Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
File: 0tiRsOMo58hWrUt6B2TYLYVgltY.mft (raw, json)
Hash identifier: kQcl0sk7yGLNEYQPet5QTZ/zK1ynBZyP4RpUoEvSb14=
Subject key identifier: F4:99:14:D2:06:3B:22:B5:98:3C:AB:0E:51:A0:AD:1F:9F:75:EC:66
Authority key identifier: D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
Certificate issuer: /CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Certificate serial: 019E1D9059683B5CE83FB6786D48C93F60D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
Manifest number: 0559
Signing time: Tue 12 May 2026 19:00:59 +0000
Manifest this update: Tue 12 May 2026 19:00:59 +0000
Manifest next update: Wed 13 May 2026 19:00:59 +0000
Files and hashes: 1: 0tiRsOMo58hWrUt6B2TYLYVgltY.crl (hash: n1cMU0PjM+ZWMRL2Rs6NH4wOQh1nlZxdBdNJAhQfu/E=)
2: UCdWTcnF4ZVDrSnBvN43rU1Zk3A.roa (hash: Qw45xlTVvhAH55/GToKQCdfRTF8PLXCZ9h0uBYEUVtM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:59:68:3b:5c:e8:3f:b6:78:6d:48:c9:3f:60:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Validity
Not Before: May 12 19:00:59 2026 GMT
Not After : May 13 19:00:59 2026 GMT
Subject: CN=f49914d2063b22b5983cab0e51a0ad1f9f75ec66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:43:05:fa:9b:b3:7b:be:79:52:d4:80:97:0a:
90:5f:82:41:98:fd:0c:d8:d6:dd:8c:9a:a8:18:ed:
ad:6d:e4:db:fd:1a:b6:78:81:cd:99:b4:00:42:72:
74:da:42:9d:a0:57:b4:83:95:67:3c:c0:7f:a6:31:
d6:d5:49:a0:ca:be:aa:4b:78:b0:83:36:6a:6d:3b:
18:e7:3b:08:5d:ff:38:86:26:8d:0b:88:47:e6:4a:
36:13:03:cc:c8:64:7f:35:54:17:82:01:3e:56:a3:
2d:f5:cd:23:28:6a:e3:37:7a:5a:0f:44:fd:f1:cf:
a6:a7:db:d0:2f:80:10:87:35:94:ca:e6:17:7b:c7:
95:fd:4d:e2:64:e1:5b:ed:10:a6:e9:ff:27:a9:55:
bc:76:9b:2b:cd:1e:9f:74:e1:6e:00:17:16:82:7b:
a9:38:24:07:4e:d6:7d:4f:7b:2d:d8:d8:59:84:ac:
65:48:f9:37:43:75:da:33:2f:93:17:cd:b6:3d:8e:
ae:c6:42:77:01:32:e8:69:24:f7:72:22:74:7e:cb:
8d:b4:8d:7c:0f:9c:35:6b:81:29:29:22:3f:b0:b8:
c9:8d:60:4c:25:73:6a:e7:69:f6:0a:12:6c:29:2f:
b5:c4:6f:68:20:b8:e4:06:e3:81:31:f6:e1:bb:7c:
ec:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:99:14:D2:06:3B:22:B5:98:3C:AB:0E:51:A0:AD:1F:9F:75:EC:66
X509v3 Authority Key Identifier:
keyid:D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:ca:f3:76:53:22:c6:8d:45:a7:db:75:33:69:db:16:eb:46:
91:90:99:34:a6:c6:a1:e3:ff:0b:3d:e6:99:d6:29:45:79:14:
34:62:36:c3:c2:d4:43:b5:6d:6a:8d:26:3c:b7:81:9d:d9:cc:
7c:eb:fb:00:9f:48:4b:92:21:c7:20:d4:8f:0d:d1:bd:37:90:
57:74:3f:9d:ca:b5:b5:de:27:70:e3:bc:6c:7a:b4:60:bf:15:
33:78:a2:05:54:f1:53:da:b2:80:aa:f7:a8:97:9c:79:c9:82:
fc:8f:4e:1f:c1:cf:00:75:5a:2b:55:c5:68:e8:55:0a:e1:11:
d1:e6:2a:76:8a:90:74:08:4c:ab:10:91:65:ba:b3:d5:b5:22:
42:7e:3f:01:1a:7a:29:2c:41:37:cd:84:81:33:67:ef:6f:29:
e5:88:6a:8f:bd:39:80:05:61:7e:f4:b0:fd:9a:79:58:52:65:
35:cf:28:98:74:cc:8d:5c:9c:f3:75:d3:8c:d8:32:9b:e8:06:
d6:e8:47:eb:48:7a:ff:e8:4d:d4:ff:d8:19:05:3a:75:42:9c:
9c:64:c4:8e:a3:d0:c6:bd:66:a6:62:5e:74:2b:f7:78:6c:ca:
7e:30:48:3d:64:b0:1e:02:75:ca:dc:7f:23:11:2e:81:b8:b8:
c9:9f:f1:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:25:38 2026 by rpki-client