Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
File: d0HROhWph91gAZwCZdLs7EhAlEo.mft (raw, json)
Hash identifier: uJcLsSWG4oHpAILMYgG/qNfJ8conxmyuRtu7BgESpiY=
Subject key identifier: 53:D0:3D:C6:FB:E9:59:0E:2C:25:33:40:22:1B:6C:9E:2F:53:27:16
Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
Certificate issuer: /CN=7741d13a15a987dd60019c0265d2ecec4840944a
Certificate serial: 019E4E45E5D9B8E33F59922BF2C6083EE76B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
Manifest number: 0A33
Signing time: Fri 22 May 2026 06:01:04 +0000
Manifest this update: Fri 22 May 2026 06:01:04 +0000
Manifest next update: Sat 23 May 2026 06:01:04 +0000
Files and hashes: 1: 2aVju54fgg9bD1JRsSNN37U-9Hk.roa (hash: gQ2ZXX3Kuvxj5T+dbec4hU1fv3yACHxOQmVvGeAb560=)
2: d0HROhWph91gAZwCZdLs7EhAlEo.crl (hash: nVi8EEUaP5M3QiDbmz1QU4qYCrLuVy5PYVxKn1QDxA0=)
3: sRYXppUiSNJrW5d1MVXqJ1v0U0g.roa (hash: e8cW0JrKBdNEagEPQSlGciScba5vYX0jEPFos43/Uno=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 May 2026 06:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:4e:45:e5:d9:b8:e3:3f:59:92:2b:f2:c6:08:3e:e7:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a
Validity
Not Before: May 22 06:01:04 2026 GMT
Not After : May 23 06:01:04 2026 GMT
Subject: CN=53d03dc6fbe9590e2c253340221b6c9e2f532716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:24:94:56:fd:ef:99:c3:84:01:97:d6:94:fb:
9d:0d:e8:31:01:18:33:91:5e:ef:eb:ac:71:4e:6d:
ef:da:f3:84:0d:9e:63:4c:a4:3f:79:3b:5a:06:a7:
93:67:66:33:54:1e:1f:27:6b:eb:c2:17:ab:69:97:
53:3d:7d:e5:10:e3:15:4d:90:36:d1:ac:31:90:28:
72:73:f2:e3:30:f0:36:1b:fc:1c:a1:66:47:ae:e8:
0c:54:12:eb:cb:a7:68:43:86:d8:82:3a:fc:19:2f:
5a:98:ef:6d:d7:d5:bb:28:c7:d9:b6:ba:99:59:0b:
80:3c:bf:93:03:a2:09:05:ef:a3:a9:e8:6e:81:1a:
68:9f:73:92:7d:e3:48:12:4f:b4:04:7d:15:9d:91:
9c:89:3e:00:50:89:b7:64:30:62:88:3e:be:ed:fe:
e0:d7:68:9e:dd:84:1d:56:ab:7d:83:a8:cc:b5:06:
48:c5:15:61:29:15:0e:8b:9d:69:cb:6c:86:54:cf:
f3:e1:b9:12:57:85:a8:5c:aa:a9:07:b6:78:02:48:
62:4d:39:28:36:a1:91:85:80:01:91:a8:fb:e6:00:
3e:c3:1c:b0:18:13:3a:f4:21:e5:21:57:c9:d5:60:
96:9e:48:82:c8:53:d6:48:b9:53:3d:e4:20:b2:4c:
e6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D0:3D:C6:FB:E9:59:0E:2C:25:33:40:22:1B:6C:9E:2F:53:27:16
X509v3 Authority Key Identifier:
keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:86:2b:04:13:ba:8f:2f:40:47:c8:ec:9c:77:5e:45:5d:3f:
b3:36:b8:1a:02:b3:17:cf:ca:1d:b2:31:f9:98:84:d6:d3:8f:
57:cc:96:a0:d6:91:9f:83:31:e0:ec:9a:bc:81:62:f0:22:6b:
29:52:16:8d:5f:7d:e3:28:64:be:fe:be:ad:a4:01:72:71:aa:
3b:90:68:1b:f7:98:c9:ca:bf:69:e6:6c:93:5c:35:17:c9:53:
aa:53:58:3e:c7:69:a2:e6:ab:93:61:00:11:c3:10:c6:ab:81:
70:07:c6:bf:16:55:99:0a:20:3e:85:76:34:16:c6:d1:92:b8:
c0:3c:2d:bd:d8:de:b3:27:dd:0d:da:e2:d6:ef:9f:c0:78:f9:
eb:8d:cd:c9:9b:5b:39:6d:33:69:17:f7:b6:6c:88:d5:20:a2:
65:ec:25:91:e8:64:df:6a:c7:d7:90:de:d2:85:c7:d1:56:b5:
82:bd:fb:e2:e4:e6:27:4c:c4:59:85:ab:e8:1a:bb:39:d5:b0:
e1:d5:c4:d5:4a:ca:34:1b:e8:de:cd:e0:75:97:74:68:56:4c:
8a:d9:96:49:83:78:22:75:57:77:ed:44:06:8a:50:6b:dd:4a:
11:29:ca:47:3b:b5:cd:53:71:b5:e9:8d:a2:9a:52:61:54:d6:
c3:ff:e5:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 22 15:13:53 2026 by rpki-client