Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft
File: 0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft (raw, json)
Hash identifier: F1FmFa2hf/YnX5lKjrUiEqQTEh04PPFa8nO1HuG+kBw=
Subject key identifier: DF:4A:64:98:F4:C2:21:DF:29:2F:61:8C:3D:3E:33:29:2E:88:5E:41
Authority key identifier: D2:1A:59:40:72:2B:20:7B:29:D9:5A:6C:81:BE:0D:2B:F4:D4:10:CC
Certificate issuer: /CN=d21a5940722b207b29d95a6c81be0d2bf4d410cc
Certificate serial: 019D371BCF0B8195C29C5A4D7DE8F474F42A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft
Manifest number: 0A4A
Signing time: Sun 29 Mar 2026 01:01:02 +0000
Manifest this update: Sun 29 Mar 2026 01:01:02 +0000
Manifest next update: Mon 30 Mar 2026 01:01:02 +0000
Files and hashes: 1: 0hpZQHIrIHsp2Vpsgb4NK_TUEMw.crl (hash: zNxj2cZGp4h7D7X1yTnwcfm4zcniZUM8uLcY0Iq3c4Y=)
2: 6jB2jMiHx3sCwDqQfo8bHL7xj1o.roa (hash: c6SeZtcLZoq1VVZbkWGju8/PVQHZ1NT6ScCfBSc3zdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:cf:0b:81:95:c2:9c:5a:4d:7d:e8:f4:74:f4:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d21a5940722b207b29d95a6c81be0d2bf4d410cc
Validity
Not Before: Mar 29 01:01:02 2026 GMT
Not After : Mar 30 01:01:02 2026 GMT
Subject: CN=df4a6498f4c221df292f618c3d3e33292e885e41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:96:de:66:31:48:1c:c9:39:39:b0:e1:4a:6c:
59:71:29:2c:25:8d:37:8e:56:be:d3:e4:1b:96:4a:
6b:35:78:a0:71:2d:10:74:f4:d1:0c:86:a2:81:62:
a7:14:48:6e:11:76:67:30:ea:3c:ad:cf:f8:60:d9:
99:df:ee:8a:ea:12:da:90:8b:88:72:6c:ee:19:68:
6c:71:82:1f:f6:da:2c:00:a2:b3:84:8e:46:e1:9e:
86:54:5b:67:a2:e2:63:87:94:fd:c3:87:28:a1:80:
58:04:ea:9e:86:2b:55:d5:a8:8c:d7:ce:8d:ea:61:
54:1b:f4:a5:ee:0b:d8:2b:33:c7:7e:53:ce:1b:a7:
f0:5f:b8:fb:c1:d8:5f:b1:5a:23:8b:5b:0a:b4:39:
80:30:10:cc:34:8f:40:1c:61:a7:2b:40:96:be:01:
7c:63:f4:ed:43:4b:3c:71:77:ef:90:38:94:a1:6c:
04:f6:1d:c8:e6:ef:1e:5b:d7:a9:16:c7:75:e2:9d:
e3:e5:5f:e4:89:e7:01:d7:e4:4f:f5:1f:19:7f:50:
9c:5a:53:f1:a5:05:06:29:1b:0e:df:36:9f:e8:1e:
92:b0:ea:77:e1:8e:02:42:8c:c5:60:93:a4:aa:ec:
32:03:c2:51:b7:0b:02:f3:bf:a0:a2:ab:26:a8:5c:
ba:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:4A:64:98:F4:C2:21:DF:29:2F:61:8C:3D:3E:33:29:2E:88:5E:41
X509v3 Authority Key Identifier:
keyid:D2:1A:59:40:72:2B:20:7B:29:D9:5A:6C:81:BE:0D:2B:F4:D4:10:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:9d:27:e1:c0:ff:8a:88:a8:d4:04:85:aa:2a:50:9f:90:72:
