Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
File: 0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft (raw, json)
Hash identifier: H85v5IgAULJ0iRmdpfkVc3YRkLH8RwyRvwkp1nmI8p8=
Subject key identifier: 1F:09:4B:DD:7C:80:1F:E2:B7:50:60:08:C4:41:7D:24:85:CD:2B:81
Authority key identifier: D0:EE:03:89:68:7D:BD:44:5D:E6:F9:23:9C:1D:02:C3:77:0C:F5:74
Certificate issuer: /CN=d0ee0389687dbd445de6f9239c1d02c3770cf574
Certificate serial: 019E2D0439D6311061919A6B362FAEF91972
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
Manifest number: 190F
Signing time: Fri 15 May 2026 19:01:52 +0000
Manifest this update: Fri 15 May 2026 19:01:52 +0000
Manifest next update: Sat 16 May 2026 19:01:52 +0000
Files and hashes: 1: 0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl (hash: Wxg6zyWOmO4Fyph+gUh+y26EeNaaHduJ1dRCMWn6p90=)
2: ufg8Cy-npLiG4EP7oeE-jAY168k.roa (hash: mWJPH552eZGzUsrCNb54v4U4ffZaIGFDBWjHB1EftzA=)
3: ut5dpGeCvxjJRpLmR_ipxil5ZUA.roa (hash: PaeXiU3oIApbKxkYqCqS8/5Z6kGo2lJVdWVbX8L9K5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2d:04:39:d6:31:10:61:91:9a:6b:36:2f:ae:f9:19:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0ee0389687dbd445de6f9239c1d02c3770cf574
Validity
Not Before: May 15 19:01:52 2026 GMT
Not After : May 16 19:01:52 2026 GMT
Subject: CN=1f094bdd7c801fe2b7506008c4417d2485cd2b81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d9:1d:2c:e3:7c:81:99:57:e3:2e:d9:a6:86:
0c:49:fd:23:e7:f6:77:2e:d8:d2:21:da:4c:d9:be:
f7:57:d3:9b:97:88:96:e0:76:c3:3e:ad:ce:6f:7e:
23:9a:93:e3:fa:98:d0:27:ab:18:9f:ea:8e:a1:45:
77:77:af:32:a2:4a:91:5f:5c:60:0c:4d:f5:da:a4:
61:6e:19:bd:45:95:61:9d:96:46:05:bb:e1:98:a7:
72:f9:67:b7:ac:6f:c7:bb:47:9d:4f:b0:db:13:f8:
38:e6:3b:c6:c0:95:0e:e7:f3:7d:ed:fd:b8:7e:9b:
b9:2b:4a:e4:94:0f:be:b5:8d:d0:f8:29:f7:75:a1:
b6:84:76:f2:69:a6:f4:cb:b9:b1:cc:9c:75:51:37:
a8:eb:98:e0:db:eb:0f:44:fa:98:5a:be:0c:e3:50:
58:bd:21:2b:39:61:d1:f7:5c:9f:a3:89:38:33:0f:
52:5a:11:8c:36:15:cd:65:36:34:98:44:90:54:04:
a9:33:c8:96:1f:75:f9:d6:d8:8f:d8:71:50:03:37:
e8:0e:7a:17:10:a7:dc:4e:83:f3:be:92:de:db:da:
5d:2a:34:7b:45:52:0d:60:b1:07:00:c7:3f:35:25:
1c:b6:81:0f:51:f2:4c:2c:3d:cf:08:bd:72:47:c6:
cb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:09:4B:DD:7C:80:1F:E2:B7:50:60:08:C4:41:7D:24:85:CD:2B:81
X509v3 Authority Key Identifier:
keyid:D0:EE:03:89:68:7D:BD:44:5D:E6:F9:23:9C:1D:02:C3:77:0C:F5:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:41:49:f4:7e:28:04:a5:46:be:89:2c:ed:db:f9:1c:8a:47:
59:b6:86:8b:64:cd:56:14:5b:1e:90:27:f3:22:18:bb:5f:0b:
6f:2e:92:8a:2a:1e:a8:c1:43:d2:55:a0:7b:03:7f:91:ad:0b:
e6:5d:8e:67:4e:70:f3:ea:56:27:e3:11:56:8a:5e:ad:ed:6c:
59:28:1c:65:20:2f:56:78:b9:39:58:1d:25:4f:2d:f9:fc:75:
1e:4f:21:9f:a3:87:dc:b1:b9:f7:e4:45:3d:f1:db:62:6e:a2:
9e:5b:4d:2e:02:72:cd:38:98:22:bb:85:2d:6d:bd:d8:f1:f7:
52:c7:ef:5e:a4:1c:dc:d8:8d:cd:5d:51:52:3e:ab:56:26:d5:
a2:83:d6:47:6d:ce:69:15:74:e9:5c:a4:22:c9:5d:e3:18:8c:
8c:1f:7c:26:99:21:37:be:13:d9:a3:85:e2:a2:82:5e:b2:02:
53:a6:f1:c6:2b:78:40:18:67:f9:c2:3e:56:0e:49:66:83:29:
b2:64:76:b0:43:5c:5a:8a:07:bc:21:9d:11:d2:d4:2e:60:f4:
68:b1:45:fb:d0:5b:48:7e:d2:d0:d5:93:6f:36:19:9c:6b:15:
4d:5c:96:35:e8:25:41:e2:ab:d0:46:8d:2e:b0:bb:d0:01:f8:
ac:2f:3f:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 21:08:49 2026 by rpki-client