Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
File: 0luQuJgbWR11p-k14TBKdAdWAv0.mft (raw, json)
Hash identifier: WQA3wRYCd532VTfelSqIcHwwxg7PRtmrU+6FsbP1KWk=
Subject key identifier: A2:91:95:BF:F2:9B:31:73:94:6E:2F:83:D1:14:D1:3A:A4:AD:59:9B
Authority key identifier: D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
Certificate issuer: /CN=d25b90b8981b591d75a7e935e1304a74075602fd
Certificate serial: 019E30E07960162EB88DB1F3419FB7FFDC12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
Manifest number: 17EA
Signing time: Sat 16 May 2026 13:01:17 +0000
Manifest this update: Sat 16 May 2026 13:01:17 +0000
Manifest next update: Sun 17 May 2026 13:01:17 +0000
Files and hashes: 1: 0luQuJgbWR11p-k14TBKdAdWAv0.crl (hash: dlkgR1I3zbDd6y6rTRxJz21rwwgERHC8nGIM9YAa0bA=)
2: PzBJvCvuKoLcfTByzdz7KrKT9g0.roa (hash: 3oZ6E/qyPFCkNxJX9IOFDQ5m/aqdqH2CkJ/hq3ptHGc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:79:60:16:2e:b8:8d:b1:f3:41:9f:b7:ff:dc:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25b90b8981b591d75a7e935e1304a74075602fd
Validity
Not Before: May 16 13:01:17 2026 GMT
Not After : May 17 13:01:17 2026 GMT
Subject: CN=a29195bff29b3173946e2f83d114d13aa4ad599b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:cb:74:50:80:2d:86:bc:e4:b0:b0:5b:9c:94:
7b:2f:e9:6c:24:94:4a:91:3c:0a:5a:d0:e2:90:a1:
f7:b1:46:2c:60:c0:be:08:84:87:c0:65:fa:61:73:
8e:42:f1:e3:27:dc:2e:45:b5:25:a2:8a:22:28:03:
1e:c2:61:d0:62:d6:29:95:50:78:b8:fc:c5:65:c2:
2c:45:1b:2a:e3:20:96:af:9c:cc:80:7f:cf:8a:9b:
23:1c:3d:03:46:be:93:69:25:f7:5d:3e:f5:97:1b:
cf:b7:10:05:5d:72:00:93:67:a7:d9:63:48:5b:fa:
2d:84:49:b7:f7:e1:06:e4:40:45:9d:52:a8:56:1f:
d5:c7:a1:7d:80:66:e3:72:89:ef:4c:b2:a5:70:a3:
33:2f:22:4d:eb:fd:aa:9d:ad:dd:07:5e:9d:6c:da:
81:76:ef:a0:91:dd:b5:1e:f1:aa:4b:0b:d6:57:59:
c3:c4:d3:4f:9b:bd:76:a5:20:5a:f0:aa:bc:06:6c:
20:27:f3:28:bd:08:98:d2:50:9d:48:23:00:e6:05:
d1:43:7e:b3:dd:26:e5:35:b2:18:ea:c0:a3:b6:79:
4e:89:ef:11:7f:e8:01:b6:c6:13:57:31:06:d7:76:
9b:a1:1b:4e:e6:ae:95:c5:82:9c:1a:29:78:c6:4a:
20:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:91:95:BF:F2:9B:31:73:94:6E:2F:83:D1:14:D1:3A:A4:AD:59:9B
X509v3 Authority Key Identifier:
keyid:D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:a7:6f:9b:68:e4:a5:2f:3c:f0:27:df:fc:9c:6e:f0:bd:75:
37:37:c3:5b:5a:96:7b:76:e1:95:5c:38:c8:36:e6:b0:a2:1d:
2c:45:0b:cd:c5:4b:d6:b2:ae:a0:d8:79:2a:fc:6d:45:8e:16:
f3:3e:b7:33:85:f3:2b:68:77:e0:74:fb:8f:01:52:61:4c:06:
95:31:85:5a:a7:fa:c2:f3:03:a1:41:e3:cd:31:70:01:35:0b:
c2:80:77:66:5b:7d:a9:76:c6:b1:27:b4:37:dd:50:d2:c8:91:
fa:67:8d:59:7e:a7:95:d4:a3:22:81:aa:3b:ea:cc:03:7f:5c:
39:d2:cf:18:cf:1e:cf:0c:b0:e6:73:56:60:a6:46:ae:12:ac:
e0:24:b5:57:5c:df:8e:e1:88:d7:ca:2b:60:03:66:57:7f:8f:
3e:20:87:55:56:d5:7b:e7:62:4c:a7:2c:a0:9b:c5:7c:dd:2c:
3a:53:2a:42:8d:df:fc:fa:62:c1:19:57:f8:63:c0:09:fb:76:
f9:f1:fa:da:4d:02:5d:f8:52:9f:91:10:e9:30:99:47:91:ea:
ea:6a:ee:b7:97:d6:9b:11:38:83:94:30:3d:82:14:60:da:02:
d6:e8:b2:ce:10:68:6d:ec:aa:4d:7a:f9:c7:69:a5:d7:d1:47:
45:66:ed:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4w4HlgFi64jbHzQZ+3/9wSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNWI5MGI4OTgxYjU5MWQ3NWE3ZTkzNWUxMzA0YTc0MDc1
NjAyZmQwHhcNMjYwNTE2MTMwMTE3WhcNMjYwNTE3MTMwMTE3WjAzMTEwLwYDVQQD
EyhhMjkxOTViZmYyOWIzMTczOTQ2ZTJmODNkMTE0ZDEzYWE0YWQ1OTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA28t0UIAthrzksLBbnJR7L+lsJJRK
kTwKWtDikKH3sUYsYMC+CISHwGX6YXOOQvHjJ9wuRbUloooiKAMewmHQYtYplVB4
uPzFZcIsRRsq4yCWr5zMgH/PipsjHD0DRr6TaSX3XT71lxvPtxAFXXIAk2en2WNI
W/othEm39+EG5EBFnVKoVh/Vx6F9gGbjconvTLKlcKMzLyJN6/2qna3dB16dbNqB
du+gkd21HvGqSwvWV1nDxNNPm712pSBa8Kq8BmwgJ/MovQiY0lCdSCMA5gXRQ36z
3SblNbIY6sCjtnlOie8Rf+gBtsYTVzEG13aboRtO5q6VxYKcGil4xkogzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKKRlb/ymzFzlG4vg9EU0TqkrVmbMB8GA1UdIwQY
MBaAFNJbkLiYG1kddafpNeEwSnQHVgL9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8yY2U1MjAtZWMwNy00NWVmLWI1ODct
YTJhYmRhZGY1ZjkwLzEvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS8yY2U1MjAtZWMwNy00NWVmLWI1ODctYTJhYmRhZGY1Zjkw
LzEvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgKdvm2jk
pS888Cff/Jxu8L11NzfDW1qWe3bhlVw4yDbmsKIdLEULzcVL1rKuoNh5KvxtRY4W
8z63M4XzK2h34HT7jwFSYUwGlTGFWqf6wvMDoUHjzTFwATULwoB3Zlt9qXbGsSe0
N91Q0siR+meNWX6nldSjIoGqO+rMA39cOdLPGM8ezwyw5nNWYKZGrhKs4CS1V1zf
juGI18orYANmV3+PPiCHVVbVe+diTKcsoJvFfN0sOlMqQo3f/PpiwRlX+GPACft2
+fH62k0CXfhSn5EQ6TCZR5Hq6mrut5fWmxE4g5QwPYIUYNoC1uiyzhBobeyqTXr5
x2ml19FHRWbtlw==
-----END CERTIFICATE-----
Generated at Sat May 16 15:38:25 2026 by rpki-client