Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
File: 0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft (raw, json)
Hash identifier: VvAgLC4n71P/V3v6WQ4jg8vwdto2bKWyXc5NxrUv5eM=
Subject key identifier: 2A:63:46:22:F4:18:E9:E8:CF:56:9A:06:7B:51:EC:79:83:EC:BE:98
Authority key identifier: D0:48:50:F8:06:9D:F6:2D:C5:15:5C:02:ED:1E:62:BF:51:CE:DB:C8
Certificate issuer: /CN=d04850f8069df62dc5155c02ed1e62bf51cedbc8
Certificate serial: 019E30E0595731AB73074DA7F45FAD3A3070
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
Manifest number: 0595
Signing time: Sat 16 May 2026 13:01:09 +0000
Manifest this update: Sat 16 May 2026 13:01:09 +0000
Manifest next update: Sun 17 May 2026 13:01:09 +0000
Files and hashes: 1: 0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl (hash: cEwnCT4alXullqG8VrA9cjHqGgoeamUWdLD/nWK2KFQ=)
2: v795sY2U8jhvRzL8MVmYlvFz9_s.roa (hash: Hn47sYXDYoB/4A+t0th2lMVq06CbmCPSmHDsJlsUcW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:59:57:31:ab:73:07:4d:a7:f4:5f:ad:3a:30:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04850f8069df62dc5155c02ed1e62bf51cedbc8
Validity
Not Before: May 16 13:01:09 2026 GMT
Not After : May 17 13:01:09 2026 GMT
Subject: CN=2a634622f418e9e8cf569a067b51ec7983ecbe98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:0e:ff:91:b6:93:bb:a0:e9:01:7e:07:2b:e1:
d3:28:04:b9:81:ff:8e:3e:66:73:6c:fc:3d:6b:37:
9e:c1:42:92:71:2a:f6:f7:fc:01:1e:b5:ca:9f:c0:
f0:ac:a4:70:16:d6:9d:63:d7:86:34:1b:56:ae:cd:
8b:34:db:02:1f:b7:ea:7b:9b:d7:c2:af:04:16:63:
af:42:2b:7f:f1:34:09:71:f6:5d:f5:2f:df:7d:59:
f6:25:e0:ed:ae:f3:03:04:bd:60:33:0c:78:53:9d:
28:71:38:df:5f:f9:bf:60:e8:0f:3c:a0:6f:6f:c5:
b6:02:9c:90:7c:0b:3a:a1:28:3a:ad:ed:38:87:a5:
b8:95:dc:eb:7d:eb:60:b9:9f:2b:de:49:d4:7f:9c:
6a:10:81:1b:da:69:65:bf:68:96:57:57:5d:d0:ab:
e2:0a:35:c7:ba:3e:96:84:2d:3d:e5:21:d8:ab:23:
30:27:3f:93:f7:4f:40:eb:05:f6:3d:d8:77:67:e7:
c9:70:0d:88:3a:a8:19:ca:7d:9b:fb:63:16:72:65:
60:1c:e3:a2:a2:66:78:06:4c:da:2a:97:1b:5e:75:
23:94:e0:dd:89:28:d2:85:ea:0f:dc:50:cc:c1:24:
d8:34:fa:3e:d4:83:b7:bf:b0:d4:b1:c0:c7:01:2d:
e2:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:63:46:22:F4:18:E9:E8:CF:56:9A:06:7B:51:EC:79:83:EC:BE:98
X509v3 Authority Key Identifier:
keyid:D0:48:50:F8:06:9D:F6:2D:C5:15:5C:02:ED:1E:62:BF:51:CE:DB:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:19:0e:45:4e:17:8b:48:20:79:a7:3b:e9:f3:da:96:8b:cb:
15:e6:ea:49:54:c5:aa:5c:52:cd:b6:e1:f1:bc:a5:4b:6e:ee:
42:a2:cd:a0:76:81:ef:a0:a5:9a:ee:b0:9e:2a:ba:f7:87:92:
d9:59:47:c1:1f:61:87:c1:fc:1d:a7:df:9b:12:bb:62:a9:67:
44:f5:89:05:e3:81:cc:67:a8:75:6d:4f:12:bb:9b:79:3b:fb:
e1:34:dc:42:72:ae:fb:ed:91:06:3d:36:d1:71:36:41:b1:06:
3b:8c:72:81:c9:7e:6d:4e:a5:21:19:f8:b2:b6:7a:33:d8:93:
54:20:7a:a9:0b:63:85:f1:a5:a4:b9:1c:8d:fc:87:d7:88:1d:
65:fd:eb:a9:11:7f:d4:83:22:ad:cb:90:c3:2d:13:4c:cd:02:
52:04:38:e5:d1:7d:b8:d1:e4:f7:30:78:91:dc:34:02:be:92:
35:17:59:d2:90:ee:a8:b7:27:97:9e:68:d9:d3:de:86:5f:e2:
d9:e9:52:a1:41:f8:50:d0:08:86:af:8d:4e:88:54:9b:1b:4b:
a0:71:be:96:b5:11:28:fc:63:bf:49:bf:80:ce:3d:5f:f8:01:
db:1c:77:cb:63:90:e1:10:4c:1d:80:c9:ab:81:46:13:48:f5:
62:d4:9c:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:27 2026 by rpki-client