Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
File: 0c0c1HQkGQk2se35qYScPjBYfzo.mft (raw, json)
Hash identifier: ia5eVY1QEnEIxAfNCaLKf7fFUqAsQ7defK9GhzXgID4=
Subject key identifier: 7E:91:36:53:43:4E:FB:C9:23:77:33:38:89:91:21:B1:8B:5A:19:A5
Authority key identifier: D1:CD:1C:D4:74:24:19:09:36:B1:ED:F9:A9:84:9C:3E:30:58:7F:3A
Certificate issuer: /CN=d1cd1cd47424190936b1edf9a9849c3e30587f3a
Certificate serial: 019E2F9645129A0BF9E209CA931FA505DE74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0c0c1HQkGQk2se35qYScPjBYfzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
Manifest number: 106F
Signing time: Sat 16 May 2026 07:00:37 +0000
Manifest this update: Sat 16 May 2026 07:00:37 +0000
Manifest next update: Sun 17 May 2026 07:00:37 +0000
Files and hashes: 1: 0c0c1HQkGQk2se35qYScPjBYfzo.crl (hash: MPIyYs1YrK+rtBuLQOPzGGU4/4EEaZ00GbofLCjgZ6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/0c0c1HQkGQk2se35qYScPjBYfzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 07:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:96:45:12:9a:0b:f9:e2:09:ca:93:1f:a5:05:de:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1cd1cd47424190936b1edf9a9849c3e30587f3a
Validity
Not Before: May 16 07:00:37 2026 GMT
Not After : May 17 07:00:37 2026 GMT
Subject: CN=7e913653434efbc923773338899121b18b5a19a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b6:a4:0f:6e:a9:b5:32:c4:29:14:49:1d:6c:
fc:b1:09:69:49:cb:7a:b6:59:bd:72:90:f3:ad:a0:
87:bd:17:78:a4:de:63:84:1e:28:51:7e:ce:21:b7:
5a:84:1a:e3:b7:95:2c:26:c0:80:c1:4b:ee:02:5b:
7b:ab:0a:c4:b9:f7:25:31:1d:84:4c:70:b6:45:51:
77:d8:6e:75:43:04:29:ae:05:24:0d:0d:b2:1b:b4:
28:92:cc:bb:4b:fd:55:b9:40:d8:6e:c5:86:2a:10:
9b:92:17:f3:95:40:2f:81:c5:54:a9:9e:8b:3a:48:
01:0b:b5:58:be:b3:f2:d2:30:84:41:c2:48:e4:ce:
8c:6d:1d:94:00:d2:f5:d6:48:8d:68:9d:78:06:44:
b3:33:fd:8e:85:34:2a:59:38:7d:7e:81:24:6e:6b:
2b:59:04:05:54:12:b5:7e:6c:44:e0:c6:54:a7:cd:
1a:eb:4b:ae:fe:09:63:40:4a:91:81:34:e7:ac:60:
0c:8d:d9:b0:ca:7d:82:0d:1f:da:60:8a:aa:d2:00:
4b:ba:e0:5e:fa:3f:11:a4:ac:e3:a6:d2:50:c3:bf:
eb:2f:60:b9:a8:99:8b:3b:bc:99:3e:a8:63:22:54:
fc:1c:df:93:c5:2b:2c:15:99:63:0f:9c:bb:37:66:
ec:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:91:36:53:43:4E:FB:C9:23:77:33:38:89:91:21:B1:8B:5A:19:A5
X509v3 Authority Key Identifier:
keyid:D1:CD:1C:D4:74:24:19:09:36:B1:ED:F9:A9:84:9C:3E:30:58:7F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c0c1HQkGQk2se35qYScPjBYfzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:50:8b:24:f9:ce:23:25:18:11:23:1f:f5:21:1d:b5:cd:3c:
