Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
File: 0RIqXLBkP3NsfseWGAmiWThmjw4.mft (raw, json)
Hash identifier: BpGalw7xEMrQwXb5nvOnxZt7sUfV+lvBfV/3IcBBG9s=
Subject key identifier: 88:73:C7:00:F1:93:66:FF:30:28:14:3B:2C:95:19:D0:DE:69:A6:71
Authority key identifier: D1:12:2A:5C:B0:64:3F:73:6C:7E:C7:96:18:09:A2:59:38:66:8F:0E
Certificate issuer: /CN=d1122a5cb0643f736c7ec7961809a25938668f0e
Certificate serial: 019E24DBD960283BD89F0D85386EAB1C584C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
Manifest number: 190E
Signing time: Thu 14 May 2026 05:00:47 +0000
Manifest this update: Thu 14 May 2026 05:00:47 +0000
Manifest next update: Fri 15 May 2026 05:00:47 +0000
Files and hashes: 1: 0RIqXLBkP3NsfseWGAmiWThmjw4.crl (hash: yYL9YnWXZ0XCUQdHEw+eBr+o7kAdMCvgHxgoaYA+6IQ=)
2: ZKAPBlDYrEd2yjmsfMSMceCY9TA.roa (hash: F0+H6qDixU/03vN/UlEJN6xAxFU7ewgK1yqAztFgQS4=)
3: fSmn7fdIQV-BhV-TX9ikmCr8pz0.roa (hash: aPwivrJczNCFzMJcf0LFQLamq3ppdLsG7e6V+tPBFE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 May 2026 05:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:24:db:d9:60:28:3b:d8:9f:0d:85:38:6e:ab:1c:58:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1122a5cb0643f736c7ec7961809a25938668f0e
Validity
Not Before: May 14 05:00:47 2026 GMT
Not After : May 15 05:00:47 2026 GMT
Subject: CN=8873c700f19366ff3028143b2c9519d0de69a671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:52:67:37:65:f8:8a:ad:ed:de:4b:b2:6f:c3:
44:5c:dd:e8:a3:82:c5:58:94:21:94:fa:2d:82:05:
a5:a8:5c:2e:0b:ea:b2:82:25:72:2b:92:37:90:38:
07:ca:1b:6f:0f:83:be:27:fd:3c:c8:cb:e0:b4:fd:
96:5f:88:5b:1f:53:6b:37:89:6c:32:8a:de:02:c8:
48:b1:ce:5c:72:61:f7:ad:20:6c:49:9f:7d:f1:8f:
0d:c1:d7:6c:a9:5d:93:d8:cd:88:ed:00:6e:1f:26:
28:c9:c7:50:5c:ff:eb:bb:19:f7:83:68:18:b8:11:
77:3f:88:cf:1f:d5:4f:39:94:21:51:a9:fe:01:2c:
da:2b:be:a8:a8:36:61:b7:9b:03:c4:be:f6:4f:d2:
3b:00:c4:ab:44:8c:80:2c:ac:33:ed:40:65:98:a1:
6c:e4:0c:b8:b5:b6:17:21:33:18:a6:5d:a7:08:da:
19:d2:67:a2:b1:48:db:7b:04:0b:82:7a:2e:0c:5a:
85:db:a2:49:cb:47:f7:c6:a1:46:75:60:70:9d:eb:
c9:8b:6b:ba:b2:f5:f5:71:0e:79:4d:9f:41:82:80:
6e:36:f5:5d:eb:e5:a0:8d:cf:92:70:9e:e1:67:f9:
f7:72:35:f2:0d:a6:ec:05:26:40:27:4a:05:94:4a:
80:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:73:C7:00:F1:93:66:FF:30:28:14:3B:2C:95:19:D0:DE:69:A6:71
X509v3 Authority Key Identifier:
keyid:D1:12:2A:5C:B0:64:3F:73:6C:7E:C7:96:18:09:A2:59:38:66:8F:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:02:47:63:0b:75:d0:c6:3a:e4:65:74:9e:64:6a:6b:92:7f:
12:bb:80:48:86:a7:74:6c:35:03:c7:bf:07:c8:55:2b:61:0a:
81:61:ad:8b:e0:1e:11:19:fd:dd:5e:7e:32:be:63:00:dc:4a:
53:9e:6d:3b:ff:ff:9d:e8:c4:20:c9:e3:3c:2f:e9:c5:c7:bb:
32:5c:40:4d:4a:63:47:96:13:32:81:a6:7a:fc:9a:d5:78:1d:
df:04:ce:9c:cb:99:d4:53:fc:02:ac:28:7b:a7:9c:37:88:a0:
be:67:ad:71:02:4d:88:5e:f6:d9:0c:1d:48:07:52:84:94:3d:
4f:5d:30:2e:4b:54:99:5e:df:85:a3:dd:60:be:2e:1b:f3:d3:
a6:35:04:2f:c4:d1:26:77:de:e6:aa:3f:81:b2:2f:f5:f3:8b:
de:44:17:9c:50:9a:44:6e:f3:c9:8c:7b:aa:51:82:cb:9c:73:
26:d1:65:65:85:c4:d9:38:e7:ad:15:13:ac:76:13:9d:54:51:
bd:2d:48:61:65:8e:48:f5:cd:56:3c:33:20:49:8c:25:7a:35:
c8:28:30:d4:15:cc:6f:8e:e7:84:ad:46:09:5a:6e:2f:2e:62:
b8:2a:7b:53:11:42:11:94:9d:0e:62:28:06:ae:01:0b:23:a3:
36:2b:01:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 14 12:56:46 2026 by rpki-client