Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
File: MHoDlQLUamuZCREM4qsTlod70I4.mft (raw, json)
Hash identifier: Au6cMlSOg51zLAhEMmYak8z9BDjIWX9wVJswNoyEoW4=
Subject key identifier: 6B:C7:DB:1C:7F:36:10:D6:48:CC:EB:29:73:70:E8:D0:FA:59:82:99
Authority key identifier: 30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
Certificate issuer: /CN=307a039502d46a6b9909110ce2ab1396877bd08e
Certificate serial: 019E2A70511607DC5C80292EB19E61199B60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
Manifest number: 0D6C
Signing time: Fri 15 May 2026 07:01:04 +0000
Manifest this update: Fri 15 May 2026 07:01:04 +0000
Manifest next update: Sat 16 May 2026 07:01:04 +0000
Files and hashes: 1: MHoDlQLUamuZCREM4qsTlod70I4.crl (hash: NYKVDUzEjbMX9M84gpZuW99qwOZhVNEkLnIf9xtXDZg=)
2: N_ijFCSvEAh4jcjSazZABa1f9xI.roa (hash: +4BuilcfoCDx9HbGYCFSYCKk2WOaVXp2uqEtuszVVIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:70:51:16:07:dc:5c:80:29:2e:b1:9e:61:19:9b:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307a039502d46a6b9909110ce2ab1396877bd08e
Validity
Not Before: May 15 07:01:04 2026 GMT
Not After : May 16 07:01:04 2026 GMT
Subject: CN=6bc7db1c7f3610d648cceb297370e8d0fa598299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:61:6b:a8:dd:e5:b9:ea:89:3e:95:88:50:ef:
e9:76:f1:d3:d7:c3:ce:ce:5d:b5:4c:0a:b3:f8:c1:
80:c7:e2:d9:32:3f:ef:d2:a5:8f:e0:1a:30:a0:5a:
44:19:56:e5:97:dc:6e:83:07:23:eb:64:fc:92:1b:
ec:03:08:c7:18:70:e2:9b:62:99:8e:2e:36:f8:86:
5e:72:7f:26:57:0c:b5:38:4c:2f:0f:49:9a:16:24:
79:a1:57:de:48:5d:c9:49:71:b3:de:28:d1:71:17:
d9:13:9b:13:cc:14:4f:c4:42:b2:b1:af:dc:d0:15:
07:30:50:97:89:2d:23:27:66:17:65:9f:ba:9d:cf:
b8:2c:f1:ee:cb:4d:4a:51:b4:fb:2d:aa:b8:9e:4a:
51:78:30:8b:9d:bd:9f:48:f2:67:cd:f0:41:2e:70:
0d:43:87:c0:18:0c:42:46:61:8d:f2:29:ce:31:88:
60:40:79:0c:84:ec:b3:96:1d:80:4a:65:20:48:0c:
af:50:f9:3b:21:99:69:85:a4:ca:47:c6:78:e3:93:
b3:58:65:dd:38:70:ff:42:54:a8:f1:63:e0:68:93:
2d:af:59:9e:25:e9:37:5f:5e:b2:34:23:8e:2b:30:
58:ba:b4:b7:5f:74:da:88:25:cb:67:c4:f2:bc:a3:
a9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:C7:DB:1C:7F:36:10:D6:48:CC:EB:29:73:70:E8:D0:FA:59:82:99
X509v3 Authority Key Identifier:
keyid:30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:49:06:4d:df:7f:e2:86:a7:6c:ea:27:0f:74:33:de:c8:4a:
72:8d:ea:c6:e1:d4:6e:28:94:8d:f8:33:01:6f:ad:8e:67:0f:
2c:b5:69:70:37:34:1d:d6:f9:e0:0d:b5:a4:54:85:8b:7a:97:
f6:2c:52:4f:b1:cf:e2:f6:ac:89:7f:90:9d:58:10:c8:e1:3f:
aa:b6:ae:19:d7:4b:08:40:e1:5e:be:25:1a:ed:7a:68:d6:d5:
d7:66:64:33:07:29:b4:dc:36:6b:17:22:4b:3c:88:4a:90:bb:
44:89:25:c9:50:7e:00:6c:97:67:18:d1:3d:bf:fc:74:5a:db:
10:a6:ee:27:c5:1d:8f:90:f4:b8:8f:47:7b:e9:49:86:0f:7c:
76:6e:3e:bd:4a:95:9d:38:54:ec:0c:4e:e4:bc:61:1d:19:2d:
df:82:00:2b:7a:0b:ae:3f:f9:29:0f:7f:1a:4b:5a:a2:b1:9d:
2a:cf:3e:c9:ae:0a:78:5e:0a:40:9e:8e:ac:2c:91:95:ad:17:
ba:b9:cb:0b:45:36:c7:bd:76:0c:02:53:4e:6e:7e:bb:55:90:
b7:10:e1:c0:8d:a6:41:11:c3:78:00:43:27:63:30:fa:55:6f:
48:fe:82:ef:46:51:1d:66:9e:d1:8f:46:ed:b4:d1:1f:c1:0e:
09:8b:c3:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 09:51:25 2026 by rpki-client