Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
File: 0tiRsOMo58hWrUt6B2TYLYVgltY.mft (raw, json)
Hash identifier: kPXGMTSMHlVG6vCFUDBriz9MFPnsBe9sesQjuLI2jUk=
Subject key identifier: 67:4A:BA:FF:A5:F4:85:1A:57:33:50:B1:CE:C4:B3:A6:D7:4E:57:A4
Authority key identifier: D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
Certificate issuer: /CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Certificate serial: 019E30E0C5C153377ADD78DB11B1F55B1006
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
Manifest number: 0563
Signing time: Sat 16 May 2026 13:01:37 +0000
Manifest this update: Sat 16 May 2026 13:01:37 +0000
Manifest next update: Sun 17 May 2026 13:01:37 +0000
Files and hashes: 1: 0tiRsOMo58hWrUt6B2TYLYVgltY.crl (hash: QAMwcyqB03vtMiEdMDTt1lqsjpIIcgYmRnIeIbF5CP8=)
2: UCdWTcnF4ZVDrSnBvN43rU1Zk3A.roa (hash: Qw45xlTVvhAH55/GToKQCdfRTF8PLXCZ9h0uBYEUVtM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:c5:c1:53:37:7a:dd:78:db:11:b1:f5:5b:10:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Validity
Not Before: May 16 13:01:37 2026 GMT
Not After : May 17 13:01:37 2026 GMT
Subject: CN=674abaffa5f4851a573350b1cec4b3a6d74e57a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ee:f7:cc:bf:66:ed:56:86:20:7f:96:5d:da:
4f:aa:f4:4b:5d:fc:99:1f:a8:48:e2:84:29:37:80:
12:4c:09:be:cb:db:35:e8:d1:1a:02:ea:f7:60:76:
7b:5f:39:0e:c6:93:c6:74:02:62:b9:67:65:56:2d:
aa:21:04:9e:ef:fb:6e:d7:02:24:d0:cb:81:77:a6:
8f:f3:86:a7:9d:f1:87:6e:62:ad:f9:4e:e8:f3:b6:
74:48:eb:bb:ce:6d:ee:75:1e:30:a3:97:ef:d3:1a:
de:53:1d:8d:e3:ee:6d:a4:2e:a2:ae:9b:60:bc:b2:
85:dc:26:fa:79:60:9e:5c:13:b9:2f:fb:e6:b1:69:
30:67:3b:49:15:b7:73:5d:52:44:56:84:5a:4f:19:
ef:c3:ba:6d:da:8c:06:2a:78:07:ac:74:10:af:2f:
55:14:74:2e:f1:26:05:fe:3f:27:a9:ad:35:99:dc:
99:69:c9:53:bf:a7:d7:71:4c:48:77:ee:f9:4a:5b:
a3:01:0e:6c:c3:d6:28:f4:32:9b:d4:c2:dd:ee:48:
dd:4c:fd:ae:63:96:48:33:eb:5c:1c:6c:f8:af:6b:
88:a4:24:93:ad:0a:71:f0:cc:3f:3c:b9:90:a6:40:
a6:a0:bc:07:af:ac:d3:27:04:5e:d1:03:83:d6:f4:
4a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:4A:BA:FF:A5:F4:85:1A:57:33:50:B1:CE:C4:B3:A6:D7:4E:57:A4
X509v3 Authority Key Identifier:
keyid:D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:d4:fa:84:59:7a:2c:c4:ab:b0:45:18:b9:33:95:ae:d5:f8:
5c:e4:21:87:ff:0e:0b:4e:a3:29:00:07:8c:dd:09:31:a3:08:
7f:da:d1:f2:e4:14:7a:35:d7:28:a0:9e:bd:e2:2a:63:fa:0c:
44:f2:af:0f:54:52:55:8d:7a:f2:7a:1d:64:6a:f3:f7:71:67:
a7:b6:4f:91:8b:e2:80:21:41:7d:aa:7d:fc:e8:41:8e:21:9c:
79:9f:95:26:cf:51:d6:5f:83:93:8b:cf:64:6f:aa:1e:92:7e:
14:5d:fa:f3:76:3e:b0:c6:22:7d:71:3a:62:64:32:67:20:37:
43:33:ec:c3:66:f2:88:05:7a:2c:bc:7d:2f:f7:ca:05:70:e0:
58:d4:a4:ee:c6:8a:a7:b6:20:df:b0:a7:77:c2:59:58:38:1a:
a1:e6:68:97:35:75:57:ed:be:ce:4e:2a:7c:ef:b0:4d:e8:03:
b0:e3:90:32:f5:9e:f7:eb:f5:89:3a:c2:88:4e:2a:d8:cc:90:
27:01:88:af:bc:3b:bd:7e:44:99:99:4c:67:c4:dd:fb:88:1b:
ca:99:b9:5a:8b:32:6e:98:05:14:b4:16:04:8f:6e:a4:8d:6d:
3c:1f:a3:fe:4a:cc:42:23:a6:5b:12:35:e3:f1:17:42:4c:8b:
ab:31:00:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:54:30 2026 by rpki-client