Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
File: 0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft (raw, json)
Hash identifier: zQkpvqub2MOZZM99wPzNFeZbP5D7EGxA5l0OMfYKRrQ=
Subject key identifier: DE:65:D8:18:C3:AE:15:54:4C:88:6C:D1:22:2E:7C:06:CE:B0:92:23
Authority key identifier: D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0
Certificate issuer: /CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
Certificate serial: 019E1D22697A31839BC017867B8F62528A4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
Manifest number: 0E88
Signing time: Tue 12 May 2026 17:00:54 +0000
Manifest this update: Tue 12 May 2026 17:00:54 +0000
Manifest next update: Wed 13 May 2026 17:00:54 +0000
Files and hashes: 1: 0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl (hash: WiugC034zkBgm7uw+pflCmP2UjS/UsEr3/ShPmQCcl0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 17:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:69:7a:31:83:9b:c0:17:86:7b:8f:62:52:8a:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
Validity
Not Before: May 12 17:00:54 2026 GMT
Not After : May 13 17:00:54 2026 GMT
Subject: CN=de65d818c3ae15544c886cd1222e7c06ceb09223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:31:79:92:5f:d4:f7:4d:d3:2e:9b:00:e5:07:
e5:5c:39:58:eb:5e:71:45:a5:8b:2a:3c:29:51:0d:
a0:eb:c8:c3:1d:79:45:c8:5b:b8:f7:36:f7:b6:6a:
71:22:4c:28:b0:45:ff:e8:66:09:de:ec:03:62:d8:
a0:64:1c:60:44:9b:db:9e:3d:a7:5d:a1:52:05:51:
ca:e9:2c:e7:ad:c7:30:3e:ed:bc:57:5d:7d:58:b0:
e3:a4:91:ea:44:c8:de:8f:8c:73:24:21:cc:b6:1f:
0f:67:14:a6:8e:f3:86:91:ce:69:d4:e4:17:9f:2c:
3e:ee:b3:4c:4a:53:41:72:b5:a0:8c:5c:6f:de:3b:
0a:a2:b9:8c:b2:bb:61:e1:a2:5b:60:d5:a4:66:1a:
28:80:a1:14:81:dd:b0:a7:f2:31:7e:2b:4c:c4:69:
15:0d:42:c1:b6:0b:4e:0f:9a:79:7c:a5:f7:73:7d:
e6:05:a9:66:4a:d9:e0:79:65:4b:e2:8a:46:50:98:
8b:2c:f7:bf:ba:19:e6:38:e5:bb:59:20:20:65:d2:
37:a0:b0:6c:15:99:7a:7f:4c:ec:e2:99:8c:16:27:
c1:51:1a:61:bd:07:32:c8:0f:22:1a:a6:78:35:13:
d6:93:91:bb:a9:d5:84:ba:63:80:d3:d4:1d:99:31:
96:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:65:D8:18:C3:AE:15:54:4C:88:6C:D1:22:2E:7C:06:CE:B0:92:23
X509v3 Authority Key Identifier:
keyid:D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:86:e1:06:2a:99:51:21:62:40:6f:1d:eb:3b:a5:e4:20:2a:
6e:5f:ac:b6:6b:cf:0e:ff:13:7d:27:42:6b:71:0c:bd:bf:8c:
3c:83:60:5b:24:37:c3:0f:27:da:f0:e2:96:4d:b4:ae:e4:fa:
24:66:73:57:93:b2:90:63:e9:6e:88:98:48:62:dc:2c:1b:b6:
ba:50:42:7d:e2:ba:9f:04:6a:d1:53:fd:56:88:de:87:85:8c:
f7:c3:eb:2e:6d:57:62:0a:0e:10:6d:83:37:c3:0d:b3:ef:24:
8b:4d:3c:86:27:ee:3a:95:cc:3a:78:b4:bb:8b:12:de:b5:fe:
21:b6:8e:6f:f2:ab:f5:a9:c7:c6:01:96:31:d9:ee:de:79:a7:
bb:97:4c:39:ba:2c:66:ca:3c:6d:68:38:38:c3:20:c3:b9:5e:
e4:53:62:f4:f9:91:75:01:38:e6:5a:e2:26:a1:53:65:93:0e:
3f:2b:df:27:3e:b4:b9:f0:1c:59:9e:05:68:09:ad:38:97:0d:
94:b4:05:9d:09:a6:30:e5:0c:8d:74:20:f7:74:39:0a:e2:6f:
b2:24:f7:7c:bb:45:52:f5:f9:be:89:a8:52:13:75:9d:f6:bf:
30:cb:7e:fd:15:ce:af:7b:b3:a3:00:8d:4a:be:32:83:59:b2:
d1:e8:02:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:49:23 2026 by rpki-client