Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
File: 0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft (raw, json)
Hash identifier: eAau7tuSUaDGe82B2/NjmDQTeUjyATPEqc831QlEAxQ=
Subject key identifier: 55:11:58:DA:37:32:BB:C9:C2:3C:EA:D2:CD:58:8E:B1:A1:44:93:32
Authority key identifier: D2:43:22:B2:D0:A7:94:FD:07:6B:85:E8:DC:57:8A:BB:0D:03:EC:40
Certificate issuer: /CN=d24322b2d0a794fd076b85e8dc578abb0d03ec40
Certificate serial: 019E30A99153C43444C479BB9528DF72FF46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
Manifest number: 08A5
Signing time: Sat 16 May 2026 12:01:19 +0000
Manifest this update: Sat 16 May 2026 12:01:19 +0000
Manifest next update: Sun 17 May 2026 12:01:19 +0000
Files and hashes: 1: 0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl (hash: 0qgMDJ3qt8d7e1nxoSOBGkxBX5U307TFsbFZk4hcjZE=)
2: 5pjm21HKetM46w6qM9uy-i6WybY.roa (hash: 3eNVlKLJuRP0y0hZciHBdm9TPYgKCSF9C2o8FyAPzb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:91:53:c4:34:44:c4:79:bb:95:28:df:72:ff:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24322b2d0a794fd076b85e8dc578abb0d03ec40
Validity
Not Before: May 16 12:01:19 2026 GMT
Not After : May 17 12:01:19 2026 GMT
Subject: CN=551158da3732bbc9c23cead2cd588eb1a1449332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:98:43:04:d6:08:99:0e:0b:72:e5:1b:6b:37:
e9:94:cd:08:57:d2:5a:7a:46:3b:fd:a8:c3:40:8c:
75:c1:c1:ae:f0:30:e0:f0:02:3e:1d:0e:f1:45:53:
35:cf:26:da:cf:38:47:dc:69:26:cb:17:78:78:9f:
a2:e7:5d:cf:6e:a0:14:8f:98:a2:5b:4d:73:7f:2e:
77:89:15:9d:de:bd:e7:4e:ca:62:ce:6c:10:7b:70:
ec:93:a4:ed:b6:f5:58:57:27:c7:6a:80:58:29:22:
76:ff:57:35:aa:31:09:d6:15:4f:fd:17:21:2d:be:
2f:cd:3c:1a:75:10:3c:77:6a:c6:7a:b6:ff:c0:fa:
88:1c:a1:1d:95:4c:96:3b:5c:a7:6a:78:30:99:d3:
44:78:31:e5:b6:71:58:a2:c9:d6:11:ef:f4:62:de:
9c:89:27:f8:a3:92:a9:ab:42:77:3c:05:4a:36:1d:
e3:22:e5:bc:8b:a1:43:ec:ac:7d:da:7b:07:5c:3e:
90:68:1f:e9:e8:5c:8c:a3:c6:89:48:f6:5a:52:e1:
2e:c2:8d:bb:08:cb:98:42:a7:74:30:62:55:87:58:
48:92:f5:2f:59:df:8e:43:43:33:e6:0b:3b:0f:b8:
56:2c:c4:96:03:03:c0:71:d5:03:58:45:4d:25:e7:
a1:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:11:58:DA:37:32:BB:C9:C2:3C:EA:D2:CD:58:8E:B1:A1:44:93:32
X509v3 Authority Key Identifier:
keyid:D2:43:22:B2:D0:A7:94:FD:07:6B:85:E8:DC:57:8A:BB:0D:03:EC:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:ac:b0:34:70:06:f8:ab:34:db:92:f5:0c:94:8e:78:21:0c:
d7:fd:a4:bc:04:06:ae:87:19:f0:7f:45:ea:08:60:9b:3d:c6:
66:fb:e3:73:9e:33:56:b5:9b:8a:63:c7:57:95:c8:6e:d4:8f:
7c:ea:37:21:51:cf:d9:da:96:57:d5:2c:2f:e8:dc:b8:79:0f:
bd:ee:38:4c:5c:06:7c:76:4d:d6:de:15:a8:30:c2:02:6e:b0:
a8:98:43:f7:97:e5:5a:4c:ee:4a:c6:62:90:02:6e:16:10:a1:
c2:f4:a6:ea:25:e1:9d:3d:41:72:e8:db:f1:75:54:90:4d:bb:
7b:0a:15:57:82:58:6e:de:98:ff:68:71:bf:85:5f:50:5e:24:
6a:7a:5d:5c:1c:1d:a3:d3:20:65:7b:24:e3:24:6b:21:ab:02:
16:76:b2:d8:8e:61:6a:ad:cf:6d:ef:ff:70:cc:ae:d5:f7:c3:
93:2b:e4:77:c3:94:9e:55:9f:19:a0:18:16:32:4c:06:b6:37:
05:14:5e:6b:ab:44:a4:43:6d:fa:2e:e6:48:50:92:3b:28:09:
66:38:e3:7b:fd:02:69:76:d7:78:f3:53:6f:a3:2c:00:d9:11:
09:94:c5:8c:e9:31:cd:4f:7f:d0:37:2e:37:a7:c0:62:52:f0:
0c:7a:31:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:39:35 2026 by rpki-client