Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.mft
File: 0SIIZtpI4MfP--jHOjUcKkexpNs.mft (raw, json)
Hash identifier: az/8aISL11bNWkDGyWH1YyEOJA2IzKBb1WKHRVJGPfc=
Subject key identifier: 74:6B:59:E7:F1:79:98:B2:2F:1E:64:12:20:77:05:8D:0F:15:EC:A3
Authority key identifier: D1:22:08:66:DA:48:E0:C7:CF:FB:E8:C7:3A:35:1C:2A:47:B1:A4:DB
Certificate issuer: /CN=d1220866da48e0c7cffbe8c73a351c2a47b1a4db
Certificate serial: 019D389C5CD881B66FDAA07F3D65D995C07B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0SIIZtpI4MfP--jHOjUcKkexpNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.mft
Manifest number: 0618
Signing time: Sun 29 Mar 2026 08:01:04 +0000
Manifest this update: Sun 29 Mar 2026 08:01:04 +0000
Manifest next update: Mon 30 Mar 2026 08:01:04 +0000
Files and hashes: 1: 0SIIZtpI4MfP--jHOjUcKkexpNs.crl (hash: TG5PDJur9Xt2XHA0e3YQLxyuKomjP9FU3Lg9oqwqz08=)
2: 4TxKwKRDQKF0yF_LCgtDfcD3WbA.roa (hash: Jse6W+LikeQvtYUhUSyUuHEBzEMpr4LWc8qS1sps7Pk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/0SIIZtpI4MfP--jHOjUcKkexpNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:5c:d8:81:b6:6f:da:a0:7f:3d:65:d9:95:c0:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1220866da48e0c7cffbe8c73a351c2a47b1a4db
Validity
Not Before: Mar 29 08:01:04 2026 GMT
Not After : Mar 30 08:01:04 2026 GMT
Subject: CN=746b59e7f17998b22f1e64122077058d0f15eca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a3:06:87:8b:4a:7c:2d:b6:26:ec:4e:21:95:
dc:c0:ca:0f:49:15:fa:af:11:dc:13:01:d3:cf:25:
df:bd:da:19:96:75:a8:ad:92:77:49:49:20:0b:23:
88:ee:08:a8:ca:a0:ee:62:24:46:1e:56:3e:8e:47:
a4:8a:f5:4f:cf:fe:3c:9b:aa:4d:63:56:b7:bd:78:
09:32:ee:c7:44:41:0f:33:e2:39:2a:f3:85:d9:93:
d9:a7:8f:bd:b3:73:11:0e:ab:a2:74:15:24:9a:b3:
4a:77:bd:c6:b0:48:15:71:0b:d8:39:cd:2a:a5:c3:
99:8d:2f:c0:81:be:d0:76:3c:cb:4a:98:b6:c4:6a:
70:91:68:55:0b:d2:e4:76:26:ee:b0:f3:af:a4:f6:
e9:2e:56:f8:27:4b:6f:84:8f:1e:76:31:2e:ee:68:
9a:11:f5:7d:ff:15:a1:59:0b:45:90:f7:42:0d:40:
b5:1c:24:85:99:5e:e8:c8:29:ea:b2:f1:49:7b:27:
93:c8:b1:e5:ff:4e:8d:c6:5a:1f:86:21:8c:2c:14:
dd:67:e2:78:5d:5c:63:43:b2:f0:64:c3:19:74:1c:
1f:27:bd:43:96:d4:c4:b3:9f:af:27:1e:5c:38:10:
b8:a0:23:c0:d1:73:c0:dc:81:f3:8c:d8:c7:48:e8:
70:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:6B:59:E7:F1:79:98:B2:2F:1E:64:12:20:77:05:8D:0F:15:EC:A3
X509v3 Authority Key Identifier:
keyid:D1:22:08:66:DA:48:E0:C7:CF:FB:E8:C7:3A:35:1C:2A:47:B1:A4:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0SIIZtpI4MfP--jHOjUcKkexpNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:c8:ac:4a:2a:ba:0a:b1:43:7b:c3:46:8f:85:09:e3:c2:26:
