Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.mft
File: 0LkE317sIhazQwFsXLJLuQpD06Q.mft (raw, json)
Hash identifier: R7sfePVSuCtkSQ9N+ZBNu7p5NZGDDXHy6AlSF6wAAo8=
Subject key identifier: DD:EC:E6:1F:DC:6E:CB:F6:EB:3C:C0:8D:70:82:39:4E:A8:05:C0:29
Authority key identifier: D0:B9:04:DF:5E:EC:22:16:B3:43:01:6C:5C:B2:4B:B9:0A:43:D3:A4
Certificate issuer: /CN=d0b904df5eec2216b343016c5cb24bb90a43d3a4
Certificate serial: 019F178BEF6570F546BE856F5F17C929682C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LkE317sIhazQwFsXLJLuQpD06Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.mft
Manifest number: 1984
Signing time: Tue 30 Jun 2026 08:01:14 +0000
Manifest this update: Tue 30 Jun 2026 08:01:14 +0000
Manifest next update: Wed 01 Jul 2026 08:01:14 +0000
Files and hashes: 1: 0LkE317sIhazQwFsXLJLuQpD06Q.crl (hash: VMkpiKt9qBvCR2UWSzAiDbMKVxT2Aeq/7mJWTZtVkkw=)
2: nqFedlELDT6btqVr2PyQaNO_Pfw.roa (hash: 8tqaPkj8LtydCchM9fMrH7we2nm/JziMXiNEi0lLF+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/0LkE317sIhazQwFsXLJLuQpD06Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 08:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:8b:ef:65:70:f5:46:be:85:6f:5f:17:c9:29:68:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0b904df5eec2216b343016c5cb24bb90a43d3a4
Validity
Not Before: Jun 30 08:01:14 2026 GMT
Not After : Jul 1 08:01:14 2026 GMT
Subject: CN=ddece61fdc6ecbf6eb3cc08d7082394ea805c029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:76:62:47:57:d2:30:aa:16:bb:27:63:9e:c7:
ef:11:a3:6b:78:bb:17:4c:cd:80:ab:aa:9b:93:fe:
fa:7d:c5:b9:ad:78:41:d6:88:60:b9:92:c9:30:9b:
cc:02:46:8f:a3:96:01:64:db:0e:15:c8:ea:29:b3:
12:50:9d:32:49:2c:af:89:c4:55:1b:75:3e:25:96:
2d:40:e8:3c:60:d3:8f:f9:35:05:f4:38:0c:28:98:
b3:80:3a:d0:e7:21:78:4f:be:a4:18:c8:b0:a5:b8:
48:0a:e7:f5:9a:84:ce:85:ca:64:f1:1b:7e:16:04:
e6:d1:01:9c:46:b7:6d:f3:3e:ff:39:b2:5d:59:8a:
71:6e:61:08:40:b6:e1:58:be:b8:a9:63:5d:9d:16:
e2:03:52:07:12:50:46:c8:04:52:e8:6f:29:3e:e6:
95:5d:16:be:f0:bb:9e:2e:b2:8a:c8:9e:b1:9a:b9:
3c:07:8c:bd:80:b9:8d:02:e9:1c:5d:37:6c:f9:91:
70:c6:86:62:56:5e:cb:d9:de:7a:20:98:c4:fa:0f:
17:00:16:bb:82:91:5a:de:eb:d3:a3:43:34:59:47:
46:7e:b7:75:78:8f:12:22:ad:18:e3:61:2f:bb:b7:
10:b6:89:11:4c:dd:40:aa:99:cc:f6:27:57:0b:b4:
48:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:EC:E6:1F:DC:6E:CB:F6:EB:3C:C0:8D:70:82:39:4E:A8:05:C0:29
X509v3 Authority Key Identifier:
