Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft
File: 0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft (raw, json)
Hash identifier: 33p8cEB7+VTIpmH+AofHpvU2kYg05NEYJDIxxBS0JvQ=
Subject key identifier: 30:79:66:29:7D:83:0B:45:CD:4C:AD:BD:20:B9:BE:F6:7C:84:2B:8D
Authority key identifier: D2:1A:59:40:72:2B:20:7B:29:D9:5A:6C:81:BE:0D:2B:F4:D4:10:CC
Certificate issuer: /CN=d21a5940722b207b29d95a6c81be0d2bf4d410cc
Certificate serial: 019F17F9C37D16F57117CC92575A8247C446
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft
Manifest number: 0B43
Signing time: Tue 30 Jun 2026 10:01:12 +0000
Manifest this update: Tue 30 Jun 2026 10:01:12 +0000
Manifest next update: Wed 01 Jul 2026 10:01:12 +0000
Files and hashes: 1: 0hpZQHIrIHsp2Vpsgb4NK_TUEMw.crl (hash: Hm+YsQ2ee9kVS2d6yK/aD8YFOB9H7fnvMIXc4pJzFm0=)
2: 6jB2jMiHx3sCwDqQfo8bHL7xj1o.roa (hash: c6SeZtcLZoq1VVZbkWGju8/PVQHZ1NT6ScCfBSc3zdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 10:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:f9:c3:7d:16:f5:71:17:cc:92:57:5a:82:47:c4:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d21a5940722b207b29d95a6c81be0d2bf4d410cc
Validity
Not Before: Jun 30 10:01:12 2026 GMT
Not After : Jul 1 10:01:12 2026 GMT
Subject: CN=307966297d830b45cd4cadbd20b9bef67c842b8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:91:d3:e9:a2:a8:89:8b:ad:a7:70:59:9c:0f:
e8:c3:66:0f:0f:d5:1c:88:f3:ac:07:b4:99:db:69:
cf:76:8e:b5:10:80:62:5c:f4:88:c0:3d:9a:f7:c7:
ad:5a:ed:35:ff:38:d5:2a:ce:37:fe:19:10:ea:cd:
1d:68:00:11:a2:36:f3:91:6a:d5:58:2f:56:99:64:
c9:8d:27:7f:e9:ed:ee:68:db:13:74:b7:dd:b7:2c:
6f:69:25:b9:02:62:cb:24:e0:0b:f0:5b:64:ac:7e:
71:66:eb:a9:ac:c3:0e:68:7e:93:e5:c2:f3:bc:fe:
64:13:a3:8f:6e:49:6a:11:88:6b:a1:6b:fd:83:0b:
8a:45:9c:bd:a8:bc:43:2e:e4:28:2e:49:45:3a:e8:
80:be:6d:6e:3f:fe:4e:f0:82:69:c0:c1:cb:a7:25:
55:0a:56:3a:cb:b2:b3:e9:85:25:48:3e:bd:15:98:
49:1c:bd:62:71:8e:01:35:42:fb:af:d9:02:67:5b:
57:a0:41:ac:da:1c:b0:d9:44:07:ad:27:42:0f:a0:
a6:99:87:be:d8:44:fc:94:5c:04:9b:83:d1:4e:0d:
66:03:1e:ac:40:c1:9e:83:c9:b7:d0:42:1e:01:38:
99:a7:70:ac:33:47:d1:fb:8f:bc:1f:8a:0d:4c:92:
5a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:79:66:29:7D:83:0B:45:CD:4C:AD:BD:20:B9:BE:F6:7C:84:2B:8D
X509v3 Authority Key Identifier:
keyid:D2:1A:59:40:72:2B:20:7B:29:D9:5A:6C:81:BE:0D:2B:F4:D4:10:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:29:84:fc:69:e8:ff:92:74:9a:3b:b9:3b:5f:6b:69:f3:52:
f2:71:72:02:84:65:23:35:0f:71:44:ba:5b:5a:40:fd:f1:79:
1d:5c:f8:29:ae:20:26:7b:6e:65:f9:ea:4d:81:d2:46:8f:4f:
a4:ea:9e:49:9d:80:c4:6e:e5:74:87:16:d1:c3:2a:4a:7b:0f:
c5:63:cd:90:5a:c7:cc:71:58:59:fe:e8:7f:4c:7a:9d:bb:2e:
5e:cb:be:bd:af:06:2b:1a:d3:e0:cf:25:fd:4f:2f:49:f2:f9:
e7:2f:7b:16:d7:c9:5a:f2:75:e8:bb:68:6d:1c:6f:98:c5:c9:
bb:cf:14:87:4c:d9:2c:5b:9c:4e:70:c5:b4:ff:c1:35:1b:7a:
5d:cd:b0:69:a3:71:eb:b7:92:ba:40:11:46:8d:ab:24:51:4f:
e8:27:c1:a9:cb:e5:a8:0c:26:a2:dd:6b:b4:75:eb:33:22:38:
e2:e6:74:66:74:71:ff:70:ce:a2:5b:8b:1f:76:10:fc:b3:7d:
31:43:3f:ee:0a:42:b6:f8:d5:76:f1:8d:92:7a:a3:d6:05:c6:
58:24:93:fa:0b:5d:86:f7:0a:20:09:36:a9:66:92:17:d7:ab:
41:55:2f:bc:8c:96:5e:b9:00:fa:f5:49:ff:98:82:31:7b:95:
4c:3d:9d:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:23:57 2026 by rpki-client