Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
File: 02JOkIx0mP22E1QnU-9Wx1zXBL0.mft (raw, json)
Hash identifier: LwB07EV/Rgr2q+ctLdwlKkYAgZv01Fu6Sik6VIdO9es=
Subject key identifier: 11:B0:21:0E:73:30:C8:D9:D8:4C:55:97:F1:F2:D6:8F:B0:8F:63:3F
Authority key identifier: D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
Certificate issuer: /CN=d3624e908c7498fdb613542753ef56c75cd704bd
Certificate serial: 019CAD59832C1DE092B0A141A055FECBB93B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
Manifest number: 0C83
Signing time: Mon 02 Mar 2026 07:00:50 +0000
Manifest this update: Mon 02 Mar 2026 07:00:50 +0000
Manifest next update: Tue 03 Mar 2026 07:00:50 +0000
Files and hashes: 1: 02JOkIx0mP22E1QnU-9Wx1zXBL0.crl (hash: QjvlOc31tY/C3ow9/sMmus60EJKZoZK/H31wDCM0Ma4=)
2: xY4otenPhOP0H70AgN8yfipmuag.roa (hash: j8oE81MNRmqQfvzLQxhYODVo2K+D9FqNssi/KIrbHB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:83:2c:1d:e0:92:b0:a1:41:a0:55:fe:cb:b9:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3624e908c7498fdb613542753ef56c75cd704bd
Validity
Not Before: Mar 2 07:00:50 2026 GMT
Not After : Mar 3 07:00:50 2026 GMT
Subject: CN=11b0210e7330c8d9d84c5597f1f2d68fb08f633f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a1:0e:7b:af:69:6e:dd:10:b2:0d:3c:00:d8:
91:73:19:71:18:01:d8:4f:18:08:38:aa:5b:dc:e4:
51:44:70:4a:06:bc:00:68:99:f2:e7:f7:39:f3:c0:
ac:be:56:7b:2e:00:12:2f:69:24:86:ed:2d:c8:f8:
44:f4:25:9d:0c:e6:06:14:20:42:ac:89:eb:f4:e8:
d3:7d:b8:6e:ef:49:c7:f7:12:78:67:a2:6b:1c:6d:
09:41:75:07:75:1d:3f:c6:d7:6b:5e:6f:9e:e1:7b:
d6:b9:82:d8:2b:f4:40:40:c9:dd:c9:7c:d4:78:a2:
7a:c3:d3:1c:ec:83:6d:07:f1:5d:40:f9:14:3a:0e:
e7:45:b8:a5:d2:8f:4f:d2:db:f0:9a:d3:a8:48:95:
e4:c3:b8:7f:2d:ff:9c:5b:2a:64:08:ff:6a:e6:3e:
1b:78:38:4e:70:45:32:e9:8f:9b:08:b1:84:6b:0d:
52:00:ff:63:50:57:95:4e:c6:63:c2:d9:63:56:76:
03:fd:0a:06:a5:33:b2:be:4b:be:91:23:a9:27:60:
91:dc:f1:1d:3e:eb:79:7c:d8:37:3f:e4:02:e0:69:
a1:7d:01:7a:78:36:02:d2:60:f5:b3:53:7b:db:29:
ae:70:f0:fc:4e:d8:d1:20:15:5e:e9:42:18:a7:d9:
43:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B0:21:0E:73:30:C8:D9:D8:4C:55:97:F1:F2:D6:8F:B0:8F:63:3F
X509v3 Authority Key Identifier:
keyid:D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:f4:25:bc:95:3e:b0:a6:1a:5d:1e:0c:3b:df:34:90:1b:4e:
1e:0b:d7:a8:b1:02:ac:5b:4e:63:8b:5f:84:6d:ba:86:dc:77:
a0:82:a6:b7:db:de:e2:b0:00:08:74:2a:38:9d:29:d9:f5:7c:
3f:3d:7d:42:f3:e3:d3:00:fb:22:c7:a1:1b:98:0f:f9:d8:1e:
18:22:ad:54:b7:30:19:d0:1f:c2:82:c2:29:76:fc:13:bc:ef:
19:6d:1f:b7:f1:4e:8d:a2:b9:fb:f4:30:cd:ba:15:c3:cc:e4:
06:93:53:fb:23:fe:92:a7:08:58:0f:8b:1c:47:ce:c5:f7:38:
fd:e4:dd:9d:35:0c:85:69:75:d6:cf:c1:0c:fb:1f:28:37:c9:
22:33:9b:1c:89:c1:fd:0d:07:27:b6:3d:58:e2:68:0e:f8:6d:
19:64:53:dc:2f:7f:8f:05:30:20:10:60:79:39:4c:3a:42:d7:
1f:61:e0:50:0b:f4:63:21:49:d9:b3:10:4e:01:56:34:a6:b9:
ec:d4:39:2c:6e:67:6e:da:a0:4c:2a:b4:75:23:52:78:63:21:
32:bf:a2:cc:89:bc:c4:5d:6a:d1:76:b8:45:07:51:0d:95:ae:
e6:67:f6:66:55:6c:b2:34:85:57:cf:ba:6d:52:b5:f8:9f:11:
e7:47:c6:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:46:10 2026 by rpki-client