Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
File: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft (raw, json)
Hash identifier: +9PSb/374TD1CxjaXabycMS/yZjSSgLXnHIoLLz/gX4=
Subject key identifier: 43:0E:12:37:B3:4E:D6:B4:A4:AB:B5:43:09:46:DF:CE:E4:CA:D2:8F
Authority key identifier: D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
Certificate issuer: /CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Certificate serial: 019E3005A03AFE297C5CF8A6D78639F4B89F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
Manifest number: 1654
Signing time: Sat 16 May 2026 09:02:15 +0000
Manifest this update: Sat 16 May 2026 09:02:15 +0000
Manifest next update: Sun 17 May 2026 09:02:15 +0000
Files and hashes: 1: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl (hash: owMmLBcBfCmyftMro74SOwx10GCEok7pCX06KZROqH4=)
2: t0X5t_3y1eMrgSVfnROrir2IJb4.roa (hash: BPcyM2IeAIooAh+FVKFVf4qaLxjgFOkdsiFt2kQ2Eag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:02:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:05:a0:3a:fe:29:7c:5c:f8:a6:d7:86:39:f4:b8:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Validity
Not Before: May 16 09:02:15 2026 GMT
Not After : May 17 09:02:15 2026 GMT
Subject: CN=430e1237b34ed6b4a4abb5430946dfcee4cad28f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:cb:59:49:9a:41:8e:35:8e:b7:c5:90:3c:3f:
93:d9:ce:9d:9a:3a:0c:19:96:e9:19:0f:32:39:b0:
27:e3:31:bc:de:87:6d:c3:7e:80:67:ea:1e:be:29:
96:a9:52:c3:3f:9b:69:e6:e3:84:3b:11:a7:58:2b:
77:d0:85:78:87:66:98:8e:50:90:71:ed:3d:3f:09:
36:b2:bd:98:10:16:c5:c6:ce:b1:21:04:b9:0a:fe:
94:7e:a8:a4:94:28:65:a0:8d:1a:74:b0:23:27:74:
ee:44:27:22:54:22:6e:c2:d1:4c:01:3f:2d:f9:ca:
e9:ce:d3:d1:ee:b0:22:a9:25:7f:0a:1b:a6:37:e6:
d8:95:71:0c:56:9b:23:14:de:04:15:3a:66:55:78:
f3:9d:80:bc:19:9a:08:e4:72:0b:08:a0:c3:76:43:
f4:d5:fb:49:10:24:6f:68:2f:07:8a:96:6d:8b:21:
d3:18:21:c1:f1:e9:96:17:ad:b5:c4:36:87:f4:cf:
06:69:37:59:81:ab:f5:eb:78:b0:bd:bd:8b:25:f0:
16:4d:7f:da:a2:30:76:69:30:0e:45:4d:17:16:25:
4f:41:b4:8a:b6:68:d3:54:22:b7:3a:39:c3:5a:2d:
56:fc:00:e1:c6:44:f2:b4:f9:80:18:44:2c:38:d5:
91:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:0E:12:37:B3:4E:D6:B4:A4:AB:B5:43:09:46:DF:CE:E4:CA:D2:8F
X509v3 Authority Key Identifier:
keyid:D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:d8:c0:7b:a8:1b:be:d8:cd:4b:72:18:d4:48:3d:80:d0:02:
3a:9f:90:e9:b0:53:53:81:85:6f:b3:d9:7c:40:24:c3:e2:3a:
d5:bf:be:61:af:64:a1:29:e5:98:6c:10:b8:2b:28:e2:a3:92:
3c:a1:98:e3:f3:22:e9:a8:dd:ec:c7:ba:0b:c8:72:a2:11:fe:
c4:c6:62:a4:fa:76:1a:74:9d:46:46:32:a5:2f:03:d7:16:a2:
29:d0:34:58:dd:a0:26:17:33:74:3b:2c:cb:21:11:2a:23:c7:
c7:1a:62:a3:37:13:6e:3e:c0:01:b7:6c:f3:75:dd:a3:e7:6a:
ae:d5:a7:28:71:bc:fe:1a:4c:bd:3b:36:e0:5c:2d:c5:9e:a6:
9d:4b:13:2b:07:c5:42:79:5e:b7:a1:52:89:56:bb:bb:10:e8:
f1:08:47:46:fc:99:9d:1f:48:85:0b:84:0e:eb:11:99:5b:5d:
f9:88:1b:9f:05:e9:6b:b8:77:cd:7b:66:bc:3f:96:17:d0:fe:
f3:80:b4:0e:18:f8:95:c2:ff:cc:bb:e4:c4:38:5a:69:27:7e:
60:db:d1:99:9d:0a:16:69:35:ad:14:a6:1f:73:b0:35:93:dd:
10:25:cb:71:de:0c:ee:c2:eb:ce:69:53:d3:72:b7:54:3e:10:
41:23:69:dd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wBaA6/il8XPim14Y59LifMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyYjM2YWQyOGU1MjFlZGFiNGI0ZGVhMzQ5YTI3NzcyZDRi
MmE3YmUwHhcNMjYwNTE2MDkwMjE1WhcNMjYwNTE3MDkwMjE1WjAzMTEwLwYDVQQD
Eyg0MzBlMTIzN2IzNGVkNmI0YTRhYmI1NDMwOTQ2ZGZjZWU0Y2FkMjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0MtZSZpBjjWOt8WQPD+T2c6dmjoM
GZbpGQ8yObAn4zG83odtw36AZ+oevimWqVLDP5tp5uOEOxGnWCt30IV4h2aYjlCQ
ce09Pwk2sr2YEBbFxs6xIQS5Cv6UfqiklChloI0adLAjJ3TuRCciVCJuwtFMAT8t
+crpztPR7rAiqSV/ChumN+bYlXEMVpsjFN4EFTpmVXjznYC8GZoI5HILCKDDdkP0
1ftJECRvaC8HipZtiyHTGCHB8emWF621xDaH9M8GaTdZgav163iwvb2LJfAWTX/a
ojB2aTAORU0XFiVPQbSKtmjTVCK3OjnDWi1W/ADhxkTytPmAGEQsONWRgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEMOEjezTta0pKu1QwlG387kytKPMB8GA1UdIwQY
MBaAFNKzatKOUh7atLTeo0mid3LUsqe+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHJOcTBvNVNIdHEwdE42alNhSjNjdFN5cDc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8zYTlhMGItZDQyNC00ZWNhLWE5Mzgt
OTJhODc3YmIxOWY3LzEvMHJOcTBvNVNIdHEwdE42alNhSjNjdFN5cDc0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi8zYTlhMGItZDQyNC00ZWNhLWE5MzgtOTJhODc3YmIxOWY3
LzEvMHJOcTBvNVNIdHEwdE42alNhSjNjdFN5cDc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADdjAe6gb
vtjNS3IY1Eg9gNACOp+Q6bBTU4GFb7PZfEAkw+I61b++Ya9koSnlmGwQuCso4qOS
PKGY4/Mi6ajd7Me6C8hyohH+xMZipPp2GnSdRkYypS8D1xaiKdA0WN2gJhczdDss
yyERKiPHxxpiozcTbj7AAbds83Xdo+dqrtWnKHG8/hpMvTs24FwtxZ6mnUsTKwfF
Qnlet6FSiVa7uxDo8QhHRvyZnR9IhQuEDusRmVtd+YgbnwXpa7h3zXtmvD+WF9D+
84C0Dhj4lcL/zLvkxDhaaSd+YNvRmZ0KFmk1rRSmH3OwNZPdECXLcd4M7sLrzmlT
03K3VD4QQSNp3Q==
-----END CERTIFICATE-----
Generated at Sat May 16 17:14:23 2026 by rpki-client