Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
File: 0tzocORzw1QnPonF5OLtPgwGk1Y.mft (raw, json)
Hash identifier: gGuqtf/PVC2YcuXWcGACupxsYnu3fBbvuyCxOXrJ9Qc=
Subject key identifier: AD:53:58:F0:52:C8:5F:BE:A4:8B:F8:B7:E4:76:2C:5E:B9:C3:D6:82
Authority key identifier: D2:DC:E8:70:E4:73:C3:54:27:3E:89:C5:E4:E2:ED:3E:0C:06:93:56
Certificate issuer: /CN=d2dce870e473c354273e89c5e4e2ed3e0c069356
Certificate serial: 019E31855273054C0933BC306AE687A40BE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
Manifest number: 0D68
Signing time: Sat 16 May 2026 16:01:21 +0000
Manifest this update: Sat 16 May 2026 16:01:21 +0000
Manifest next update: Sun 17 May 2026 16:01:21 +0000
Files and hashes: 1: 0tzocORzw1QnPonF5OLtPgwGk1Y.crl (hash: MZbKM56JD0dEOM58DUbU6dxV1MoWqVFtwr6IwyAcdwI=)
2: ThzwdKdKn1Xy5a4JKmMojrXgu40.roa (hash: lIi2RxL8LrPV+57y38KO3DW0z4++WwpkT83uTb32e/I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:85:52:73:05:4c:09:33:bc:30:6a:e6:87:a4:0b:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2dce870e473c354273e89c5e4e2ed3e0c069356
Validity
Not Before: May 16 16:01:21 2026 GMT
Not After : May 17 16:01:21 2026 GMT
Subject: CN=ad5358f052c85fbea48bf8b7e4762c5eb9c3d682
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ba:1a:f3:eb:05:98:bf:0d:b4:18:a1:6c:79:
04:28:94:31:d4:59:b7:10:49:e0:58:30:f6:2c:84:
4d:ed:b0:db:02:12:8a:59:85:6d:91:72:46:60:5e:
9d:06:c2:9a:2f:3c:a7:7e:7a:ca:80:04:63:da:40:
60:3d:e4:bb:9a:d5:32:f7:1b:21:a9:be:6c:4c:f5:
bb:8f:b3:94:e8:5a:63:f7:55:95:7d:fe:95:d1:64:
81:9d:1d:f1:6e:28:61:0e:fe:3e:84:1d:7e:6a:5a:
1b:8c:33:63:10:6a:89:e3:b5:3b:77:7d:26:63:71:
a1:c4:04:d0:84:c1:c0:cf:06:7f:70:41:d5:c1:8f:
1a:28:90:b6:e6:74:c7:e0:86:b9:ec:cf:a0:e4:2e:
dc:dd:46:84:0a:46:26:65:fd:2d:14:a1:cb:a2:6c:
1e:c3:1a:cd:7f:21:1c:07:b8:6d:b8:ee:3c:c4:34:
60:aa:69:86:20:f6:05:da:06:24:15:0c:ce:33:16:
91:41:00:75:39:c9:c1:2e:1d:56:c2:8c:86:68:dc:
5a:ba:d5:1b:39:62:7b:75:21:7e:78:8b:be:80:24:
0a:26:fc:5c:79:db:cd:d3:9e:06:d7:cc:45:b4:87:
19:e7:31:8b:9d:e1:5c:19:20:a0:db:a4:7b:5d:aa:
94:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:53:58:F0:52:C8:5F:BE:A4:8B:F8:B7:E4:76:2C:5E:B9:C3:D6:82
X509v3 Authority Key Identifier:
keyid:D2:DC:E8:70:E4:73:C3:54:27:3E:89:C5:E4:E2:ED:3E:0C:06:93:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:9b:30:a0:24:7d:03:43:1c:bf:b8:b6:ad:37:dd:70:81:26:
