Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
File: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft (raw, json)
Hash identifier: 8p4s+Bo1S0c8WN0DE+Nsqw5zZJjmrpJQeDFy6ZGSrfI=
Subject key identifier: EC:3F:DC:22:47:78:05:13:11:0C:E6:4D:5A:10:88:D9:1E:75:48:FA
Authority key identifier: D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
Certificate issuer: /CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Certificate serial: 019E1CB44FAE1CCE0C8958401300D7E396E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
Manifest number: 164A
Signing time: Tue 12 May 2026 15:00:39 +0000
Manifest this update: Tue 12 May 2026 15:00:39 +0000
Manifest next update: Wed 13 May 2026 15:00:39 +0000
Files and hashes: 1: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl (hash: v+Pm7JvFo1uSiZXuwtC092AIQbHWhDpih8kW6kI2De0=)
2: t0X5t_3y1eMrgSVfnROrir2IJb4.roa (hash: BPcyM2IeAIooAh+FVKFVf4qaLxjgFOkdsiFt2kQ2Eag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b4:4f:ae:1c:ce:0c:89:58:40:13:00:d7:e3:96:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Validity
Not Before: May 12 15:00:39 2026 GMT
Not After : May 13 15:00:39 2026 GMT
Subject: CN=ec3fdc2247780513110ce64d5a1088d91e7548fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:dd:6c:93:95:f7:ac:02:17:75:08:ac:35:87:
fa:db:8f:7d:71:08:d1:78:ce:60:aa:aa:ea:95:fd:
b7:1b:00:0b:69:95:56:fc:c4:43:57:ad:58:bb:4f:
1c:e2:29:73:e2:02:82:1b:c9:91:60:5c:6a:9d:1e:
9e:46:55:54:c9:c7:43:c4:d3:9c:a2:d2:b2:f6:82:
34:56:77:ef:4f:c6:de:11:a2:2b:50:04:45:e7:7f:
34:38:92:a8:7f:6f:20:80:e5:bf:13:bb:b7:ac:c3:
65:1b:58:3f:f8:da:d7:93:13:0a:50:53:6f:1b:78:
57:db:24:76:2a:3c:84:55:71:4b:5f:0a:b4:45:23:
d1:19:7e:68:21:87:30:53:8c:05:a8:9c:f1:6d:67:
56:f8:07:2c:b6:b8:5d:b6:99:1c:b7:69:15:85:64:
f8:e9:fd:71:46:04:b6:54:e3:9a:c9:a6:31:4f:bf:
a3:1d:b5:a1:79:70:b6:f1:df:34:3d:8b:83:e7:cf:
68:bc:1b:7b:2c:51:fa:21:49:d4:fd:db:59:25:34:
22:7b:f4:1f:06:9b:b9:8d:09:11:7c:54:bd:36:ff:
b4:e2:55:55:b3:1e:c2:48:1e:e3:a5:7f:09:b3:2f:
3a:da:b1:52:42:bc:31:56:95:f9:84:27:86:a3:63:
b5:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:3F:DC:22:47:78:05:13:11:0C:E6:4D:5A:10:88:D9:1E:75:48:FA
X509v3 Authority Key Identifier:
keyid:D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:86:f6:f6:f4:08:e4:90:bd:26:f2:b9:c5:10:83:73:60:51:
0d:d5:df:b9:1d:b5:50:8c:ed:db:72:ef:99:0e:48:55:52:ec:
53:e2:49:ff:ff:bc:02:76:d9:0f:e1:29:1d:bb:96:f4:17:6a:
10:d0:d7:fb:42:29:38:37:31:10:b8:de:02:a2:ee:ff:b5:6c:
33:52:2e:52:d4:f7:8f:7d:43:a1:33:4d:f1:ca:fc:3e:22:ef:
1a:4c:84:df:3b:2b:ea:54:4c:ff:be:80:7a:0b:2a:e3:cd:d6:
ee:46:5e:4a:58:af:5d:e7:50:42:78:9e:be:86:60:6f:e6:82:
62:9c:5f:08:a0:e0:e9:7f:4d:e3:d6:ba:a0:e0:95:44:2f:d5:
fe:65:c2:84:e7:38:74:15:a7:03:47:df:f4:ce:2f:12:83:41:
75:4f:77:4a:78:4b:24:a8:64:6f:33:f5:4e:a9:22:d3:ac:ad:
88:6a:b0:56:d6:9e:5a:65:c0:e8:a9:06:bb:49:2f:0a:87:0f:
b9:95:42:5a:13:58:10:39:e3:ed:de:e8:37:da:64:c1:29:8b:
4c:f7:db:3d:dc:9c:db:32:bf:39:0f:2d:9a:c8:1d:ed:72:47:
ce:81:a2:0c:b6:c2:37:9f:33:35:66:48:b2:a6:d3:50:6f:f9:
94:db:15:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:15:35 2026 by rpki-client