Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
File: 0nuHf4mTQSab7GfG46CoiLp66Y0.mft (raw, json)
Hash identifier: uLtjVTHiO6Azs93jcuqRbFVJkQ5jkIxmf5VWiZQPLhY=
Subject key identifier: 32:14:08:47:E9:52:2E:2F:EA:97:6E:80:E3:6B:F6:CF:BD:96:FB:1F
Authority key identifier: D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D
Certificate issuer: /CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
Certificate serial: 019E9C9795AFEAD501106C46D85AAF32A8AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
Manifest number: 0D4D
Signing time: Sat 06 Jun 2026 11:00:40 +0000
Manifest this update: Sat 06 Jun 2026 11:00:40 +0000
Manifest next update: Sun 07 Jun 2026 11:00:40 +0000
Files and hashes: 1: 0nuHf4mTQSab7GfG46CoiLp66Y0.crl (hash: FUuGkGMoe+uxU2bMd9UDFMI76RrEz1quDujcaLZA+5w=)
2: ESKSicApbc_Lc7K1oxfrHyvWB2A.roa (hash: 9hp563pGKax4wS0ioE86wmQq8LK8c0yOcQLKfH9tKgk=)
3: GzzDQC3ubi3zt1X18DBGioGRdBc.roa (hash: D/wNKKfIUY9J0S4B/WgJwAFtRjUwUsHpDQtQvyp4Lvk=)
4: a8xxFezDGCmHsEOSRqb1XFyjzzQ.roa (hash: UKvCG+Ut498aH2KrK/T04+U4clxpUw2ygew8dg+YGZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9c:97:95:af:ea:d5:01:10:6c:46:d8:5a:af:32:a8:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
Validity
Not Before: Jun 6 11:00:40 2026 GMT
Not After : Jun 7 11:00:40 2026 GMT
Subject: CN=32140847e9522e2fea976e80e36bf6cfbd96fb1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:af:0d:de:9d:60:9b:be:52:67:62:05:6c:54:
ad:0a:69:05:e3:9f:8d:54:d4:46:fc:9f:04:49:f1:
a5:81:fd:2f:23:84:19:c6:8f:6b:67:3c:f8:af:b7:
12:88:83:97:93:4d:33:c3:90:6b:6e:49:5a:8f:de:
ef:5e:22:11:d3:8f:06:87:df:88:75:ef:aa:b1:f5:
f5:73:c8:f2:df:90:32:69:7b:72:dc:88:a6:c7:68:
87:6d:e3:fd:c0:73:db:ad:d3:96:d3:4c:27:78:3d:
50:8e:fb:75:e2:e2:3e:e3:4a:19:4d:a3:1d:4e:20:
77:0e:35:29:ec:2a:f6:ca:91:44:93:ed:68:ac:39:
ea:b7:c6:d2:01:a1:b9:7c:a2:2d:80:7f:8f:b0:1b:
dc:63:1f:0a:83:af:46:60:3b:8a:36:17:a9:9e:5c:
31:b5:cf:d3:05:c7:bb:a3:b7:0f:ec:a8:a9:a5:6a:
65:7d:0c:13:b6:bd:58:8b:40:e0:04:f5:df:89:ee:
5a:6b:d1:12:72:85:46:28:86:fb:2d:45:00:f2:e3:
7d:70:3d:02:31:98:3f:f9:54:3f:3c:bc:eb:d1:2f:
6e:8d:da:95:66:9b:fb:8f:c6:ed:d8:c4:f7:aa:8f:
5e:32:a2:92:c6:a4:43:9c:e2:21:cd:29:0d:29:52:
da:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:14:08:47:E9:52:2E:2F:EA:97:6E:80:E3:6B:F6:CF:BD:96:FB:1F
X509v3 Authority Key Identifier:
keyid:D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:1a:c9:50:28:43:f8:55:50:86:e0:6e:76:d2:7d:0f:1d:b3:
c2:44:9e:61:a8:00:1f:76:cd:ac:74:46:b4:1a:9b:61:5d:96:
48:7f:7d:56:63:7c:b1:f9:19:ce:d2:c8:74:9a:16:9d:ab:0e:
d1:55:01:a4:cc:6d:53:f0:11:55:f9:13:f4:eb:6b:53:ab:fd:
0b:16:6d:ef:f3:07:60:25:2d:c8:95:14:4f:26:65:0b:c6:82:
aa:2f:0b:f5:f1:38:85:07:33:3e:86:ba:a1:80:3f:6f:7b:90:
12:6b:0b:a0:df:5d:d2:44:3b:d2:b1:81:07:02:af:47:63:b0:
43:72:61:de:6e:ad:b9:aa:63:01:3d:23:cc:e3:0e:d3:99:ed:
4b:00:71:eb:f1:cb:c4:77:4e:c1:31:b4:76:01:47:fd:41:df:
fd:f7:7f:dd:4f:e9:8c:be:b4:e3:97:be:21:f1:d2:89:29:db:
b3:f9:35:57:f6:31:e1:8a:0d:fe:2d:40:3a:17:f6:a9:79:ef:
2b:78:57:d9:b7:46:66:0f:e6:ce:2a:66:de:01:17:fe:71:03:
33:5e:b2:00:75:ab:5a:49:dd:59:ff:0f:cc:88:e5:2d:93:5f:
61:fe:09:11:a6:81:f8:44:c1:42:e4:28:17:8d:13:26:ed:f4:
f7:50:be:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6cl5Wv6tUBEGxG2FqvMqivMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyN2I4NzdmODk5MzQxMjY5YmVjNjdjNmUzYTBhODg4YmE3
YWU5OGQwHhcNMjYwNjA2MTEwMDQwWhcNMjYwNjA3MTEwMDQwWjAzMTEwLwYDVQQD
EygzMjE0MDg0N2U5NTIyZTJmZWE5NzZlODBlMzZiZjZjZmJkOTZmYjFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuq8N3p1gm75SZ2IFbFStCmkF45+N
VNRG/J8ESfGlgf0vI4QZxo9rZzz4r7cSiIOXk00zw5Brbklaj97vXiIR048Gh9+I
de+qsfX1c8jy35AyaXty3Iimx2iHbeP9wHPbrdOW00wneD1Qjvt14uI+40oZTaMd
TiB3DjUp7Cr2ypFEk+1orDnqt8bSAaG5fKItgH+PsBvcYx8Kg69GYDuKNhepnlwx
tc/TBce7o7cP7KippWplfQwTtr1Yi0DgBPXfie5aa9EScoVGKIb7LUUA8uN9cD0C
MZg/+VQ/PLzr0S9ujdqVZpv7j8bt2MT3qo9eMqKSxqRDnOIhzSkNKVLa3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDIUCEfpUi4v6pdugONr9s+9lvsfMB8GA1UdIwQY
MBaAFNJ7h3+Jk0Emm+xnxuOgqIi6eumNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMG51SGY0bVRRU2FiN0dmRzQ2Q29pTHA2NlkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS80NDVlZDAtNDhiMy00MDhlLWExYmMt
OTk3OWRmNTJiMDE4LzEvMG51SGY0bVRRU2FiN0dmRzQ2Q29pTHA2NlkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS80NDVlZDAtNDhiMy00MDhlLWExYmMtOTk3OWRmNTJiMDE4
LzEvMG51SGY0bVRRU2FiN0dmRzQ2Q29pTHA2NlkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfxrJUChD
+FVQhuBudtJ9Dx2zwkSeYagAH3bNrHRGtBqbYV2WSH99VmN8sfkZztLIdJoWnasO
0VUBpMxtU/ARVfkT9OtrU6v9CxZt7/MHYCUtyJUUTyZlC8aCqi8L9fE4hQczPoa6
oYA/b3uQEmsLoN9d0kQ70rGBBwKvR2OwQ3Jh3m6tuapjAT0jzOMO05ntSwBx6/HL
xHdOwTG0dgFH/UHf/fd/3U/pjL6045e+IfHSiSnbs/k1V/Yx4YoN/i1AOhf2qXnv
K3hX2bdGZg/mzipm3gEX/nEDM16yAHWrWkndWf8PzIjlLZNfYf4JEaaB+ETBQuQo
F40TJu3091C+Mw==
-----END CERTIFICATE-----
Generated at Sat Jun 6 13:22:54 2026 by rpki-client