b8:24:de:22:25:b3:33:67:3e:34:1b:f5:5e:7a:77:94:3a:27:
a7:39:72:fc:d6:39:df:7f:a2:b8:5d:db:be:e0:8a:64:c6:04:
8c:ea:fb:bf:30:2f:1d:e9:11:fb:8a:40:4f:a1:12:6f:48:82:
b6:ea:99:e6:09:67:88:b3:cd:76:85:bf:8b:f9:e5:50:e2:83:
b3:9a:fa:bf:83:06:96:7d:2e:53:2e:6c:01:99:20:55:60:80:
75:19:bd:c5:c6:9d:4a:aa:31:c8:11:d0:f4:2b:c6:70:3a:b1:
53:ff:cc:b2:ba:72:35:d5:a9:27:dd:3b:e7:98:ea:5b:4d:28:
3b:d6:13:00:e8:86:6f:30:98:33:7c:b8:6d:1d:df:12:0d:1a:
99:b1:65:ef:0c:25:34:d9:6a:ab:9a:0e:86:25:95:73:af:b7:
a1:54:1b:26:06:0f:a6:86:b8:77:fb:84:32:d2:07:42:0e:43:
d2:a7:f8:af:88:87:6a:ef:3e:b2:16:16:ce:f8:c4:e9:d2:a0:
ea:32:05:10:c8:92:87:54:1a:16:d8:5f:6d:7d:f0:cc:c3:a5:
66:06:7c:c3:35:e8:04:32:a5:c0:31:7e:34:41:5d:8e:31:bf:
fb:9e:aa:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4vlkUSmgv54gnKkx+lBd50MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxY2QxY2Q0NzQyNDE5MDkzNmIxZWRmOWE5ODQ5YzNlMzA1
ODdmM2EwHhcNMjYwNTE2MDcwMDM3WhcNMjYwNTE3MDcwMDM3WjAzMTEwLwYDVQQD
Eyg3ZTkxMzY1MzQzNGVmYmM5MjM3NzMzMzg4OTkxMjFiMThiNWExOWE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz7akD26ptTLEKRRJHWz8sQlpSct6
tlm9cpDzraCHvRd4pN5jhB4oUX7OIbdahBrjt5UsJsCAwUvuAlt7qwrEufclMR2E
THC2RVF32G51QwQprgUkDQ2yG7Qoksy7S/1VuUDYbsWGKhCbkhfzlUAvgcVUqZ6L
OkgBC7VYvrPy0jCEQcJI5M6MbR2UANL11kiNaJ14BkSzM/2OhTQqWTh9foEkbmsr
WQQFVBK1fmxE4MZUp80a60uu/gljQEqRgTTnrGAMjdmwyn2CDR/aYIqq0gBLuuBe
+j8RpKzjptJQw7/rL2C5qJmLO7yZPqhjIlT8HN+TxSssFZljD5y7N2bsdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH6RNlNDTvvJI3czOImRIbGLWhmlMB8GA1UdIwQY
MBaAFNHNHNR0JBkJNrHt+amEnD4wWH86MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGMwYzFIUWtHUWsyc2UzNXFZU2NQakJZZnpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS8xNGFhZmQtZDViYi00NjQ0LWJlZDct
YjQ1MzNhMDg4ZGM0LzEvMGMwYzFIUWtHUWsyc2UzNXFZU2NQakJZZnpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS8xNGFhZmQtZDViYi00NjQ0LWJlZDctYjQ1MzNhMDg4ZGM0
LzEvMGMwYzFIUWtHUWsyc2UzNXFZU2NQakJZZnpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM1CLJPnO
IyUYESMf9SEdtc08uCTeIiWzM2c+NBv1Xnp3lDonpzly/NY533+iuF3bvuCKZMYE
jOr7vzAvHekR+4pAT6ESb0iCtuqZ5glniLPNdoW/i/nlUOKDs5r6v4MGln0uUy5s
AZkgVWCAdRm9xcadSqoxyBHQ9CvGcDqxU//MsrpyNdWpJ90755jqW00oO9YTAOiG
bzCYM3y4bR3fEg0ambFl7wwlNNlqq5oOhiWVc6+3oVQbJgYPpoa4d/uEMtIHQg5D
0qf4r4iHau8+shYWzvjE6dKg6jIFEMiSh1QaFthfbX3wzMOlZgZ8wzXoBDKlwDF+
NEFdjjG/+56qQA==
-----END CERTIFICATE-----
Generated at Sat May 16 16:25:37 2026 by rpki-client