Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
File: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft (raw, json)
Hash identifier: Y/OFVDfE0+I9prOY+BTnZUPzZjvzrYBTot3VYDsPNj4=
Subject key identifier: 15:8B:CE:01:0B:2D:E8:36:09:A4:E0:30:7A:14:A0:A7:7C:C0:AA:4B
Authority key identifier: D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
Certificate issuer: /CN=d248185956e443b55b062200f964537bc10bc130
Certificate serial: 019F17F97FB1F8B80291652810E2607FB7D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
Manifest number: 05F7
Signing time: Tue 30 Jun 2026 10:00:54 +0000
Manifest this update: Tue 30 Jun 2026 10:00:54 +0000
Manifest next update: Wed 01 Jul 2026 10:00:54 +0000
Files and hashes: 1: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl (hash: 5yVAgBPSrkHoMmL3Y0xJIBMs/fxV2AbyrLmY1Jlbjes=)
2: Xudz0hLe8s3SLmiPVONXMND3hRM.roa (hash: oORSmt43XgnSynXZgH2ISuQJ8Cm/DBrmnJwy75rrXHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 10:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:f9:7f:b1:f8:b8:02:91:65:28:10:e2:60:7f:b7:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d248185956e443b55b062200f964537bc10bc130
Validity
Not Before: Jun 30 10:00:54 2026 GMT
Not After : Jul 1 10:00:54 2026 GMT
Subject: CN=158bce010b2de83609a4e0307a14a0a77cc0aa4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:05:42:49:30:f9:aa:51:a0:ab:d0:ff:72:fd:
1a:77:8f:3f:ce:20:c7:fc:50:a8:fe:95:20:0f:f3:
cf:52:4b:8c:28:d9:8b:50:d0:2e:82:38:32:ae:36:
e8:27:53:b1:12:93:bf:9a:cc:6f:68:b0:8e:3c:e1:
30:47:32:18:f0:52:62:40:bf:cd:c5:55:cf:76:73:
b7:6e:e2:48:4e:66:4c:5a:f6:ae:7a:d9:b6:27:a7:
46:45:f5:88:3b:3e:c4:9e:2f:4a:90:42:90:5e:b0:
39:c8:d0:6d:89:52:7f:a2:01:a3:06:66:05:dd:a8:
66:c5:b3:21:fe:4f:03:2b:30:bc:bc:fe:cf:88:57:
ca:53:c6:b4:b9:e6:28:4b:5e:7a:c9:66:c5:29:b8:
36:6e:cf:06:2e:af:78:13:70:3c:60:a5:4f:2a:31:
9f:d8:4b:b0:6d:0c:47:eb:51:00:9f:55:db:eb:f3:
25:a7:62:fa:15:92:6d:73:1a:2a:ef:04:a0:05:47:
16:5b:2a:9f:2d:a4:75:55:69:84:1a:3e:e4:d5:68:
41:1f:2e:87:60:f1:e7:13:13:60:11:a5:50:02:20:
24:7e:8a:a7:df:d3:88:06:0f:4d:87:f7:30:08:5b:
ac:3d:83:61:76:73:d0:e2:91:5a:cd:85:50:7c:43:
f5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:8B:CE:01:0B:2D:E8:36:09:A4:E0:30:7A:14:A0:A7:7C:C0:AA:4B
X509v3 Authority Key Identifier:
keyid:D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:8b:6a:d9:45:63:2b:4c:de:17:80:b5:30:6c:1e:11:a1:58:
1e:80:ee:a6:95:34:21:37:df:0c:7d:84:b3:d2:20:b3:f3:b1:
9e:2e:fe:41:72:cf:c0:eb:11:47:10:b4:f6:f7:fc:5f:f9:38:
84:e7:19:b7:e9:e7:2e:6c:bf:66:73:57:57:0e:e7:ad:46:c9:
54:71:cc:04:2c:4f:b8:f0:d2:84:9e:fc:ad:6e:ed:d4:2a:f8:
02:6b:61:13:82:32:0a:15:42:f1:17:f3:34:9b:44:d0:6d:03:
23:59:84:8c:31:b7:69:f1:1f:de:6b:0a:c1:f6:df:92:c2:00:
2b:31:b5:91:e3:58:46:95:4d:54:df:7d:15:8c:03:a7:59:af:
c5:24:5f:8a:00:7e:40:1b:18:9a:ca:d9:7e:76:ce:00:8c:dd:
22:c3:77:49:9a:4a:d8:e1:73:6d:4f:39:02:ad:76:24:b1:12:
99:5b:cc:0a:c8:fd:db:67:54:80:e9:50:c2:27:65:5f:9c:96:
34:c8:1a:d2:e4:bf:12:1a:62:37:2c:68:d7:ff:3a:5c:84:c3:
14:88:28:4f:9e:4b:6a:20:b5:ca:b9:04:c8:89:a6:5b:2b:8e:
8a:70:8e:b1:14:4e:d7:aa:11:e1:4a:5b:b4:11:66:6e:37:6f:
7e:9e:58:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8X+X+x+LgCkWUoEOJgf7fRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNDgxODU5NTZlNDQzYjU1YjA2MjIwMGY5NjQ1MzdiYzEw
YmMxMzAwHhcNMjYwNjMwMTAwMDU0WhcNMjYwNzAxMTAwMDU0WjAzMTEwLwYDVQQD
EygxNThiY2UwMTBiMmRlODM2MDlhNGUwMzA3YTE0YTBhNzdjYzBhYTRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7wVCSTD5qlGgq9D/cv0ad48/ziDH
/FCo/pUgD/PPUkuMKNmLUNAugjgyrjboJ1OxEpO/msxvaLCOPOEwRzIY8FJiQL/N
xVXPdnO3buJITmZMWvauetm2J6dGRfWIOz7Eni9KkEKQXrA5yNBtiVJ/ogGjBmYF
3ahmxbMh/k8DKzC8vP7PiFfKU8a0ueYoS156yWbFKbg2bs8GLq94E3A8YKVPKjGf
2EuwbQxH61EAn1Xb6/Mlp2L6FZJtcxoq7wSgBUcWWyqfLaR1VWmEGj7k1WhBHy6H
YPHnExNgEaVQAiAkfoqn39OIBg9Nh/cwCFusPYNhdnPQ4pFazYVQfEP1XQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBWLzgELLeg2CaTgMHoUoKd8wKpLMB8GA1UdIwQY
MBaAFNJIGFlW5EO1WwYiAPlkU3vBC8EwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGtnWVdWYmtRN1ZiQmlJQS1XUlRlOEVMd1RBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZTg3NWEtMDU3Ni00YTE1LWJlMjMt
YWVhMDU0Y2Y0M2JiLzEvMGtnWVdWYmtRN1ZiQmlJQS1XUlRlOEVMd1RBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9kZTg3NWEtMDU3Ni00YTE1LWJlMjMtYWVhMDU0Y2Y0M2Ji
LzEvMGtnWVdWYmtRN1ZiQmlJQS1XUlRlOEVMd1RBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANotq2UVj
K0zeF4C1MGweEaFYHoDuppU0ITffDH2Es9Igs/Oxni7+QXLPwOsRRxC09vf8X/k4
hOcZt+nnLmy/ZnNXVw7nrUbJVHHMBCxPuPDShJ78rW7t1Cr4AmthE4IyChVC8Rfz
NJtE0G0DI1mEjDG3afEf3msKwfbfksIAKzG1keNYRpVNVN99FYwDp1mvxSRfigB+
QBsYmsrZfnbOAIzdIsN3SZpK2OFzbU85Aq12JLESmVvMCsj922dUgOlQwidlX5yW
NMga0uS/EhpiNyxo1/86XITDFIgoT55LaiC1yrkEyImmWyuOinCOsRRO16oR4Upb
tBFmbjdvfp5YRQ==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:27 2026 by rpki-client