Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
File: D3Tlry-nIVykabJ8EHnx_9X8rvg.mft (raw, json)
Hash identifier: AlCwN+2dPkFAJyzoEVoafHZ0CeG26sGQKuNLKPBj0cQ=
Subject key identifier: 4D:C0:76:0B:79:82:A9:6E:90:32:E4:87:91:38:A4:5B:09:DC:09:EC
Authority key identifier: 0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8
Certificate issuer: /CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8
Certificate serial: 019E30E0D83491022ED285DD7CBEF8A773CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
Manifest number: 07A1
Signing time: Sat 16 May 2026 13:01:42 +0000
Manifest this update: Sat 16 May 2026 13:01:42 +0000
Manifest next update: Sun 17 May 2026 13:01:42 +0000
Files and hashes: 1: 6qWCpueTH15zed_1u4JRaf2a7QQ.roa (hash: wPaJ9em9JJwywgqatE6yZ7uDMay3QNlPb8TvcJD+KEU=)
2: D3Tlry-nIVykabJ8EHnx_9X8rvg.crl (hash: /lK6airhRaZjEvbIpyfPgjuiMQT95sdPBaDSNV9fpP8=)
3: bym9GRTaQWoyTuXrKo4RqKoL5XU.roa (hash: /U5VFGEjkXG97DPwKGp9iZ6D0eP8N7dLqjJVI4Njw9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:d8:34:91:02:2e:d2:85:dd:7c:be:f8:a7:73:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8
Validity
Not Before: May 16 13:01:42 2026 GMT
Not After : May 17 13:01:42 2026 GMT
Subject: CN=4dc0760b7982a96e9032e4879138a45b09dc09ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:76:cf:ea:22:09:8d:21:8e:e6:34:89:de:43:
85:9b:5d:f3:42:66:3a:58:86:5d:26:00:db:03:ff:
0b:53:5b:52:61:96:40:fc:8a:8b:24:c7:65:37:f2:
a9:98:f5:11:26:26:d7:f3:75:8f:75:89:83:81:b3:
f4:62:6b:e0:6e:44:7d:85:61:e8:69:aa:d9:b3:54:
f9:56:ac:9e:7b:45:0a:e1:c6:75:8f:fd:d3:f5:4a:
01:43:ba:5f:64:26:d0:e9:08:60:e4:46:b5:4e:a0:
9a:aa:df:87:b7:cf:57:fb:0c:d5:45:ae:db:fb:39:
0f:7e:40:b1:81:ea:7a:ab:72:7b:79:b7:6f:c5:d2:
82:29:47:ec:2d:65:3c:d6:95:23:3c:f7:0c:29:5f:
4b:1a:46:15:77:d7:79:8a:78:c6:fc:cc:46:60:82:
14:3c:81:41:a4:8f:37:a4:e1:89:c4:8b:13:64:60:
fb:e5:dc:10:90:0f:10:1b:42:2d:b9:9b:a0:f0:f3:
c2:56:58:ca:55:44:14:ea:28:c6:0f:47:5b:e1:aa:
be:2c:a6:29:94:fc:e9:ee:6c:7d:85:eb:4c:6a:74:
d8:ce:38:83:3d:ca:6d:36:d4:67:13:8e:8b:2c:8d:
d8:cc:ce:b4:dc:51:5c:d2:91:ee:96:26:7a:51:e6:
40:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:C0:76:0B:79:82:A9:6E:90:32:E4:87:91:38:A4:5B:09:DC:09:EC
X509v3 Authority Key Identifier:
keyid:0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:be:6a:81:92:d0:32:1b:a9:6a:5a:79:9c:23:93:76:1a:cd:
