HdJAGcxCEXF/LlO5H/yp9ADgy1Jj8d1omI=)
2: qTWraqPBRkXUgfYW4gfB3AS-jm0.roa (hash: Rbt0ZTsq9hRwXO+cnDLn20WShDhAg5xFObZyVKiajFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:59:de:af:b1:60:c9:e3:9c:ef:7f:30:f2:e2:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Validity
Not Before: Apr 17 02:00:48 2026 GMT
Not After : Apr 18 02:00:48 2026 GMT
Subject: CN=e6f245b08d7a9ed0f0e1b7815c37dd883983ae5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f3:57:98:b3:76:ed:93:25:a5:c8:a2:28:ce:
06:e8:30:8d:9e:85:fe:62:ee:40:a4:3d:d2:33:fc:
28:3e:e3:bb:c2:ff:ff:26:b9:16:56:6d:53:90:c8:
73:e6:34:d7:f3:a1:5f:9a:d9:8e:2e:c4:02:47:35:
d0:c5:58:16:47:7b:ce:39:69:21:87:76:ca:49:f5:
03:09:67:65:3b:e1:8e:46:90:43:f0:7c:71:b1:65:
2e:28:dc:21:a2:e3:22:e6:dd:22:e3:3f:6e:9e:93:
87:b0:c2:3f:60:fc:30:23:96:51:22:53:10:6e:57:
a7:d3:2a:d6:d2:22:fb:76:37:04:d5:24:0f:7b:50:
fd:56:73:67:47:04:ae:aa:c6:f5:00:f2:33:ca:b6:
5c:f3:ed:f7:03:23:dd:67:01:8d:87:fe:38:c5:95:
31:82:05:cd:09:a1:af:56:40:80:12:31:09:ff:fe:
2f:ae:65:19:9a:0a:f6:e8:14:94:53:5b:3c:40:57:
00:c7:5d:e0:20:f5:34:04:6c:cd:c2:17:89:0b:d1:
7b:f8:b3:bd:70:31:18:44:c8:27:98:bf:fd:af:57:
26:05:cb:a5:86:27:1d:c1:d2:7b:c3:ff:c3:7b:f7:
df:8f:88:04:cd:92:a7:0f:f0:37:41:a8:d4:83:fd:
3c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:F2:45:B0:8D:7A:9E:D0:F0:E1:B7:81:5C:37:DD:88:39:83:AE:5F
X509v3 Authority Key Identifier:
keyid:D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:d2:1c:bd:08:f5:13:18:9e:95:39:f9:a0:ee:95:45:61:38:
fa:c8:e8:a2:35:33:6b:99:b4:99:78:ec:e0:08:6f:22:cc:d6:
a1:1e:ca:7a:d7:7f:a4:bd:a8:15:bb:c6:5b:f1:6a:3f:d8:70:
6d:af:b4:fa:8d:1d:ea:31:5d:5e:fb:a4:03:b5:7b:41:10:d4:
1e:72:71:f6:5b:18:56:3d:7d:ef:5a:20:fe:5d:4f:bd:94:4a:
18:e3:c2:c4:ab:3d:80:cf:4d:50:57:90:ae:8e:cc:8c:37:e8:
4e:c2:c0:25:66:7a:da:d2:65:c3:ee:69:27:13:2e:26:31:9e:
3b:41:1b:8d:67:59:d8:57:95:84:3d:9a:1b:77:c7:4a:8c:ec:
f4:9c:e8:39:c8:66:16:bc:af:72:89:79:48:36:14:32:3d:ca:
83:f4:a0:09:ba:4c:f2:1a:00:85:01:e9:a9:27:16:92:6e:7a:
03:d9:3c:ba:ce:8b:ae:4e:49:40:84:dd:d8:88:d0:7c:7c:5d:
99:01:66:7c:55:56:d0:82:ff:4c:11:5e:9a:e3:ec:f5:8b:47:
f2:01:e5:5f:66:1a:85:49:78:16:01:ee:d2:6b:df:e2:63:29:
66:c9:46:9e:f0:68:0b:d1:87:aa:e6:3e:c4:e7:2c:b5:8d:b7:
5b:73:dd:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:53:48 2026 by rpki-client