3c:4a:da:e7:35:1b:ea:19:00:d0:b2:c8:f0:de:81:59:e5:42:
0d:14:8b:33:32:3d:b1:d2:34:16:fc:d5:ba:40:94:ad:ee:16:
3a:be:df:6d:ca:0c:18:b3:54:3c:11:50:90:2f:40:d1:a2:2b:
6b:29:34:28:10:0a:17:65:c0:6c:e0:40:42:9e:78:0c:db:41:
00:f6:5d:e0:4c:d1:b7:b2:59:54:12:4f:c7:96:f4:da:7f:59:
b4:65:83:ab:07:5d:5c:fb:05:56:cc:1b:62:eb:f5:70:bd:c7:
11:ec:53:64:59:75:ae:07:5d:6c:d8:3b:51:05:36:a1:d3:56:
69:73:fe:6a:67:d3:2a:9f:91:16:11:24:6c:be:d0:a3:85:fd:
93:f3:7a:27:a7:ac:69:f0:96:a4:89:e2:32:d4:e4:c4:d6:d4:
7c:f9:77:3b:f7:c2:76:e4:6b:03:c1:cb:72:7a:7c:30:15:32:
e3:72:9b:27:47:f9:2a:99:53:f3:68:81:24:49:59:0d:84:c7:
b4:c3:26:7c:2f:b9:81:57:44:cd:dc:20:41:51:40:ca:a6:38:
e1:d5:b9:44:17:39:50:57:35:ca:9f:87:f7:1d:9f:d7:f0:36:
73:94:53:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4xhVJzBUwJM7wwauaHpAvmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyZGNlODcwZTQ3M2MzNTQyNzNlODljNWU0ZTJlZDNlMGMw
NjkzNTYwHhcNMjYwNTE2MTYwMTIxWhcNMjYwNTE3MTYwMTIxWjAzMTEwLwYDVQQD
EyhhZDUzNThmMDUyYzg1ZmJlYTQ4YmY4YjdlNDc2MmM1ZWI5YzNkNjgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtboa8+sFmL8NtBihbHkEKJQx1Fm3
EEngWDD2LIRN7bDbAhKKWYVtkXJGYF6dBsKaLzynfnrKgARj2kBgPeS7mtUy9xsh
qb5sTPW7j7OU6Fpj91WVff6V0WSBnR3xbihhDv4+hB1+alobjDNjEGqJ47U7d30m
Y3GhxATQhMHAzwZ/cEHVwY8aKJC25nTH4Ia57M+g5C7c3UaECkYmZf0tFKHLomwe
wxrNfyEcB7htuO48xDRgqmmGIPYF2gYkFQzOMxaRQQB1OcnBLh1WwoyGaNxautUb
OWJ7dSF+eIu+gCQKJvxcedvN054G18xFtIcZ5zGLneFcGSCg26R7XaqUywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK1TWPBSyF++pIv4t+R2LF65w9aCMB8GA1UdIwQY
MBaAFNLc6HDkc8NUJz6JxeTi7T4MBpNWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHR6b2NPUnp3MVFuUG9uRjVPTHRQZ3dHazFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi8xMTNmNWYtYmU1OC00NzhjLTkwMzAt
MzJkODBkOGQxNjE1LzEvMHR6b2NPUnp3MVFuUG9uRjVPTHRQZ3dHazFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi8xMTNmNWYtYmU1OC00NzhjLTkwMzAtMzJkODBkOGQxNjE1
LzEvMHR6b2NPUnp3MVFuUG9uRjVPTHRQZ3dHazFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkpswoCR9
A0Mcv7i2rTfdcIEmPEra5zUb6hkA0LLI8N6BWeVCDRSLMzI9sdI0FvzVukCUre4W
Or7fbcoMGLNUPBFQkC9A0aIrayk0KBAKF2XAbOBAQp54DNtBAPZd4EzRt7JZVBJP
x5b02n9ZtGWDqwddXPsFVswbYuv1cL3HEexTZFl1rgddbNg7UQU2odNWaXP+amfT
Kp+RFhEkbL7Qo4X9k/N6J6esafCWpIniMtTkxNbUfPl3O/fCduRrA8HLcnp8MBUy
43KbJ0f5KplT82iBJElZDYTHtMMmfC+5gVdEzdwgQVFAyqY44dW5RBc5UFc1yp+H
9x2f1/A2c5RT3A==
-----END CERTIFICATE-----
Generated at Sat May 16 18:40:19 2026 by rpki-client