Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
File: 0nuHf4mTQSab7GfG46CoiLp66Y0.mft (raw, json)
Hash identifier: P5Zvxgv3TwM210slvSETvJfdWpglhbRX1f/CHyzT5Sg=
Subject key identifier: 32:35:F3:24:CA:CA:77:FA:65:F5:7F:15:1B:C8:DA:41:77:03:35:E9
Authority key identifier: D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D
Certificate issuer: /CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
Certificate serial: 019CC93F690F2C6530F81C7E530DAE5FA2AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
Manifest number: 0C5B
Signing time: Sat 07 Mar 2026 17:01:41 +0000
Manifest this update: Sat 07 Mar 2026 17:01:41 +0000
Manifest next update: Sun 08 Mar 2026 17:01:41 +0000
Files and hashes: 1: 0nuHf4mTQSab7GfG46CoiLp66Y0.crl (hash: ra5OVrDlAM6VxpbBcnAba/WIaCucK/RHvkliYMf9+6g=)
2: ESKSicApbc_Lc7K1oxfrHyvWB2A.roa (hash: 9hp563pGKax4wS0ioE86wmQq8LK8c0yOcQLKfH9tKgk=)
3: GzzDQC3ubi3zt1X18DBGioGRdBc.roa (hash: D/wNKKfIUY9J0S4B/WgJwAFtRjUwUsHpDQtQvyp4Lvk=)
4: a8xxFezDGCmHsEOSRqb1XFyjzzQ.roa (hash: UKvCG+Ut498aH2KrK/T04+U4clxpUw2ygew8dg+YGZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 10:49:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c9:3f:69:0f:2c:65:30:f8:1c:7e:53:0d:ae:5f:a2:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
Validity
Not Before: Mar 7 17:01:41 2026 GMT
Not After : Mar 8 17:01:41 2026 GMT
Subject: CN=3235f324caca77fa65f57f151bc8da41770335e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2b:62:f1:af:a5:30:72:bb:5e:2b:2e:40:93:
5c:43:b4:a0:78:8a:29:03:d2:68:c0:ff:40:8d:7c:
ce:e8:af:88:97:a0:e4:ce:d7:3d:90:26:6c:4b:20:
a8:34:0c:33:e8:0b:c1:dc:02:0d:ce:c5:2a:7d:2c:
33:b4:fe:d4:5a:ad:d8:03:0e:f7:67:2e:8d:d0:4c:
3c:11:00:50:d2:eb:f9:0e:d3:d1:fd:e5:aa:78:8f:
e3:d1:28:b8:ac:25:37:67:0a:db:bd:7f:cb:2f:74:
40:3c:1e:ab:bc:39:08:69:49:f6:90:a9:59:10:53:
e9:60:b9:f3:71:17:d3:c9:6d:f7:bd:b5:c2:af:2a:
44:a9:e6:64:25:59:db:c2:d5:ae:b7:80:c1:41:a1:
f7:53:dd:91:9d:4d:3a:a4:02:63:cc:e3:dd:2b:41:
cf:8e:d7:99:48:ad:ed:87:7f:db:58:58:64:99:bb:
38:59:6d:99:7a:85:7b:47:18:69:33:df:6b:5a:a9:
49:32:ae:ce:ec:45:56:77:c4:9c:5b:5a:d3:f1:92:
69:52:e8:35:70:ec:ca:e7:3d:52:78:b6:cf:cc:e9:
1f:bc:41:30:7d:9c:0e:33:79:f3:a5:11:7c:63:5b:
f4:8f:0c:05:9f:cb:ae:85:da:e4:fc:8f:c2:ce:e8:
a6:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:35:F3:24:CA:CA:77:FA:65:F5:7F:15:1B:C8:DA:41:77:03:35:E9
X509v3 Authority Key Identifier:
keyid:D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:cc:b1:fe:a3:28:24:9c:3f:db:5a:85:66:fe:02:8e:2a:cb:
