Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
File: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft (raw, json)
Hash identifier: VL92GbhArGGwEuTVoossMI2AU7VNkr1SthS9lgC9GVM=
Subject key identifier: D9:6A:5F:DF:6B:9E:72:6F:BC:56:C8:F7:F8:A9:27:E6:CA:B9:73:4A
Authority key identifier: D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
Certificate issuer: /CN=d248185956e443b55b062200f964537bc10bc130
Certificate serial: 019E1CEB52E62EBBA06EFCE7BC75F4DD8BF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
Manifest number: 0575
Signing time: Tue 12 May 2026 16:00:44 +0000
Manifest this update: Tue 12 May 2026 16:00:44 +0000
Manifest next update: Wed 13 May 2026 16:00:44 +0000
Files and hashes: 1: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl (hash: Dng8vaVWXDJu13XEb9pWMt/FIiSt0XCruRJIeFUCXpY=)
2: Xudz0hLe8s3SLmiPVONXMND3hRM.roa (hash: oORSmt43XgnSynXZgH2ISuQJ8Cm/DBrmnJwy75rrXHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:eb:52:e6:2e:bb:a0:6e:fc:e7:bc:75:f4:dd:8b:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d248185956e443b55b062200f964537bc10bc130
Validity
Not Before: May 12 16:00:44 2026 GMT
Not After : May 13 16:00:44 2026 GMT
Subject: CN=d96a5fdf6b9e726fbc56c8f7f8a927e6cab9734a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:7e:3a:f6:c0:3f:6d:44:78:ee:43:7c:73:11:
aa:63:b6:90:f6:d3:99:5d:30:fe:f3:c5:fb:8b:91:
55:9c:08:17:21:9e:4d:d9:3e:c8:e5:7e:1d:a2:8b:
a0:b8:b4:bf:7b:ea:ec:80:5f:ee:fa:07:0b:50:84:
38:6e:d6:55:9e:c1:f8:9c:81:80:fc:e0:db:5c:bd:
71:b4:4b:34:52:c2:35:74:68:e2:eb:57:4d:d3:b7:
3e:18:02:d3:d0:77:d3:83:b5:fe:df:63:f4:0e:b1:
9d:32:b2:a5:74:2b:65:5a:48:9e:35:37:ef:85:d0:
10:da:4a:6c:b7:02:33:58:1b:67:fa:43:81:a9:25:
72:0d:f4:4f:be:0c:9f:29:b7:76:94:70:72:43:b2:
6c:01:ec:5f:aa:fe:14:f1:0b:b7:4a:7f:42:d8:03:
60:df:5d:82:03:af:4a:ce:1d:df:d1:0d:c9:ba:48:
df:82:3f:ff:75:87:f8:88:dc:90:44:5f:dc:5d:08:
18:ce:4a:02:d8:e3:e0:7c:f6:7d:6f:ef:ad:74:6a:
64:f8:44:28:1e:39:b1:84:f1:5c:71:e7:a2:7e:47:
cb:8a:e6:b5:38:bd:53:e2:d2:e1:4a:93:33:a1:bd:
55:ec:dd:97:42:ea:c6:4d:95:cc:5a:01:64:e8:1c:
1b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6A:5F:DF:6B:9E:72:6F:BC:56:C8:F7:F8:A9:27:E6:CA:B9:73:4A
X509v3 Authority Key Identifier:
keyid:D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:ce:e9:ff:ef:d6:0d:c9:2e:68:5f:06:8f:c6:f5:d1:19:24:
3b:94:05:ee:7b:cd:ed:29:01:8c:03:11:59:ed:85:18:65:ff:
5c:81:37:2f:ea:c6:78:7a:44:4e:1f:48:0b:6f:39:4f:1c:37:
6c:d3:f0:2c:7f:37:3e:29:71:a9:c2:a7:98:6f:ae:61:1e:8a:
8f:bd:6f:a1:b3:6e:2d:57:44:d5:28:89:e1:9b:9e:44:86:62:
c2:e0:eb:44:8b:8e:03:70:2b:69:29:68:b3:30:17:9e:b7:3b:
21:68:93:26:30:e3:e5:53:17:1c:d6:a5:94:bb:47:b0:12:f7:
ac:4d:1b:cb:4a:1c:4b:e8:b0:a6:89:6f:f7:de:b6:32:e2:a0:
0e:39:ce:40:a5:46:16:ce:cb:b2:fa:85:d1:d5:1f:db:43:46:
bb:1f:fe:b1:01:9a:b9:0e:0b:18:5f:ba:f5:57:48:55:45:c9:
da:d2:52:ce:0e:b9:27:fc:45:73:cb:ea:80:8e:6a:51:81:fb:
45:90:39:b2:a5:a8:88:2f:51:68:f6:6e:d3:e2:46:6d:28:8d:
21:de:3f:6f:22:78:23:0b:31:fd:ca:6d:32:cb:1b:52:31:8a:
2c:78:74:be:70:0d:e2:5b:45:d1:9b:77:ab:00:11:af:f6:a7:
22:33:bc:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4c61LmLrugbvznvHX03Yv4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNDgxODU5NTZlNDQzYjU1YjA2MjIwMGY5NjQ1MzdiYzEw
YmMxMzAwHhcNMjYwNTEyMTYwMDQ0WhcNMjYwNTEzMTYwMDQ0WjAzMTEwLwYDVQQD
EyhkOTZhNWZkZjZiOWU3MjZmYmM1NmM4ZjdmOGE5MjdlNmNhYjk3MzRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkX469sA/bUR47kN8cxGqY7aQ9tOZ
XTD+88X7i5FVnAgXIZ5N2T7I5X4doouguLS/e+rsgF/u+gcLUIQ4btZVnsH4nIGA
/ODbXL1xtEs0UsI1dGji61dN07c+GALT0HfTg7X+32P0DrGdMrKldCtlWkieNTfv
hdAQ2kpstwIzWBtn+kOBqSVyDfRPvgyfKbd2lHByQ7JsAexfqv4U8Qu3Sn9C2ANg
312CA69Kzh3f0Q3Jukjfgj//dYf4iNyQRF/cXQgYzkoC2OPgfPZ9b++tdGpk+EQo
HjmxhPFcceeifkfLiua1OL1T4tLhSpMzob1V7N2XQurGTZXMWgFk6BwbjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNlqX99rnnJvvFbI9/ipJ+bKuXNKMB8GA1UdIwQY
MBaAFNJIGFlW5EO1WwYiAPlkU3vBC8EwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGtnWVdWYmtRN1ZiQmlJQS1XUlRlOEVMd1RBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZTg3NWEtMDU3Ni00YTE1LWJlMjMt
YWVhMDU0Y2Y0M2JiLzEvMGtnWVdWYmtRN1ZiQmlJQS1XUlRlOEVMd1RBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9kZTg3NWEtMDU3Ni00YTE1LWJlMjMtYWVhMDU0Y2Y0M2Ji
LzEvMGtnWVdWYmtRN1ZiQmlJQS1XUlRlOEVMd1RBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOM7p/+/W
DckuaF8Gj8b10RkkO5QF7nvN7SkBjAMRWe2FGGX/XIE3L+rGeHpETh9IC285Txw3
bNPwLH83PilxqcKnmG+uYR6Kj71vobNuLVdE1SiJ4ZueRIZiwuDrRIuOA3AraSlo
szAXnrc7IWiTJjDj5VMXHNallLtHsBL3rE0by0ocS+iwpolv9962MuKgDjnOQKVG
Fs7LsvqF0dUf20NGux/+sQGauQ4LGF+69VdIVUXJ2tJSzg65J/xFc8vqgI5qUYH7
RZA5sqWoiC9RaPZu0+JGbSiNId4/byJ4Iwsx/cptMssbUjGKLHh0vnAN4ltF0Zt3
qwARr/anIjO8yQ==
-----END CERTIFICATE-----
Generated at Tue May 12 21:55:02 2026 by rpki-client