Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
File: 0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft (raw, json)
Hash identifier: WgRStCIYWen0YbTL7XwsDzDeZf/t2xFnGTi3lWSH+sU=
Subject key identifier: B4:22:6B:4E:53:77:9B:AB:C3:4A:DF:DE:31:A8:64:E0:17:44:3E:21
Authority key identifier: D0:48:50:F8:06:9D:F6:2D:C5:15:5C:02:ED:1E:62:BF:51:CE:DB:C8
Certificate issuer: /CN=d04850f8069df62dc5155c02ed1e62bf51cedbc8
Certificate serial: 019D39AF65E1B1EEB5E4A8A0355B10814DE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
Manifest number: 0515
Signing time: Sun 29 Mar 2026 13:01:29 +0000
Manifest this update: Sun 29 Mar 2026 13:01:29 +0000
Manifest next update: Mon 30 Mar 2026 13:01:29 +0000
Files and hashes: 1: 0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl (hash: U5xtDe/xp0nSBWYUyDJtacxgDxqDvNk333GPNYbce3w=)
2: v795sY2U8jhvRzL8MVmYlvFz9_s.roa (hash: Hn47sYXDYoB/4A+t0th2lMVq06CbmCPSmHDsJlsUcW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:65:e1:b1:ee:b5:e4:a8:a0:35:5b:10:81:4d:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04850f8069df62dc5155c02ed1e62bf51cedbc8
Validity
Not Before: Mar 29 13:01:29 2026 GMT
Not After : Mar 30 13:01:29 2026 GMT
Subject: CN=b4226b4e53779babc34adfde31a864e017443e21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:49:40:f9:11:11:92:bc:12:7a:61:e2:90:b5:
ba:3f:be:0c:51:d7:a5:52:7d:42:69:fd:09:0b:c3:
79:c7:f5:7b:c0:7c:cb:7e:60:26:9d:5d:b2:36:d6:
be:f2:38:a1:71:1b:84:fc:fa:2d:0d:fd:34:2a:e5:
f0:c4:66:fd:3e:ef:13:8b:aa:a5:fb:98:15:a9:fc:
e8:44:dd:5a:14:0c:8b:ac:60:89:7e:99:38:04:fc:
e6:1a:b2:5c:31:44:7e:17:10:2b:3f:32:a6:73:f4:
02:b5:33:d4:f8:2e:06:32:4c:89:e6:f0:4a:6c:d5:
b4:77:8b:69:76:58:b8:ee:af:50:57:17:a8:95:f4:
e5:ca:5b:40:29:59:a4:8c:7a:be:9d:65:9d:ec:b1:
10:7e:7f:14:51:6e:53:36:0e:23:a4:b3:dc:26:27:
8a:26:95:d0:52:a3:08:11:fa:d6:56:07:dc:c1:bc:
09:34:ad:33:19:74:19:ef:c9:75:23:e6:fe:f5:35:
ce:de:f6:69:d9:4b:4f:05:7e:d1:46:e9:16:e4:76:
ef:e6:1a:25:05:4a:23:d2:ff:a5:80:c5:80:bc:2c:
2a:4d:36:90:3f:65:25:3c:fa:43:78:58:48:25:1b:
80:9f:6c:2c:61:97:35:00:0a:70:fc:b7:95:c4:7d:
dc:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:22:6B:4E:53:77:9B:AB:C3:4A:DF:DE:31:A8:64:E0:17:44:3E:21
X509v3 Authority Key Identifier:
keyid:D0:48:50:F8:06:9D:F6:2D:C5:15:5C:02:ED:1E:62:BF:51:CE:DB:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:c6:d2:cc:1e:31:e5:19:a0:5f:ac:bb:3b:7e:a5:59:bd:98:
