Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
File: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft (raw, json)
Hash identifier: 6OMJTovgwPTJfjp+oL9rOYzA7x9w3QOsGdEHxiiYZ0E=
Subject key identifier: D9:50:E1:67:FA:8A:65:9A:73:96:D5:C7:61:E1:BC:5B:A4:89:6A:BB
Authority key identifier: D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
Certificate issuer: /CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Certificate serial: 019E30A94E47556BDFB4DEA778E4A620EB8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
Manifest number: 12D8
Signing time: Sat 16 May 2026 12:01:02 +0000
Manifest this update: Sat 16 May 2026 12:01:02 +0000
Manifest next update: Sun 17 May 2026 12:01:02 +0000
Files and hashes: 1: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl (hash: yAXOrdy9aQi8jNLZNIu6LbS0OLiFp4kCuvh0LgBDrl0=)
2: OgtLPNJMhUcc3a3Q9gVgb_uUcTU.roa (hash: W+gl2jZGWcmgxMC+cnSTgyo7gRfrRZB5RZkp77uUONU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:4e:47:55:6b:df:b4:de:a7:78:e4:a6:20:eb:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Validity
Not Before: May 16 12:01:02 2026 GMT
Not After : May 17 12:01:02 2026 GMT
Subject: CN=d950e167fa8a659a7396d5c761e1bc5ba4896abb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ad:ce:55:0e:eb:20:4b:01:ca:81:2c:6f:dd:
45:85:a0:26:46:39:0f:63:dd:cb:e1:0b:20:4b:ae:
2d:47:50:8d:05:5c:37:55:b1:92:1e:bd:55:09:36:
be:a7:11:e9:ef:8f:5f:83:03:4c:1d:0b:9c:3c:71:
84:87:5b:67:23:36:53:22:90:b2:de:c3:6e:54:69:
84:91:6d:dd:d7:38:43:ed:68:ac:89:8c:88:d8:9c:
e6:c9:e5:e5:f3:42:24:32:77:aa:6d:22:c5:f3:99:
18:7a:03:23:ec:40:65:33:a8:b3:30:a6:08:b3:ce:
09:9b:9c:09:dd:12:11:28:e8:27:b3:0c:13:66:8d:
b9:5a:75:e3:6f:cc:f7:3f:81:cc:a0:fc:11:eb:9b:
a1:f4:e6:81:8e:1b:2e:a2:1a:13:60:3c:47:1c:08:
22:7b:1a:79:5a:cd:76:97:0b:1d:82:45:43:c0:3d:
0a:7e:a8:6f:2c:14:5c:09:02:b7:8b:aa:75:3e:71:
c6:3c:2c:fb:ba:d7:2e:a0:73:1c:ee:d2:64:84:1e:
13:54:32:d5:b1:0f:07:07:54:a6:31:1f:03:ca:df:
db:c1:48:7b:ab:ee:e4:fd:ea:43:8d:c4:05:89:4d:
2b:ee:08:37:91:89:79:c7:3c:0e:39:ad:91:28:e4:
f0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:50:E1:67:FA:8A:65:9A:73:96:D5:C7:61:E1:BC:5B:A4:89:6A:BB
X509v3 Authority Key Identifier:
keyid:D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:f3:16:1e:68:bf:c8:be:ca:fb:d9:87:c6:f7:87:94:1b:79:
86:60:b7:2b:dc:77:56:b1:66:55:30:79:15:81:0a:d1:e8:30:
ae:2a:37:fb:6c:23:f8:d0:13:00:69:37:08:02:88:73:19:0e:
3d:f9:d2:ad:7b:17:b8:36:06:54:e5:e2:5b:96:89:db:75:23:
e6:c1:40:b2:75:6f:d2:5e:0d:83:ac:2c:de:fb:4f:81:e6:f3:
61:4a:45:47:de:5c:79:2a:78:34:cb:f6:0a:b5:37:b2:97:58:
96:f2:05:92:05:b4:08:c5:e8:45:cc:39:ce:7a:8d:b4:9d:ad:
5d:22:12:0a:06:23:ab:a0:ff:70:1d:3a:12:9a:16:25:c4:63:
64:12:1a:26:99:3b:d3:14:9d:3d:19:96:ff:53:d0:5d:cf:02:
db:ab:2b:e8:eb:96:95:95:5f:a2:51:26:c9:24:af:f4:61:d5:
ee:9d:38:fe:35:23:da:ed:d6:02:fc:dd:e3:15:16:1d:d4:99:
e8:90:86:fa:fe:f6:a5:c5:e8:19:bf:70:2e:83:0b:35:ec:dd:
d7:c2:0e:ed:41:1d:d2:37:d2:f3:5c:f4:8f:04:d6:3c:07:0c:
fc:bf:14:dd:ab:c4:91:cc:47:5b:84:48:b2:1a:cf:fd:5e:b0:
eb:36:bf:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:56:01 2026 by rpki-client