5c:3e:d8:a4:67:1e:65:a7:e4:46:c9:d8:62:9f:f3:a9:e6:8c:
4c:81:74:0a:4d:01:4d:92:19:84:f7:32:f3:bd:bd:9c:5d:57:
ae:6d:fd:af:30:1e:a0:65:e7:7a:f6:a3:9d:cb:2c:2a:5c:65:
48:2b:6e:59:2e:15:2f:bd:69:f7:34:30:30:39:14:32:95:cd:
86:a3:38:d6:1a:6e:80:4a:f0:2b:b5:2e:9b:22:06:d8:e2:ba:
4e:6b:9d:75:40:4c:94:84:8d:38:29:d9:fa:17:2f:36:be:55:
c5:b0:88:1a:51:a7:4b:1b:67:47:e1:68:e9:de:64:f1:1e:18:
0a:53:a3:24:f0:e3:86:38:bf:c9:f4:d4:e4:f0:a9:ea:04:8d:
58:57:ec:44:5f:49:6f:a7:26:10:46:98:de:cd:89:83:d6:3e:
c3:4c:a0:31:3a:41:b1:82:d1:c8:a9:0f:08:f4:43:27:3a:66:
56:32:85:de:ae:71:f1:db:f4:ee:42:e6:4e:4d:b7:45:f1:71:
5d:dc:03:da:f0:58:3d:cc:fd:bd:b6:60:d4:36:6f:13:1a:b0:
f3:c0:d1:9a:52:3f:a7:55:96:8f:cb:95:04:72:c8:30:f4:ca:
fd:da:45:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzJP2kPLGUw+Bx+Uw2uX6KvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyN2I4NzdmODk5MzQxMjY5YmVjNjdjNmUzYTBhODg4YmE3
YWU5OGQwHhcNMjYwMzA3MTcwMTQxWhcNMjYwMzA4MTcwMTQxWjAzMTEwLwYDVQQD
EygzMjM1ZjMyNGNhY2E3N2ZhNjVmNTdmMTUxYmM4ZGE0MTc3MDMzNWU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCti8a+lMHK7XisuQJNcQ7SgeIop
A9JowP9AjXzO6K+Il6Dkztc9kCZsSyCoNAwz6AvB3AINzsUqfSwztP7UWq3YAw73
Zy6N0Ew8EQBQ0uv5DtPR/eWqeI/j0Si4rCU3ZwrbvX/LL3RAPB6rvDkIaUn2kKlZ
EFPpYLnzcRfTyW33vbXCrypEqeZkJVnbwtWut4DBQaH3U92RnU06pAJjzOPdK0HP
jteZSK3th3/bWFhkmbs4WW2ZeoV7RxhpM99rWqlJMq7O7EVWd8ScW1rT8ZJpUug1
cOzK5z1SeLbPzOkfvEEwfZwOM3nzpRF8Y1v0jwwFn8uuhdrk/I/CzuimMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDI18yTKynf6ZfV/FRvI2kF3AzXpMB8GA1UdIwQY
MBaAFNJ7h3+Jk0Emm+xnxuOgqIi6eumNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMG51SGY0bVRRU2FiN0dmRzQ2Q29pTHA2NlkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS80NDVlZDAtNDhiMy00MDhlLWExYmMt
OTk3OWRmNTJiMDE4LzEvMG51SGY0bVRRU2FiN0dmRzQ2Q29pTHA2NlkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS80NDVlZDAtNDhiMy00MDhlLWExYmMtOTk3OWRmNTJiMDE4
LzEvMG51SGY0bVRRU2FiN0dmRzQ2Q29pTHA2NlkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADcyx/qMo
JJw/21qFZv4CjirLXD7YpGceZafkRsnYYp/zqeaMTIF0Ck0BTZIZhPcy8729nF1X
rm39rzAeoGXnevajncssKlxlSCtuWS4VL71p9zQwMDkUMpXNhqM41hpugErwK7Uu
myIG2OK6TmuddUBMlISNOCnZ+hcvNr5VxbCIGlGnSxtnR+Fo6d5k8R4YClOjJPDj
hji/yfTU5PCp6gSNWFfsRF9Jb6cmEEaY3s2Jg9Y+w0ygMTpBsYLRyKkPCPRDJzpm
VjKF3q5x8dv07kLmTk23RfFxXdwD2vBYPcz9vbZg1DZvExqw88DRmlI/p1WWj8uV
BHLIMPTK/dpF8A==
-----END CERTIFICATE-----
Generated at Sat Mar 7 20:58:37 2026 by rpki-client