Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
File: 0KHbRmz4CCBik9B-ZfISH-tJoz4.mft (raw, json)
Hash identifier: C4K1APCaJUi0IlgPzSOGL9NaAfoHprmO5696fmrpxf4=
Subject key identifier: 0B:15:07:03:F3:DE:80:3B:44:58:9E:CC:20:25:67:52:C9:5A:15:02
Authority key identifier: D0:A1:DB:46:6C:F8:08:20:62:93:D0:7E:65:F2:12:1F:EB:49:A3:3E
Certificate issuer: /CN=d0a1db466cf808206293d07e65f2121feb49a33e
Certificate serial: 019D24DEA24BBBD4FE4667AA3BEBB954B6DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
Manifest number: 1674
Signing time: Wed 25 Mar 2026 12:01:03 +0000
Manifest this update: Wed 25 Mar 2026 12:01:03 +0000
Manifest next update: Thu 26 Mar 2026 12:01:03 +0000
Files and hashes: 1: 0KHbRmz4CCBik9B-ZfISH-tJoz4.crl (hash: 7//nMld9fdFJCPEj9wf5SGoH3e/0efKyydFQa25DaNo=)
2: DhRuJkYL3BPnAOF_5KLHFOS7fEU.asa (hash: sQIfeWLpZ4jVR+U6OfuhrXRMEOMO8X/NhFz0LDGhKGs=)
3: yq5Siwl4i3jmM8YcRC0pxHMIUlk.roa (hash: nGkz7j5CjWTfBWr6c+S9Cs2//HPjWw5q8jEucRFb/jA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 12:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:24:de:a2:4b:bb:d4:fe:46:67:aa:3b:eb:b9:54:b6:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a1db466cf808206293d07e65f2121feb49a33e
Validity
Not Before: Mar 25 12:01:03 2026 GMT
Not After : Mar 26 12:01:03 2026 GMT
Subject: CN=0b150703f3de803b44589ecc20256752c95a1502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6f:dc:c5:ba:a9:68:48:32:3f:2b:57:95:31:
28:cd:cc:62:cc:28:88:39:f3:14:9c:ad:46:fc:a6:
c4:11:4a:39:8c:33:1e:99:61:51:10:1d:db:d9:34:
8d:de:29:14:30:2f:51:9f:b2:a3:0d:1d:6a:4f:07:
7c:a4:ec:b6:7e:2c:45:3d:b1:e9:19:1c:62:0f:48:
a9:37:2f:83:d3:9d:62:99:13:32:55:40:8b:f0:e9:
ff:f2:0f:36:48:4c:d5:13:51:6a:93:a1:2a:64:d0:
52:1c:f1:ac:da:1c:30:57:64:9c:e3:43:e8:5c:16:
9c:e0:5d:e9:12:8e:94:cb:5e:e8:9e:46:01:88:7d:
a5:f6:1f:cb:32:85:5b:b0:40:91:7e:4b:75:3d:c2:
a1:8c:94:cf:31:65:f6:5a:ef:61:ab:a3:92:94:7a:
9c:ad:5a:b2:26:f9:55:3f:e0:55:ef:d6:9a:69:18:
27:4f:ac:00:99:0a:69:bf:03:bd:8a:be:20:de:1c:
2c:4e:e1:c1:36:23:99:2d:36:7b:45:43:73:f5:c5:
0a:f9:cd:41:72:48:1c:22:b6:96:c4:a9:9c:6e:3e:
c0:c5:8f:5c:31:79:23:c1:1c:3f:6d:c1:46:78:b3:
4b:ae:9d:e3:98:54:58:a5:29:e2:79:a8:fe:1b:19:
5d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:15:07:03:F3:DE:80:3B:44:58:9E:CC:20:25:67:52:C9:5A:15:02
X509v3 Authority Key Identifier:
keyid:D0:A1:DB:46:6C:F8:08:20:62:93:D0:7E:65:F2:12:1F:EB:49:A3:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:b2:a4:c1:d6:bb:4c:d1:75:0f:d2:de:13:4c:5f:38:0f:27:
