Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
File: rS044g8k0OMLhszYJhrAAX8XpaQ.mft (raw, json)
Hash identifier: /zhdshtSY3jVrOciS8BgdIMcmBceSM+NRYzR0wUYvvs=
Subject key identifier: F4:03:84:8E:23:2F:47:A4:DB:C8:26:35:C5:DE:8C:B5:E6:92:ED:72
Authority key identifier: AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4
Certificate issuer: /CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
Certificate serial: 019E566D3009A27D60C34A55A5D5FC4B977D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
Manifest number: 0BF1
Signing time: Sat 23 May 2026 20:00:56 +0000
Manifest this update: Sat 23 May 2026 20:00:56 +0000
Manifest next update: Sun 24 May 2026 20:00:56 +0000
Files and hashes: 1: 9tGzK-FCrgGlyf8btSGObHH6Jkw.roa (hash: NlammvVp7/v8P1KUtxpc69bkMW7FgZFFOJxxoLecI3k=)
2: NJAtBEz3Ixv_CCYeRvRJJECYvnk.roa (hash: 8VY+OH2qENoVZQA8QBMe/XGjN1hAsUDKuWI2emaWxMU=)
3: rS044g8k0OMLhszYJhrAAX8XpaQ.crl (hash: Pej3quK3yJbFsweIUzfe1l2P3kYTH+EKUavMopGHPJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 May 2026 20:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:56:6d:30:09:a2:7d:60:c3:4a:55:a5:d5:fc:4b:97:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
Validity
Not Before: May 23 20:00:56 2026 GMT
Not After : May 24 20:00:56 2026 GMT
Subject: CN=f403848e232f47a4dbc82635c5de8cb5e692ed72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4b:39:94:cc:bb:02:f3:af:fc:36:a0:4d:4a:
0a:49:fb:b0:00:d8:cd:76:8a:5d:38:30:35:21:86:
8f:60:f7:2b:e7:5e:de:5e:d9:3b:6a:0c:a5:2c:54:
43:70:94:a5:e9:5b:6a:75:cb:04:64:65:8c:00:65:
c5:e0:80:06:51:f9:e8:c9:fd:62:5f:24:c8:20:79:
4b:0e:7d:64:74:c0:23:d5:52:0d:0e:17:cd:d4:9f:
b4:c4:df:72:ae:7a:25:3d:4f:7a:68:77:4b:e7:50:
df:87:28:4a:a1:c2:a6:35:96:89:e2:06:d4:15:f4:
af:44:95:3c:e7:71:63:b1:de:8c:a3:02:74:6c:8b:
14:a2:d9:db:71:86:2f:a3:ec:79:31:6b:64:74:6c:
b9:ae:f1:a3:ef:e6:ca:f2:07:86:c3:c5:84:7f:bd:
62:4a:7c:c2:3b:71:e5:af:4d:16:3a:c5:ba:26:73:
b8:56:6b:dc:9f:21:cd:60:74:20:84:53:1c:88:74:
4f:12:d8:0a:94:b4:3a:41:95:2a:50:cb:99:14:70:
24:f3:1a:a3:36:9f:6b:80:7f:e2:4f:05:61:84:15:
ba:61:b9:21:ed:82:49:a4:93:d2:79:5b:5d:66:42:
9a:e9:c4:2b:87:2a:b9:2c:2b:5f:9d:d2:24:45:ec:
38:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:03:84:8E:23:2F:47:A4:DB:C8:26:35:C5:DE:8C:B5:E6:92:ED:72
X509v3 Authority Key Identifier:
keyid:AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:61:c3:56:5f:98:43:f7:73:ec:35:52:f1:f0:d2:86:70:73:
97:52:e6:4b:c3:4e:70:f8:ac:44:b2:f1:b4:1f:00:35:e7:ec:
43:99:db:f1:e6:bd:c5:9b:23:39:49:0c:49:9e:d5:74:f8:e8:
05:43:28:ad:cd:17:79:d7:e3:12:68:7b:53:bb:fe:13:a1:ae:
43:86:2c:72:8f:80:3e:ed:59:cc:c3:df:c7:ab:66:f2:38:e8:
2b:0e:d5:07:b2:fb:86:f0:73:a3:61:5d:36:fd:d1:56:63:d2:
9f:5b:45:6c:4d:54:a0:6c:07:5d:17:a3:57:7f:dd:de:4c:24:
bc:d8:a4:a6:e4:72:49:26:1b:9a:55:65:b3:ee:fd:8b:6e:2c:
4d:d8:b9:cd:31:65:c1:e0:a7:fe:f8:9e:b0:94:09:9f:0f:68:
da:a2:aa:fa:7c:40:be:cf:23:4c:b9:19:0c:e5:f2:96:41:30:
e4:8e:6f:0b:b0:8c:45:f0:b4:f3:5c:4e:1b:85:5b:dc:50:c5:
07:b8:af:dc:01:45:cd:15:b8:12:6f:a3:6d:57:72:f1:40:69:
b5:56:e1:d5:56:44:cb:a5:22:ad:3b:fd:d1:b2:c4:db:3c:9b:
0f:60:23:4b:b5:02:0b:7d:90:71:65:b8:37:14:d2:4f:fd:c0:
d9:3f:2e:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 24 04:38:12 2026 by rpki-client