Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
File: 02JOkIx0mP22E1QnU-9Wx1zXBL0.mft (raw, json)
Hash identifier: B6fKECa54tVdAs+cgngMp9FB/WsM4txSJS170SdkEfs=
Subject key identifier: 0F:30:0E:7B:1A:A1:7A:89:F0:B7:5F:3A:84:A2:49:97:07:0A:7C:FE
Authority key identifier: D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
Certificate issuer: /CN=d3624e908c7498fdb613542753ef56c75cd704bd
Certificate serial: 019D9AE276E7E43D4BC40ACE39DC29E97594
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
Manifest number: 0CFE
Signing time: Fri 17 Apr 2026 10:00:25 +0000
Manifest this update: Fri 17 Apr 2026 10:00:25 +0000
Manifest next update: Sat 18 Apr 2026 10:00:25 +0000
Files and hashes: 1: 02JOkIx0mP22E1QnU-9Wx1zXBL0.crl (hash: S3gsJns2ElcU0yYbL7AfSq+Eo+8cBmiVF4ZW4+xPji0=)
2: xY4otenPhOP0H70AgN8yfipmuag.roa (hash: j8oE81MNRmqQfvzLQxhYODVo2K+D9FqNssi/KIrbHB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:76:e7:e4:3d:4b:c4:0a:ce:39:dc:29:e9:75:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3624e908c7498fdb613542753ef56c75cd704bd
Validity
Not Before: Apr 17 10:00:25 2026 GMT
Not After : Apr 18 10:00:25 2026 GMT
Subject: CN=0f300e7b1aa17a89f0b75f3a84a24997070a7cfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:39:9c:a5:f7:46:9a:c4:14:3b:7b:92:ae:4a:
27:12:6a:99:c0:38:5a:e3:95:9e:63:ec:ab:52:ee:
f2:8b:d0:ca:08:e4:ec:07:77:d6:81:ab:98:0b:50:
e7:80:61:24:7a:cc:95:19:c9:77:fb:ac:1a:26:ef:
37:e9:3b:53:f0:41:cb:97:5e:01:47:7d:62:8d:8e:
56:de:c1:86:05:06:cb:2d:5a:78:0d:2e:56:41:0b:
ea:10:c9:fa:c8:79:4f:d8:61:ad:af:d8:1c:40:0c:
9f:c3:ec:f0:aa:da:bc:2b:75:20:2c:f1:69:d5:a4:
e7:59:4d:86:d4:04:db:c3:45:9f:e4:01:ca:71:46:
9e:f3:51:02:99:c1:da:11:24:e1:6c:68:bc:a3:db:
48:4a:83:da:c4:cb:1f:f6:b2:fc:7b:46:86:8f:e3:
54:b7:51:bc:ed:78:a7:01:0d:72:d7:35:22:ea:90:
d3:b2:57:ff:d5:8c:c2:e0:38:51:56:f6:42:6c:af:
a9:bf:d5:5d:04:a9:7a:38:a0:e1:1e:1c:74:75:91:
3f:4b:42:1e:34:28:70:61:2c:b2:25:53:1a:f8:c4:
86:7d:61:2d:dc:c9:95:be:2d:97:a1:b0:7e:62:df:
93:38:ad:1f:6e:26:ac:c3:19:b5:c2:53:b0:e9:82:
11:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:30:0E:7B:1A:A1:7A:89:F0:B7:5F:3A:84:A2:49:97:07:0A:7C:FE
X509v3 Authority Key Identifier:
keyid:D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:3e:6f:38:fa:d2:f4:bf:a3:8e:58:59:4e:e8:ab:7b:e6:ff:
91:3a:34:27:87:ac:75:3d:7b:c0:4a:35:08:a5:9e:a9:8f:9b:
b6:31:0c:de:01:0a:c3:4e:02:ed:63:83:41:98:82:59:6d:38:
49:af:ef:44:44:a0:4e:9d:b1:8f:1e:4e:b3:06:43:84:bd:11:
5e:b1:50:2f:a4:96:3d:a1:77:39:93:00:61:af:e1:fe:39:66:
03:c8:95:d5:c7:58:e8:16:01:44:1a:85:39:d9:6f:01:b2:48:
60:46:88:7c:e0:5c:10:44:51:75:75:71:e0:1e:ec:70:2b:60:
f8:73:bf:4b:d2:a4:f8:c2:55:15:72:a0:76:f6:05:b3:5b:73:
c7:2f:8c:02:4d:dc:ea:bc:f5:1c:c2:e4:18:70:72:fc:c6:1a:
7c:d8:68:41:f6:c6:b5:f1:90:53:a2:c3:31:72:f2:b8:c7:95:
67:47:9c:a3:bc:d1:99:d4:30:71:d9:6d:f9:f7:7f:7b:0c:db:
4e:42:f8:99:eb:41:d5:cf:12:86:83:58:bb:83:62:6b:0c:74:
88:9a:2a:f4:b9:4c:85:e6:b1:4e:90:08:10:0d:17:cf:f1:40:
ae:e3:02:30:5b:fe:bf:24:82:78:5d:db:e9:9e:6c:47:08:17:
91:da:8a:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:55:17 2026 by rpki-client