ab:12:03:b3:76:e9:cb:7a:30:a0:07:c7:58:1e:af:b4:8a:7b:
f4:2f:c3:94:01:4e:84:73:2a:3a:89:9a:59:79:72:d8:f0:bb:
bc:ad:eb:d6:34:a6:98:59:ca:7b:b2:41:b9:2c:3b:be:ba:b7:
23:02:d9:25:1e:96:8f:75:75:b5:6e:a5:49:ac:56:cb:b8:a4:
9f:92:05:6f:80:34:66:d3:0c:c7:08:f7:8b:ec:9c:81:84:01:
3b:ce:97:bf:63:57:f0:a9:7f:ea:6c:bc:8f:6d:82:6c:9c:c4:
2a:b1:1c:67:2e:d3:ab:fa:5a:f2:1a:d2:e0:51:cf:3f:a9:d1:
e7:36:6a:c1:02:1c:b4:49:df:81:9c:60:0d:1d:c6:a6:a8:44:
99:6f:3d:80:40:4d:02:f4:6f:27:70:8e:ab:70:69:6b:21:40:
46:2e:cb:69:08:9c:28:4f:49:9b:3e:6e:24:f2:9b:85:4e:50:
4a:b3:87:fd:7b:d6:cd:1d:69:e9:d4:a0:d2:b4:91:63:1a:07:
f1:ac:19:5e:13:01:03:ef:8b:1e:63:b4:4f:12:c2:d0:3d:e2:
a1:93:b9:69:56:2a:e6:34:08:10:5b:ab:ba:ed:72:26:ae:72:
3e:da:6c:05
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03G88LgZXCnFpNfej0dPQqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyMWE1OTQwNzIyYjIwN2IyOWQ5NWE2YzgxYmUwZDJiZjRk
NDEwY2MwHhcNMjYwMzI5MDEwMTAyWhcNMjYwMzMwMDEwMTAyWjAzMTEwLwYDVQQD
EyhkZjRhNjQ5OGY0YzIyMWRmMjkyZjYxOGMzZDNlMzMyOTJlODg1ZTQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5beZjFIHMk5ObDhSmxZcSksJY03
jla+0+QblkprNXigcS0QdPTRDIaigWKnFEhuEXZnMOo8rc/4YNmZ3+6K6hLakIuI
cmzuGWhscYIf9tosAKKzhI5G4Z6GVFtnouJjh5T9w4cooYBYBOqehitV1aiM186N
6mFUG/Sl7gvYKzPHflPOG6fwX7j7wdhfsVoji1sKtDmAMBDMNI9AHGGnK0CWvgF8
Y/TtQ0s8cXfvkDiUoWwE9h3I5u8eW9epFsd14p3j5V/kiecB1+RP9R8Zf1CcWlPx
pQUGKRsO3zaf6B6SsOp34Y4CQozFYJOkquwyA8JRtwsC87+goqsmqFy6AwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN9KZJj0wiHfKS9hjD0+MykuiF5BMB8GA1UdIwQY
MBaAFNIaWUByKyB7KdlabIG+DSv01BDMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGhwWlFISXJJSHNwMlZwc2diNE5LX1RVRU13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC81NjQzM2EtMGE3MC00ZWFlLTlmOWQt
OGNmYmRiNzk5Mjg0LzEvMGhwWlFISXJJSHNwMlZwc2diNE5LX1RVRU13Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC81NjQzM2EtMGE3MC00ZWFlLTlmOWQtOGNmYmRiNzk5Mjg0
LzEvMGhwWlFISXJJSHNwMlZwc2diNE5LX1RVRU13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEZ0n4cD/
ioio1ASFqipQn5ByqxIDs3bpy3owoAfHWB6vtIp79C/DlAFOhHMqOomaWXly2PC7
vK3r1jSmmFnKe7JBuSw7vrq3IwLZJR6Wj3V1tW6lSaxWy7ikn5IFb4A0ZtMMxwj3
i+ycgYQBO86Xv2NX8Kl/6my8j22CbJzEKrEcZy7Tq/pa8hrS4FHPP6nR5zZqwQIc
tEnfgZxgDR3GpqhEmW89gEBNAvRvJ3COq3BpayFARi7LaQicKE9Jmz5uJPKbhU5Q
SrOH/XvWzR1p6dSg0rSRYxoH8awZXhMBA++LHmO0TxLC0D3ioZO5aVYq5jQIEFur
uu1yJq5yPtpsBQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:35:10 2026 by rpki-client