c6:0f:34:9f:21:5a:70:4f:ea:fe:fe:2b:ee:97:9b:12:11:5f:
bd:d6:9d:44:1b:71:db:1a:91:dd:e5:27:48:1f:7f:24:11:5c:
27:34:59:75:2f:19:b7:cb:16:25:26:e9:34:d6:3a:6f:9d:4a:
6b:06:dd:43:7d:f8:14:51:ca:2f:ed:91:c6:81:3c:6c:81:78:
0a:7c:9d:0e:24:83:95:ba:c6:6c:67:6e:7b:28:e9:88:f3:66:
cf:f8:e9:93:cd:e2:a5:1e:aa:dc:5f:c3:5f:4a:d6:8b:d1:96:
00:71:5b:d9:eb:a2:ee:68:14:1c:af:87:ef:ae:fd:85:1f:66:
e6:32:5a:54:a3:ae:cb:7e:65:47:f0:df:c3:c4:5b:26:ef:b7:
55:68:c2:db:fa:0c:00:68:61:c6:80:72:b0:99:44:fd:7b:84:
04:12:75:89:4b:8d:02:60:4e:4a:3f:29:28:51:bf:fc:ff:c2:
30:fc:a1:15:80:39:e9:f5:ad:07:7d:e9:dc:63:50:dc:bd:8b:
f5:6f:3e:85:44:56:39:b0:d0:e9:c7:69:63:6d:fe:76:87:62:
aa:63:75:8f:92:37:cb:e5:19:58:c1:dc:8b:43:34:38:93:c8:
ee:38:84:ce
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05r2Xhse615KigNVsQgU3hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwNDg1MGY4MDY5ZGY2MmRjNTE1NWMwMmVkMWU2MmJmNTFj
ZWRiYzgwHhcNMjYwMzI5MTMwMTI5WhcNMjYwMzMwMTMwMTI5WjAzMTEwLwYDVQQD
EyhiNDIyNmI0ZTUzNzc5YmFiYzM0YWRmZGUzMWE4NjRlMDE3NDQzZTIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjklA+RERkrwSemHikLW6P74MUdel
Un1Caf0JC8N5x/V7wHzLfmAmnV2yNta+8jihcRuE/PotDf00KuXwxGb9Pu8Ti6ql
+5gVqfzoRN1aFAyLrGCJfpk4BPzmGrJcMUR+FxArPzKmc/QCtTPU+C4GMkyJ5vBK
bNW0d4tpdli47q9QVxeolfTlyltAKVmkjHq+nWWd7LEQfn8UUW5TNg4jpLPcJieK
JpXQUqMIEfrWVgfcwbwJNK0zGXQZ78l1I+b+9TXO3vZp2UtPBX7RRukW5Hbv5hol
BUoj0v+lgMWAvCwqTTaQP2UlPPpDeFhIJRuAn2wsYZc1AApw/LeVxH3c7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLQia05Td5urw0rf3jGoZOAXRD4hMB8GA1UdIwQY
MBaAFNBIUPgGnfYtxRVcAu0eYr9RztvIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEVoUS1BYWQ5aTNGRlZ3QzdSNWl2MUhPMjhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9kMDk3ZDMtZDRiYS00MTMwLThlOTYt
YWQ5NWViZmFhYWUyLzEvMEVoUS1BYWQ5aTNGRlZ3QzdSNWl2MUhPMjhnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9kMDk3ZDMtZDRiYS00MTMwLThlOTYtYWQ5NWViZmFhYWUy
LzEvMEVoUS1BYWQ5aTNGRlZ3QzdSNWl2MUhPMjhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe8bSzB4x
5RmgX6y7O36lWb2Yxg80nyFacE/q/v4r7pebEhFfvdadRBtx2xqR3eUnSB9/JBFc
JzRZdS8Zt8sWJSbpNNY6b51KawbdQ334FFHKL+2RxoE8bIF4CnydDiSDlbrGbGdu
eyjpiPNmz/jpk83ipR6q3F/DX0rWi9GWAHFb2eui7mgUHK+H7679hR9m5jJaVKOu
y35lR/Dfw8RbJu+3VWjC2/oMAGhhxoBysJlE/XuEBBJ1iUuNAmBOSj8pKFG//P/C
MPyhFYA56fWtB33p3GNQ3L2L9W8+hURWObDQ6cdpY23+dodiqmN1j5I3y+UZWMHc
i0M0OJPI7jiEzg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:59:56 2026 by rpki-client