4d:6e:1f:f8:03:4e:61:89:b3:ea:3d:87:19:0f:a5:3e:e8:b5:
bb:1e:03:0c:2f:c1:3d:6c:d2:e5:d4:50:fe:71:cb:7b:40:50:
db:f4:62:f2:24:2a:59:69:4d:35:d3:d7:eb:fb:00:33:34:04:
d1:3f:25:f2:03:9e:f3:c8:f3:27:48:46:8c:e1:67:02:d1:f9:
95:84:f6:b1:84:cd:0f:9b:16:ea:4a:2b:a2:12:81:a9:2a:63:
7f:fb:96:98:de:9a:61:ca:8e:a3:01:a5:e3:22:d8:ef:1a:e1:
93:db:fb:d8:d3:2b:84:74:0e:6f:2e:5d:00:99:e5:4d:94:01:
ae:36:a8:c3:d6:eb:9e:da:c7:01:ac:68:03:98:4f:7f:40:2e:
9b:86:0f:5a:27:28:cb:63:7d:26:21:01:51:20:73:53:31:66:
75:ea:3f:56:8c:78:d4:4a:25:4e:33:a8:ea:76:78:1c:36:42:
6d:cf:76:3a:30:bf:5f:df:6e:55:0b:87:a0:05:d3:2e:fd:c6:
cb:7e:c2:71:fb:a6:b8:1e:aa:d3:41:c1:cc:56:5c:f0:aa:31:
a9:74:8f:f3:65:1c:17:01:69:44:c1:d6:44:8e:32:a3:b4:e5:
83:ef:a7:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0k3qJLu9T+RmeqO+u5VLbeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwYTFkYjQ2NmNmODA4MjA2MjkzZDA3ZTY1ZjIxMjFmZWI0
OWEzM2UwHhcNMjYwMzI1MTIwMTAzWhcNMjYwMzI2MTIwMTAzWjAzMTEwLwYDVQQD
EygwYjE1MDcwM2YzZGU4MDNiNDQ1ODllY2MyMDI1Njc1MmM5NWExNTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAom/cxbqpaEgyPytXlTEozcxizCiI
OfMUnK1G/KbEEUo5jDMemWFREB3b2TSN3ikUMC9Rn7KjDR1qTwd8pOy2fixFPbHp
GRxiD0ipNy+D051imRMyVUCL8On/8g82SEzVE1Fqk6EqZNBSHPGs2hwwV2Sc40Po
XBac4F3pEo6Uy17onkYBiH2l9h/LMoVbsECRfkt1PcKhjJTPMWX2Wu9hq6OSlHqc
rVqyJvlVP+BV79aaaRgnT6wAmQppvwO9ir4g3hwsTuHBNiOZLTZ7RUNz9cUK+c1B
ckgcIraWxKmcbj7AxY9cMXkjwRw/bcFGeLNLrp3jmFRYpSnieaj+GxldawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAsVBwPz3oA7RFiezCAlZ1LJWhUCMB8GA1UdIwQY
MBaAFNCh20Zs+AggYpPQfmXyEh/rSaM+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEtIYlJtejRDQ0JpazlCLVpmSVNILXRKb3o0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8xMWNkYWMtNjQxMS00NTRkLWI5NzMt
NDc2MmIwMTBlZjFlLzEvMEtIYlJtejRDQ0JpazlCLVpmSVNILXRKb3o0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS8xMWNkYWMtNjQxMS00NTRkLWI5NzMtNDc2MmIwMTBlZjFl
LzEvMEtIYlJtejRDQ0JpazlCLVpmSVNILXRKb3o0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACrKkwda7
TNF1D9LeE0xfOA8nTW4f+ANOYYmz6j2HGQ+lPui1ux4DDC/BPWzS5dRQ/nHLe0BQ
2/Ri8iQqWWlNNdPX6/sAMzQE0T8l8gOe88jzJ0hGjOFnAtH5lYT2sYTND5sW6kor
ohKBqSpjf/uWmN6aYcqOowGl4yLY7xrhk9v72NMrhHQOby5dAJnlTZQBrjaow9br
ntrHAaxoA5hPf0Aum4YPWicoy2N9JiEBUSBzUzFmdeo/Vox41EolTjOo6nZ4HDZC
bc92OjC/X99uVQuHoAXTLv3Gy37CcfumuB6q00HBzFZc8KoxqXSP82UcFwFpRMHW
RI4yo7Tlg++neQ==
-----END CERTIFICATE-----
Generated at Wed Mar 25 22:40:56 2026 by rpki-client