02:9f:25:2a:5c:04:86:f8:f0:23:e1:90:79:14:49:8a:2f:3c:
af:f2:62:16:60:7a:86:7c:dc:fb:5e:20:de:2c:9a:da:56:c6:
a9:f3:14:20:78:59:22:63:43:d6:c4:fa:f2:69:9c:a6:ab:65:
b4:50:12:68:3e:dc:ce:5b:ae:2b:24:77:31:c7:88:19:4b:d6:
6a:51:0d:58:70:7e:84:9b:86:b3:b5:d1:81:f0:cb:93:6e:f6:
99:37:d7:ed:4b:88:b1:cd:7a:21:32:b4:bf:f0:29:d5:71:55:
14:8d:48:91:05:f7:7d:1b:cb:dc:f9:09:a5:6e:91:1b:bf:8c:
45:50:44:96:23:2b:b7:57:9b:51:4c:28:27:00:0b:dd:31:6a:
68:7b:3f:96:a5:8e:7b:9e:a6:06:11:88:4a:9a:69:7a:09:49:
b0:62:2b:ac:98:9c:c2:59:b7:22:4a:ae:61:3c:77:5e:9f:f7:
cf:bb:cd:f1:36:87:30:a0:e9:8b:9d:d4:d7:3c:67:9c:6d:85:
d8:4b:51:a0:7d:c8:06:d5:55:7b:73:29:8d:8c:82:68:ff:14:
89:25:08:d6:37:6a:29:da:dd:cd:e4:d1:d0:a3:4b:d3:0d:da:
3d:6d:ab:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04nFzYgbZv2qB/PWXZlcB7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxMjIwODY2ZGE0OGUwYzdjZmZiZThjNzNhMzUxYzJhNDdi
MWE0ZGIwHhcNMjYwMzI5MDgwMTA0WhcNMjYwMzMwMDgwMTA0WjAzMTEwLwYDVQQD
Eyg3NDZiNTllN2YxNzk5OGIyMmYxZTY0MTIyMDc3MDU4ZDBmMTVlY2EzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArKMGh4tKfC22JuxOIZXcwMoPSRX6
rxHcEwHTzyXfvdoZlnWorZJ3SUkgCyOI7gioyqDuYiRGHlY+jkekivVPz/48m6pN
Y1a3vXgJMu7HREEPM+I5KvOF2ZPZp4+9s3MRDquidBUkmrNKd73GsEgVcQvYOc0q
pcOZjS/Agb7QdjzLSpi2xGpwkWhVC9LkdibusPOvpPbpLlb4J0tvhI8edjEu7mia
EfV9/xWhWQtFkPdCDUC1HCSFmV7oyCnqsvFJeyeTyLHl/06NxlofhiGMLBTdZ+J4
XVxjQ7LwZMMZdBwfJ71DltTEs5+vJx5cOBC4oCPA0XPA3IHzjNjHSOhw6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHRrWefxeZiyLx5kEiB3BY0PFeyjMB8GA1UdIwQY
MBaAFNEiCGbaSODHz/voxzo1HCpHsaTbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFNJSVp0cEk0TWZQLS1qSE9qVWNLa2V4cE5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS82MDk1MWUtN2FiNS00NWQ4LTkwMTUt
OTVlY2Q2NzE4ODg3LzEvMFNJSVp0cEk0TWZQLS1qSE9qVWNLa2V4cE5zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS82MDk1MWUtN2FiNS00NWQ4LTkwMTUtOTVlY2Q2NzE4ODg3
LzEvMFNJSVp0cEk0TWZQLS1qSE9qVWNLa2V4cE5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMsisSiq6
CrFDe8NGj4UJ48ImAp8lKlwEhvjwI+GQeRRJii88r/JiFmB6hnzc+14g3iya2lbG
qfMUIHhZImND1sT68mmcpqtltFASaD7czluuKyR3MceIGUvWalENWHB+hJuGs7XR
gfDLk272mTfX7UuIsc16ITK0v/Ap1XFVFI1IkQX3fRvL3PkJpW6RG7+MRVBEliMr
t1ebUUwoJwAL3TFqaHs/lqWOe56mBhGISpppeglJsGIrrJicwlm3IkquYTx3Xp/3
z7vN8TaHMKDpi53U1zxnnG2F2EtRoH3IBtVVe3MpjYyCaP8UiSUI1jdqKdrdzeTR
0KNL0w3aPW2rug==
-----END CERTIFICATE-----
Generated at Sun Mar 29 16:26:21 2026 by rpki-client