Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
File: 0q5eM4eU5g1di1I72yto7ErHYs4.mft (raw, json)
Hash identifier: A9PXnm/5AH1lzVvAOjz0V01n5waQHysEwnkMOu2BnwY=
Subject key identifier: 0A:DC:E6:1C:28:A9:0B:13:F3:F9:8E:D9:75:DC:D8:80:5D:ED:3D:75
Authority key identifier: D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
Certificate issuer: /CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Certificate serial: 019E314DC1E2EEEE6C4807BBB63E07700075
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
Manifest number: 1912
Signing time: Sat 16 May 2026 15:00:39 +0000
Manifest this update: Sat 16 May 2026 15:00:39 +0000
Manifest next update: Sun 17 May 2026 15:00:39 +0000
Files and hashes: 1: 0jE3hZkv3e72FXBQNOB1Z87I7hE.roa (hash: ufiFlOn3uZQmY7BK2PstScG7xVreKj7F3Ayx+q4ondk=)
2: 0q5eM4eU5g1di1I72yto7ErHYs4.crl (hash: 6DiBHXmmGUwYoDccrrejdLH6Dqq2MB+KVhFDcclRTig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:4d:c1:e2:ee:ee:6c:48:07:bb:b6:3e:07:70:00:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Validity
Not Before: May 16 15:00:39 2026 GMT
Not After : May 17 15:00:39 2026 GMT
Subject: CN=0adce61c28a90b13f3f98ed975dcd8805ded3d75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b1:69:7f:12:e8:f2:ec:9f:62:93:6f:b3:a9:
28:0d:28:9e:9e:c0:95:4f:5b:56:14:38:70:a5:17:
f3:df:80:86:b0:45:23:b0:00:92:1e:99:4d:47:02:
8c:a6:e3:15:93:96:65:f6:87:54:b8:d9:9a:65:f9:
45:3c:8c:98:b2:4f:be:d2:3d:ca:7c:98:10:87:48:
ea:c3:6b:09:f3:b5:b8:2d:ba:54:24:4c:7a:b6:c0:
4a:32:91:2b:52:ef:20:45:24:7e:c1:30:eb:3d:6e:
b4:08:25:c0:d1:43:9a:d8:06:81:44:0e:7d:01:bf:
23:63:4d:3f:68:db:9c:86:fd:ec:60:41:0c:0b:9e:
c1:fa:09:c4:1f:22:7b:27:15:d0:f7:60:81:1e:0c:
a2:47:dc:e8:13:dd:71:64:d2:c5:98:ff:9f:24:17:
d4:58:7f:f3:a7:13:4f:c8:7d:df:cc:55:a6:de:33:
7f:81:ad:11:4d:71:e8:6e:94:f3:62:c4:e0:2f:2d:
dd:f5:fc:e6:bd:fe:b2:6f:1e:79:5c:92:0c:f2:c2:
87:2f:f4:b8:5f:fd:40:8b:d1:d3:27:d2:af:84:3d:
c0:e4:f8:a1:b4:37:fd:ff:6e:0d:92:1e:cc:aa:50:
f8:59:8b:de:98:f5:19:a4:43:2e:a2:58:50:26:a7:
41:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:DC:E6:1C:28:A9:0B:13:F3:F9:8E:D9:75:DC:D8:80:5D:ED:3D:75
X509v3 Authority Key Identifier:
keyid:D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:87:46:3d:6a:c7:35:04:88:8a:6c:1c:cc:8a:4a:c6:08:c7:
1f:ce:88:9e:ca:a7:c7:78:1f:54:14:87:61:f2:eb:ab:d9:f8:
70:43:d4:1b:46:b1:67:1a:60:58:d9:8f:88:b2:e9:6c:d1:87:
a4:d1:21:4d:4b:52:cf:c3:ad:52:28:32:a2:bc:c3:35:4b:99:
02:67:0d:c9:16:45:16:3a:22:ac:86:6a:0f:a7:45:03:21:e7:
4d:c7:3c:b7:fa:77:e1:f7:d8:f7:cc:e4:0b:c1:de:30:47:e5:
30:74:7f:24:3c:f8:ec:d8:69:1c:4e:de:f2:8f:40:52:92:6f:
49:dc:61:de:6b:af:0d:20:fe:79:bd:77:f9:55:3a:99:9e:0e:
bc:52:ec:c0:42:05:4b:83:fb:58:60:06:99:72:b1:8f:74:71:
cc:2d:e0:a8:b2:71:10:f7:a5:b5:a2:6d:f1:f7:b5:a6:8b:c1:
5a:66:60:c2:43:cc:27:a5:e0:d1:8f:b6:2f:3f:71:02:91:b0:
99:f7:9b:c1:ed:bc:fc:bd:ea:71:cb:4b:16:0f:39:9f:b4:a3:
99:1d:68:1b:24:0f:28:f4:0d:38:ca:ef:3a:48:33:8f:b3:28:
bb:26:9e:56:be:e1:e8:55:3c:f1:0f:cf:92:56:37:a9:95:bb:
ee:ea:36:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 19:29:32 2026 by rpki-client