
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
File: 02JOkIx0mP22E1QnU-9Wx1zXBL0.mft (raw, json)
Hash identifier: j60+dx2b91Ip3rJkTtjrfxZc+ak50t+mvGd963mOKEc=
Subject key identifier: 0B:E9:B4:D2:43:47:2C:1F:44:EC:55:DD:42:1E:3F:A9:A3:4C:14:B5
Authority key identifier: D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
Certificate issuer: /CN=d3624e908c7498fdb613542753ef56c75cd704bd
Certificate serial: 019D9EBF62578FA3D7DC4C3E8A302FC330E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
Manifest number: 0D00
Signing time: Sat 18 Apr 2026 04:00:35 +0000
Manifest this update: Sat 18 Apr 2026 04:00:35 +0000
Manifest next update: Sun 19 Apr 2026 04:00:35 +0000
Files and hashes: 1: 02JOkIx0mP22E1QnU-9Wx1zXBL0.crl (hash: ZkFxeNAzN0QB+FRMIVcmP2I9QNF2A9wJrvxIZjJwSmA=)
2: xY4otenPhOP0H70AgN8yfipmuag.roa (hash: j8oE81MNRmqQfvzLQxhYODVo2K+D9FqNssi/KIrbHB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 21:23:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9e:bf:62:57:8f:a3:d7:dc:4c:3e:8a:30:2f:c3:30:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3624e908c7498fdb613542753ef56c75cd704bd
Validity
Not Before: Apr 18 04:00:35 2026 GMT
Not After : Apr 19 04:00:35 2026 GMT
Subject: CN=0be9b4d243472c1f44ec55dd421e3fa9a34c14b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:41:38:ae:77:70:56:f3:f2:3d:72:75:cc:b8:
a6:0d:a2:db:d4:4e:b8:4d:a5:1f:e1:cc:ea:b9:41:
6c:db:e5:96:4d:13:93:94:ab:2f:75:36:92:83:b6:
44:c0:3d:fb:b8:83:40:5b:a2:56:50:c7:87:45:80:
f8:2c:29:48:0d:40:6d:25:ed:ac:45:16:95:29:2a:
ef:89:7b:eb:93:21:1c:93:52:79:29:63:44:5c:51:
f5:1b:d8:2d:fe:92:fd:c0:b7:e5:71:ea:15:09:a3:
4a:95:1a:db:db:bf:b5:b7:13:3b:a1:ba:b5:e4:17:
1d:3b:ca:f8:98:13:c7:75:3d:ce:33:e2:4c:ed:db:
17:99:02:a6:e7:a4:98:3e:fd:07:93:84:b8:dd:48:
b0:53:5a:92:21:30:80:24:03:be:f3:7b:64:08:1b:
18:60:86:c2:4b:22:dd:0d:6e:09:ff:57:7c:fe:58:
d6:3a:01:ce:66:30:90:33:8d:84:79:49:aa:7c:ca:
8a:9e:00:d0:c7:80:86:74:b5:7c:69:6d:86:f7:49:
77:ec:30:3c:1d:dd:60:74:45:6d:bb:3e:80:9f:53:
f1:02:49:99:41:a7:f5:b0:fa:e8:5d:4a:9c:a1:cc:
b5:66:6c:49:66:20:8b:67:68:db:c7:33:52:da:c0:
34:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:E9:B4:D2:43:47:2C:1F:44:EC:55:DD:42:1E:3F:A9:A3:4C:14:B5
X509v3 Authority Key Identifier:
keyid:D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:d4:22:62:0c:7a:e3:56:ba:88:6c:12:3a:8d:65:d7:e6:eb:
c9:65:e0:20:0b:42:86:22:bf:62:b4:5c:7e:dd:ab:d0:6b:db:
fd:e4:32:77:51:ea:5b:9a:0d:e2:63:68:e1:54:33:bd:6e:4e:
26:04:88:c3:ad:8b:d2:2f:35:e4:ca:08:be:54:94:5c:3e:11:
5e:26:c3:41:49:f7:63:51:da:96:f7:a0:6e:08:8b:0e:7a:fc:
d5:ae:46:95:30:f3:3f:f1:e0:0d:0d:2c:86:cb:3f:77:ce:71:
0e:0a:bb:66:2f:63:f5:e6:ef:a6:fc:e9:6d:8b:b1:2c:fd:09:
23:04:42:b8:e8:ce:36:78:47:2a:c4:bc:0d:b9:6d:af:47:90:
5d:4f:78:eb:95:9e:47:c1:46:fa:71:7e:15:99:9a:7b:de:e6:
88:3b:be:26:85:52:9d:2d:cf:df:61:f0:7f:10:eb:27:34:e5:
ca:5c:96:aa:50:85:70:a6:ce:b6:7b:58:f5:3d:b5:75:ef:9a:
cc:d8:1f:68:24:cd:2d:6c:2f:ce:3f:b0:4e:6f:d4:79:7a:c6:
c9:d4:4b:54:c2:34:86:94:30:2d:4d:4c:ac:30:ab:df:e8:94:
db:48:fe:69:a9:5e:98:f4:2d:97:ac:29:15:d0:ac:09:6b:a8:
3f:a0:49:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 06:07:15 2026 by rpki-client