Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
File: 0dI-JBGcupM36DRmSFv7EGsuJLY.mft (raw, json)
Hash identifier: Q09i1A0Nr4zVvPdpD4X7/bMJoP94Gct9X4LUz/OHP2U=
Subject key identifier: 47:C3:20:5D:6A:A1:FF:76:67:44:C1:7E:D9:40:E7:E9:C4:AB:6C:E7
Authority key identifier: D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6
Certificate issuer: /CN=d1d23e24119cba9337e83466485bfb106b2e24b6
Certificate serial: 019E9B4E32B60A07B1047184E3AA64F8CEB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
Manifest number: 038F
Signing time: Sat 06 Jun 2026 05:00:53 +0000
Manifest this update: Sat 06 Jun 2026 05:00:53 +0000
Manifest next update: Sun 07 Jun 2026 05:00:53 +0000
Files and hashes: 1: 0dI-JBGcupM36DRmSFv7EGsuJLY.crl (hash: XwbmZBsQm3FgXeDKTPdqtX2iF+gTHVrcbMLyoF8x1vA=)
2: GBJ2X2TfbSwmmzgVVsME19XqtSw.roa (hash: 8eDDx0cI0Ia4YPWxch5djmmuUUa69P9GBwa1jUZnCWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9b:4e:32:b6:0a:07:b1:04:71:84:e3:aa:64:f8:ce:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1d23e24119cba9337e83466485bfb106b2e24b6
Validity
Not Before: Jun 6 05:00:53 2026 GMT
Not After : Jun 7 05:00:53 2026 GMT
Subject: CN=47c3205d6aa1ff766744c17ed940e7e9c4ab6ce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:13:3b:81:8f:c0:1b:4b:d4:e8:cd:31:88:27:
0a:37:36:ad:b1:e1:9f:81:a8:1f:f4:24:2d:64:a6:
8f:c9:e5:3d:28:f3:76:f0:4e:74:54:67:3d:45:2b:
22:8b:d8:c4:87:c2:fc:4d:d6:97:7d:dc:47:bd:de:
cd:bb:8d:3b:5e:3b:22:06:ab:af:35:b3:c7:c5:57:
ae:e2:2e:b3:95:13:72:f5:e2:a9:32:3f:53:73:53:
62:7b:59:f8:88:c7:97:87:f5:3a:31:c8:7a:19:c8:
8c:5d:40:e1:c1:bf:37:d2:a5:02:51:88:56:31:5f:
be:e8:c4:b5:d6:2c:78:62:c2:5f:a1:48:8a:92:89:
f5:67:f4:af:88:30:c1:53:b0:15:15:44:5d:74:07:
8d:9e:30:8d:33:65:59:99:30:bc:78:77:3a:94:05:
56:e6:80:60:a1:64:97:56:9a:57:b0:d2:15:2a:73:
89:a7:85:8e:d5:fd:44:ef:6d:9b:1d:ea:b9:0f:2a:
c4:15:1c:ea:41:37:31:c3:fa:93:86:18:e8:82:30:
a1:cc:f0:f1:40:b8:9a:9e:7e:7a:8c:02:6d:71:4b:
3b:72:23:05:17:0e:ea:54:c7:7b:b0:08:75:ee:6a:
32:7e:27:3a:11:81:30:31:8f:53:70:d4:9a:27:85:
67:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:C3:20:5D:6A:A1:FF:76:67:44:C1:7E:D9:40:E7:E9:C4:AB:6C:E7
X509v3 Authority Key Identifier:
keyid:D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:6a:4c:f7:a5:da:27:82:cb:75:c2:7b:ae:63:9d:3c:06:dd:
24:68:ca:d7:92:ad:6e:52:26:2e:be:c3:e8:ab:b9:8f:6f:e5:
