Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
File: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft (raw, json)
Hash identifier: KyzpW51Uw7sgkVWHoSY/jcLToD8Qr8I37rbbZ2yW4K4=
Subject key identifier: FD:5B:84:EA:A0:F2:0C:CC:95:C0:30:E8:7E:5E:8B:87:37:A0:44:68
Authority key identifier: D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
Certificate issuer: /CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Certificate serial: 019E30A9263391636E6A46B97410EA93E8D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
Manifest number: 190E
Signing time: Sat 16 May 2026 12:00:52 +0000
Manifest this update: Sat 16 May 2026 12:00:52 +0000
Manifest next update: Sun 17 May 2026 12:00:52 +0000
Files and hashes: 1: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl (hash: dn27lnexymWWpqfs6120/rxEwF+dvfHYDCbTZGBt9dc=)
2: qB-yYmmoZAETKywXU4O90SMz9p4.roa (hash: zSfrh0GvpLorIoRjiLIdctGLnu0vrYxfcdrku/RI+Pw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:26:33:91:63:6e:6a:46:b9:74:10:ea:93:e8:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Validity
Not Before: May 16 12:00:52 2026 GMT
Not After : May 17 12:00:52 2026 GMT
Subject: CN=fd5b84eaa0f20ccc95c030e87e5e8b8737a04468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d2:da:b8:1e:22:07:c0:31:cf:7b:63:e8:bc:
f1:f9:28:08:fb:c6:65:4f:0c:83:04:87:ff:7f:c2:
17:92:15:48:1c:d1:eb:4a:f7:28:95:ec:95:e4:94:
93:87:9b:9f:64:10:7a:37:f7:df:96:52:09:61:4c:
e0:5a:37:b7:18:d9:98:a3:88:ab:f9:cc:45:58:13:
4d:6a:bd:0e:65:a9:28:05:2b:bd:49:79:cc:54:a0:
52:52:b7:b6:6b:a8:38:0f:eb:1f:0c:f7:d8:e7:28:
44:45:47:a5:4f:33:38:74:9f:19:55:4d:f8:c6:c4:
1a:a6:6a:f4:d2:82:fb:c2:05:a2:3c:71:3e:96:de:
e5:5c:f6:94:c4:3e:c7:56:78:c2:04:99:b0:95:70:
ed:b1:a5:84:b5:fc:9b:23:8a:63:3f:93:14:70:56:
0c:60:17:04:35:08:cd:70:ee:24:52:f8:3a:ff:3e:
a9:44:c6:78:19:ef:42:68:52:47:3f:e1:34:fa:7a:
13:a5:e6:8b:ef:77:2a:9e:96:e6:58:b4:4c:0e:7a:
f8:c7:83:70:9f:73:b4:0e:81:04:a5:26:71:64:1b:
03:9e:61:13:ef:af:2d:85:7c:11:c6:f7:88:09:6b:
de:9b:55:cc:f0:22:be:e9:7b:1f:08:21:7a:5d:97:
cf:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:5B:84:EA:A0:F2:0C:CC:95:C0:30:E8:7E:5E:8B:87:37:A0:44:68
X509v3 Authority Key Identifier:
keyid:D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:b8:53:e1:1a:df:6b:4d:2e:a4:66:9b:b6:3c:f2:20:7d:d5:
25:23:7a:47:c3:5f:3f:ec:68:07:3d:e6:10:cf:3f:01:83:b3:
33:31:d1:f3:50:96:ff:f5:67:f3:77:6c:b3:46:5a:f5:0a:c8:
f1:52:b7:0e:e6:2a:fe:33:d9:0b:b4:62:ef:55:c7:cc:9b:83:
ac:fd:3c:ae:1d:47:26:91:2a:15:2a:4c:c1:91:01:ce:b6:74:
69:d1:55:8e:93:00:fa:7e:38:f3:89:6a:31:55:01:4e:6f:87:
0a:26:6c:ec:fd:1f:56:b1:b1:9c:99:80:76:02:27:68:17:42:
50:e8:87:8a:da:8d:b8:80:64:4f:ce:2b:fb:cb:1a:42:54:37:
33:7f:57:5b:36:69:63:77:c4:c9:20:3b:02:9b:9f:e3:51:21:
aa:f5:ee:94:bb:27:e5:67:5f:88:41:5f:38:58:ac:5a:1c:0e:
e3:46:0a:3b:04:97:4f:cf:c5:ec:83:94:f7:1f:b3:d1:75:f8:
6b:a5:42:5e:4c:93:73:75:06:a7:bd:42:37:0d:3f:8c:36:f2:
5b:c7:0a:3a:d2:8c:43:0d:91:12:5f:93:8a:1d:33:86:9e:e7:
99:b1:a8:c7:ec:cd:1f:86:05:9f:80:a9:2a:fb:f4:8c:12:01:
e3:88:6a:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:39:31 2026 by rpki-client