Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
File: 0KHbRmz4CCBik9B-ZfISH-tJoz4.mft (raw, json)
Hash identifier: DVO8YSIMuNwwrARF/dmNbu5wVC+TtkGOyuqiHBM6cgA=
Subject key identifier: D0:E7:19:05:C7:B2:C9:BF:69:94:61:18:17:E2:90:A5:D4:63:C1:CF
Authority key identifier: D0:A1:DB:46:6C:F8:08:20:62:93:D0:7E:65:F2:12:1F:EB:49:A3:3E
Certificate issuer: /CN=d0a1db466cf808206293d07e65f2121feb49a33e
Certificate serial: 019E1DFE45C4DA933C0ED0E176D6DB0AF095
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
Manifest number: 16F5
Signing time: Tue 12 May 2026 21:01:03 +0000
Manifest this update: Tue 12 May 2026 21:01:03 +0000
Manifest next update: Wed 13 May 2026 21:01:03 +0000
Files and hashes: 1: 0KHbRmz4CCBik9B-ZfISH-tJoz4.crl (hash: dKmnOxH9EaPSSyrvGe7m1ePW1S56LLHsKs5hYfCBhu8=)
2: DhRuJkYL3BPnAOF_5KLHFOS7fEU.asa (hash: sQIfeWLpZ4jVR+U6OfuhrXRMEOMO8X/NhFz0LDGhKGs=)
3: yq5Siwl4i3jmM8YcRC0pxHMIUlk.roa (hash: nGkz7j5CjWTfBWr6c+S9Cs2//HPjWw5q8jEucRFb/jA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:45:c4:da:93:3c:0e:d0:e1:76:d6:db:0a:f0:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a1db466cf808206293d07e65f2121feb49a33e
Validity
Not Before: May 12 21:01:03 2026 GMT
Not After : May 13 21:01:03 2026 GMT
Subject: CN=d0e71905c7b2c9bf6994611817e290a5d463c1cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:2d:da:77:d8:2e:72:e4:27:68:33:ac:56:74:
b9:b9:32:60:b6:8b:4f:6c:9f:76:f6:6e:b8:2c:16:
35:f3:68:76:0c:23:5b:50:cf:7d:92:09:0e:71:dc:
69:e1:0f:23:18:c0:1d:af:d7:60:40:c8:1b:1e:e3:
78:52:8a:95:57:c6:9c:95:2a:80:99:35:45:e4:95:
93:26:78:4b:1e:e4:f3:e4:48:b1:a5:19:65:03:5f:
94:21:92:b3:05:10:31:88:a4:39:b5:27:91:51:30:
ba:56:fd:79:f6:02:5e:c7:0c:a2:37:d5:72:86:e2:
ce:2a:8c:89:ff:ee:d9:52:58:da:1a:0d:42:b4:08:
35:5a:c2:1a:83:19:73:32:15:7a:f4:0f:ab:99:39:
84:2d:c4:ee:94:72:42:84:ef:f8:a5:56:8e:48:ff:
a6:bc:56:a1:77:6b:ac:c4:9a:c4:38:30:cb:2b:3d:
75:f2:22:f7:74:20:ba:ea:3b:19:df:26:cf:6f:53:
97:e1:da:39:7c:e4:91:e8:b6:c3:7b:ae:f6:15:61:
af:b4:f7:d1:5a:22:d9:2c:6c:17:93:d3:ce:55:43:
0b:3f:c5:62:ce:39:f8:af:f6:71:54:62:29:b7:1b:
27:93:6b:89:4d:62:e0:ae:ec:75:3e:bf:bb:2e:18:
aa:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:E7:19:05:C7:B2:C9:BF:69:94:61:18:17:E2:90:A5:D4:63:C1:CF
X509v3 Authority Key Identifier:
keyid:D0:A1:DB:46:6C:F8:08:20:62:93:D0:7E:65:F2:12:1F:EB:49:A3:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:56:4a:8e:af:e8:42:f2:2f:56:5a:b2:7a:f6:e3:fb:a1:26:
c9:a4:9e:f1:2c:07:0a:f6:2f:a5:38:80:01:dd:2b:e0:b0:e4:
19:aa:6a:2a:4e:53:25:02:f8:8e:92:c9:a9:7f:7e:1d:68:3b:
95:d9:99:7a:3e:4f:c3:7a:4f:27:94:2d:fd:c1:8e:ad:8d:e0:
15:03:a4:4a:63:b2:df:b4:fe:f8:e9:bd:4a:f1:b2:17:5c:74:
ce:ad:cf:07:dd:0d:8a:14:42:2b:ee:37:b4:e9:9c:80:2e:24:
b3:4c:a8:be:8f:78:df:83:29:4c:e2:8e:22:78:a1:7b:5a:7a:
fc:57:ab:e1:08:2b:28:b3:53:f3:4d:c3:90:57:50:98:0e:99:
c9:6f:f6:3f:f7:0d:5a:ff:36:72:40:86:3f:c7:82:e0:4f:c7:
6a:c8:9e:4b:85:39:f6:a9:40:8f:74:4f:4c:cc:c8:9f:fa:20:
cb:0c:06:2d:0f:d7:d1:8f:5a:8d:4b:b7:a6:bc:f7:6d:43:37:
c9:13:b7:e6:0a:2b:b4:dd:ac:5c:cc:53:53:13:d9:a3:a3:2f:
d1:b0:90:44:99:a9:d3:04:b7:91:fd:3a:47:d6:33:c3:1e:6e:
99:49:0f:ad:cd:a8:63:68:50:3d:33:83:ee:ee:81:74:21:42:
24:48:63:85
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4d/kXE2pM8DtDhdtbbCvCVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwYTFkYjQ2NmNmODA4MjA2MjkzZDA3ZTY1ZjIxMjFmZWI0
OWEzM2UwHhcNMjYwNTEyMjEwMTAzWhcNMjYwNTEzMjEwMTAzWjAzMTEwLwYDVQQD
EyhkMGU3MTkwNWM3YjJjOWJmNjk5NDYxMTgxN2UyOTBhNWQ0NjNjMWNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0i3ad9gucuQnaDOsVnS5uTJgtotP
bJ929m64LBY182h2DCNbUM99kgkOcdxp4Q8jGMAdr9dgQMgbHuN4UoqVV8aclSqA
mTVF5JWTJnhLHuTz5EixpRllA1+UIZKzBRAxiKQ5tSeRUTC6Vv159gJexwyiN9Vy
huLOKoyJ/+7ZUljaGg1CtAg1WsIagxlzMhV69A+rmTmELcTulHJChO/4pVaOSP+m
vFahd2usxJrEODDLKz118iL3dCC66jsZ3ybPb1OX4do5fOSR6LbDe672FWGvtPfR
WiLZLGwXk9POVUMLP8Vizjn4r/ZxVGIptxsnk2uJTWLgrux1Pr+7LhiqjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNDnGQXHssm/aZRhGBfikKXUY8HPMB8GA1UdIwQY
MBaAFNCh20Zs+AggYpPQfmXyEh/rSaM+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEtIYlJtejRDQ0JpazlCLVpmSVNILXRKb3o0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8xMWNkYWMtNjQxMS00NTRkLWI5NzMt
NDc2MmIwMTBlZjFlLzEvMEtIYlJtejRDQ0JpazlCLVpmSVNILXRKb3o0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS8xMWNkYWMtNjQxMS00NTRkLWI5NzMtNDc2MmIwMTBlZjFl
LzEvMEtIYlJtejRDQ0JpazlCLVpmSVNILXRKb3o0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj1ZKjq/o
QvIvVlqyevbj+6EmyaSe8SwHCvYvpTiAAd0r4LDkGapqKk5TJQL4jpLJqX9+HWg7
ldmZej5Pw3pPJ5Qt/cGOrY3gFQOkSmOy37T++Om9SvGyF1x0zq3PB90NihRCK+43
tOmcgC4ks0yovo9434MpTOKOInihe1p6/Fer4QgrKLNT803DkFdQmA6ZyW/2P/cN
Wv82ckCGP8eC4E/HasieS4U59qlAj3RPTMzIn/ogywwGLQ/X0Y9ajUu3prz3bUM3
yRO35gortN2sXMxTUxPZo6Mv0bCQRJmp0wS3kf06R9Yzwx5umUkPrc2oY2hQPTOD
7u6BdCFCJEhjhQ==
-----END CERTIFICATE-----
Generated at Wed May 13 05:38:50 2026 by rpki-client