d9:8c:1b:27:97:1f:3f:6b:57:4f:15:0b:6e:99:ff:12:2d:e5:
1f:7e:56:77:29:c2:ab:5e:57:bb:8f:55:31:ea:19:d7:63:98:
7a:ae:3b:0c:31:85:43:17:b6:54:a5:6c:89:65:b0:37:29:9f:
eb:88:95:27:ba:51:ac:e8:49:8f:0d:00:37:5b:7c:ae:6b:fa:
9d:01:53:d0:6e:fc:c9:4c:ae:40:d4:50:97:a8:0a:e4:08:78:
d7:1c:10:a6:fb:65:78:1d:85:cc:f4:1e:a2:73:f6:1d:74:a7:
64:87:6a:10:dd:8f:cb:a3:54:c2:ba:65:20:ae:1c:27:c0:a9:
06:9a:4d:f3:34:2d:ba:dc:5b:4b:6f:ed:44:19:48:49:3f:42:
45:c4:ae:fe:92:4d:75:35:3d:09:2b:fe:7e:9f:61:bf:00:d4:
73:7b:20:1f:68:5f:28:b2:23:37:45:81:df:7f:c5:96:ae:a3:
31:bc:7a:5b:e8:8e:ef:cb:6d:2e:a4:b3:ec:4d:0c:8a:7b:86:
33:13:04:59:b2:7a:e4:6d:40:83:eb:21:b1:36:74:21:25:8c:
e4:f7:10:f7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6bTjK2CgexBHGE46pk+M60MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxZDIzZTI0MTE5Y2JhOTMzN2U4MzQ2NjQ4NWJmYjEwNmIy
ZTI0YjYwHhcNMjYwNjA2MDUwMDUzWhcNMjYwNjA3MDUwMDUzWjAzMTEwLwYDVQQD
Eyg0N2MzMjA1ZDZhYTFmZjc2Njc0NGMxN2VkOTQwZTdlOWM0YWI2Y2U3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjBM7gY/AG0vU6M0xiCcKNzatseGf
gagf9CQtZKaPyeU9KPN28E50VGc9RSsii9jEh8L8TdaXfdxHvd7Nu407XjsiBquv
NbPHxVeu4i6zlRNy9eKpMj9Tc1Nie1n4iMeXh/U6Mch6GciMXUDhwb830qUCUYhW
MV++6MS11ix4YsJfoUiKkon1Z/SviDDBU7AVFURddAeNnjCNM2VZmTC8eHc6lAVW
5oBgoWSXVppXsNIVKnOJp4WO1f1E722bHeq5DyrEFRzqQTcxw/qThhjogjChzPDx
QLiann56jAJtcUs7ciMFFw7qVMd7sAh17moyfic6EYEwMY9TcNSaJ4VnJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEfDIF1qof92Z0TBftlA5+nEq2znMB8GA1UdIwQY
MBaAFNHSPiQRnLqTN+g0Zkhb+xBrLiS2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGRJLUpCR2N1cE0zNkRSbVNGdjdFR3N1SkxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy82YzQwNjQtODUwMy00ZDE2LTkzNTQt
NzRkNGU1YjAxYzM1LzEvMGRJLUpCR2N1cE0zNkRSbVNGdjdFR3N1SkxZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy82YzQwNjQtODUwMy00ZDE2LTkzNTQtNzRkNGU1YjAxYzM1
LzEvMGRJLUpCR2N1cE0zNkRSbVNGdjdFR3N1SkxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ2pM96Xa
J4LLdcJ7rmOdPAbdJGjK15KtblImLr7D6Ku5j2/l2YwbJ5cfP2tXTxULbpn/Ei3l
H35WdynCq15Xu49VMeoZ12OYeq47DDGFQxe2VKVsiWWwNymf64iVJ7pRrOhJjw0A
N1t8rmv6nQFT0G78yUyuQNRQl6gK5Ah41xwQpvtleB2FzPQeonP2HXSnZIdqEN2P
y6NUwrplIK4cJ8CpBppN8zQtutxbS2/tRBlIST9CRcSu/pJNdTU9CSv+fp9hvwDU
c3sgH2hfKLIjN0WB33/Flq6jMbx6W+iO78ttLqSz7E0MinuGMxMEWbJ65G1Ag+sh
sTZ0ISWM5PcQ9w==
-----END CERTIFICATE-----
Generated at Sat Jun 6 13:23:10 2026 by rpki-client