32:3d:73:d9:e7:35:d4:1a:f9:8d:e5:96:70:63:82:94:83:11:
bb:07:4b:5d:ee:64:71:5a:61:54:f3:fa:62:5a:27:24:0c:1c:
62:0b:06:3b:03:95:fb:57:48:26:cb:df:71:fe:30:9e:76:06:
94:fa:db:54:54:93:91:04:1a:d3:cb:d1:81:82:40:68:6e:8b:
73:cb:09:d2:60:17:17:84:fd:5a:c5:c1:12:3a:bc:d4:5c:5a:
9a:be:0c:a4:56:bc:ec:99:3b:7f:76:36:01:62:4f:d0:dc:8d:
55:2c:b8:6c:91:ea:88:92:c6:90:da:d2:28:44:c5:fb:b8:46:
f1:b0:f7:a5:ba:68:f6:7d:9d:4c:e3:06:d6:56:b5:46:03:b7:
5d:ba:dc:69:6d:c6:39:64:41:43:95:2c:b2:19:25:72:8b:30:
80:9c:fa:3f:1e:be:4c:97:1a:4e:6b:e7:e7:c4:59:20:62:90:
86:53:82:c2:89:f0:18:4c:01:02:3f:f4:b7:55:98:12:02:33:
d7:ae:7e:f3:53:be:3b:90:a4:17:c5:74:59:ff:fb:2c:71:19:
7a:c5:84:07:52:2f:ee:a2:d2:f4:42:4d:cf:ee:dc:c4:31:3b:
c2:9e:0f:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4w4Ng0kQIu0oXdfL74p3POMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmNzRlNWFmMmZhNzIxNWNhNDY5YjI3YzEwNzlmMWZmZDVm
Y2FlZjgwHhcNMjYwNTE2MTMwMTQyWhcNMjYwNTE3MTMwMTQyWjAzMTEwLwYDVQQD
Eyg0ZGMwNzYwYjc5ODJhOTZlOTAzMmU0ODc5MTM4YTQ1YjA5ZGMwOWVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp3bP6iIJjSGO5jSJ3kOFm13zQmY6
WIZdJgDbA/8LU1tSYZZA/IqLJMdlN/KpmPURJibX83WPdYmDgbP0YmvgbkR9hWHo
aarZs1T5Vqyee0UK4cZ1j/3T9UoBQ7pfZCbQ6Qhg5Ea1TqCaqt+Ht89X+wzVRa7b
+zkPfkCxgep6q3J7ebdvxdKCKUfsLWU81pUjPPcMKV9LGkYVd9d5injG/MxGYIIU
PIFBpI83pOGJxIsTZGD75dwQkA8QG0ItuZug8PPCVljKVUQU6ijGD0db4aq+LKYp
lPzp7mx9hetManTYzjiDPcptNtRnE46LLI3YzM603FFc0pHuliZ6UeZACwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE3Adgt5gqlukDLkh5E4pFsJ3AnsMB8GA1UdIwQY
MBaAFA905a8vpyFcpGmyfBB58f/V/K74MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDNUbHJ5LW5JVnlrYWJKOEVIbnhfOVg4cnZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC80OWFjZTgtMjkxZC00ZDRmLTkyMmUt
ZWFiY2JjMDgzZjliLzEvRDNUbHJ5LW5JVnlrYWJKOEVIbnhfOVg4cnZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC80OWFjZTgtMjkxZC00ZDRmLTkyMmUtZWFiY2JjMDgzZjli
LzEvRDNUbHJ5LW5JVnlrYWJKOEVIbnhfOVg4cnZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALb5qgZLQ
Mhupalp5nCOTdhrNMj1z2ec11Br5jeWWcGOClIMRuwdLXe5kcVphVPP6YlonJAwc
YgsGOwOV+1dIJsvfcf4wnnYGlPrbVFSTkQQa08vRgYJAaG6Lc8sJ0mAXF4T9WsXB
Ejq81Fxamr4MpFa87Jk7f3Y2AWJP0NyNVSy4bJHqiJLGkNrSKETF+7hG8bD3pbpo
9n2dTOMG1la1RgO3XbrcaW3GOWRBQ5UsshklcoswgJz6Px6+TJcaTmvn58RZIGKQ
hlOCwonwGEwBAj/0t1WYEgIz165+81O+O5CkF8V0Wf/7LHEZesWEB1Iv7qLS9EJN
z+7cxDE7wp4PPQ==
-----END CERTIFICATE-----
Generated at Sat May 16 18:39:38 2026 by rpki-client