keyid:D0:B9:04:DF:5E:EC:22:16:B3:43:01:6C:5C:B2:4B:B9:0A:43:D3:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LkE317sIhazQwFsXLJLuQpD06Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:67:a6:cf:ea:90:50:fe:92:db:22:84:7c:11:48:20:1f:f7:
4f:fc:84:bc:a4:d4:d8:8b:16:66:c0:fc:de:df:d8:c5:f7:d9:
74:b8:79:18:17:3e:50:7a:2e:5a:57:28:36:73:b7:6d:e1:a4:
5f:65:65:36:32:16:65:dc:1c:a9:79:d7:52:e5:6f:b9:12:4a:
1e:56:c0:ba:81:fd:54:f7:ce:87:8e:df:f4:60:d4:26:e8:ce:
95:04:de:30:be:5f:a4:c5:e1:cb:8d:94:5f:9e:90:de:4e:d1:
ac:0e:f6:0d:79:25:aa:a4:4b:0f:fd:d0:67:28:45:67:91:9a:
07:32:1f:84:a1:f8:9d:3e:96:19:04:b4:06:9e:de:42:09:ee:
34:e9:02:a7:60:68:bc:0c:ba:14:90:21:71:8d:14:b5:77:69:
c8:2e:7d:6a:d1:05:30:d5:6a:26:08:5f:84:db:36:d1:e4:8e:
c7:18:7c:a4:3a:df:5b:fa:42:44:88:9f:ab:17:d6:66:99:67:
cb:87:69:19:af:84:c0:09:38:20:8e:a2:9c:03:23:2d:bd:0e:
1a:d8:e1:ef:4d:20:bb:29:73:43:a6:be:6b:54:30:45:7d:73:
33:c6:a2:fc:9e:f4:dc:91:d6:36:56:bb:41:07:6d:6c:d8:6c:
36:da:82:0c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8Xi+9lcPVGvoVvXxfJKWgsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwYjkwNGRmNWVlYzIyMTZiMzQzMDE2YzVjYjI0YmI5MGE0
M2QzYTQwHhcNMjYwNjMwMDgwMTE0WhcNMjYwNzAxMDgwMTE0WjAzMTEwLwYDVQQD
EyhkZGVjZTYxZmRjNmVjYmY2ZWIzY2MwOGQ3MDgyMzk0ZWE4MDVjMDI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApHZiR1fSMKoWuydjnsfvEaNreLsX
TM2Aq6qbk/76fcW5rXhB1ohguZLJMJvMAkaPo5YBZNsOFcjqKbMSUJ0ySSyvicRV
G3U+JZYtQOg8YNOP+TUF9DgMKJizgDrQ5yF4T76kGMiwpbhICuf1moTOhcpk8Rt+
FgTm0QGcRrdt8z7/ObJdWYpxbmEIQLbhWL64qWNdnRbiA1IHElBGyARS6G8pPuaV
XRa+8LueLrKKyJ6xmrk8B4y9gLmNAukcXTds+ZFwxoZiVl7L2d56IJjE+g8XABa7
gpFa3uvTo0M0WUdGfrd1eI8SIq0Y42Evu7cQtokRTN1AqpnM9idXC7RI1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN3s5h/cbsv26zzAjXCCOU6oBcApMB8GA1UdIwQY
MBaAFNC5BN9e7CIWs0MBbFyyS7kKQ9OkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMExrRTMxN3NJaGF6UXdGc1hMSkx1UXBEMDZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi82YTdjOTMtODdiNC00YTRjLWEyMWUt
NDFhODRmNDE5YWM1LzEvMExrRTMxN3NJaGF6UXdGc1hMSkx1UXBEMDZRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi82YTdjOTMtODdiNC00YTRjLWEyMWUtNDFhODRmNDE5YWM1
LzEvMExrRTMxN3NJaGF6UXdGc1hMSkx1UXBEMDZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc2emz+qQ
UP6S2yKEfBFIIB/3T/yEvKTU2IsWZsD83t/YxffZdLh5GBc+UHouWlcoNnO3beGk
X2VlNjIWZdwcqXnXUuVvuRJKHlbAuoH9VPfOh47f9GDUJujOlQTeML5fpMXhy42U
X56Q3k7RrA72DXklqqRLD/3QZyhFZ5GaBzIfhKH4nT6WGQS0Bp7eQgnuNOkCp2Bo
vAy6FJAhcY0UtXdpyC59atEFMNVqJghfhNs20eSOxxh8pDrfW/pCRIifqxfWZpln
y4dpGa+EwAk4II6inAMjLb0OGtjh700guylzQ6a+a1QwRX1zM8ai/J703JHWNla7
QQdtbNhsNtqCDA==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:34 2026 by rpki-client