Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
File: 0PFLigjLX4BX1IsD5T9Fi44f7tY.mft (raw, json)
Hash identifier: t+Y4JHwn6Kaehyu3jg7ZRzoBIHys+X9zJxicK3NRauQ=
Subject key identifier: 0E:30:E0:CF:88:09:FD:FB:0E:93:37:BB:1E:04:BE:B4:AE:E3:BE:84
Authority key identifier: D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
Certificate issuer: /CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Certificate serial: 019E1CEB65E3ED14F66ACE5CE56B8ED53A59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
Manifest number: 0554
Signing time: Tue 12 May 2026 16:00:49 +0000
Manifest this update: Tue 12 May 2026 16:00:49 +0000
Manifest next update: Wed 13 May 2026 16:00:49 +0000
Files and hashes: 1: 0PFLigjLX4BX1IsD5T9Fi44f7tY.crl (hash: vxNQFXOtY/ytw4YDAyiYz0oM/7TyZKTSqw2BrysEFjs=)
2: Yp5EzvNAptv0FF3dq0dG-qbNXDE.roa (hash: rEVjSa04WTwHqfNGkpfReSocSUSeb47hyl6D9pld43I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:eb:65:e3:ed:14:f6:6a:ce:5c:e5:6b:8e:d5:3a:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Validity
Not Before: May 12 16:00:49 2026 GMT
Not After : May 13 16:00:49 2026 GMT
Subject: CN=0e30e0cf8809fdfb0e9337bb1e04beb4aee3be84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:03:64:74:89:86:fc:1c:c9:0a:c6:99:0f:ea:
3c:8f:60:cd:52:9c:e6:d7:68:ce:1b:e1:d1:f3:b2:
45:e2:c6:55:61:47:ca:30:67:51:36:9a:6e:e6:08:
8c:33:02:1f:31:59:a5:f3:dc:41:96:af:69:10:84:
41:89:45:e8:60:5e:04:82:ab:83:b2:13:f2:78:3d:
68:8c:68:3b:49:0f:23:eb:1c:3f:9a:ca:c9:db:e3:
0d:a1:4c:a9:14:75:6b:34:e4:36:f9:07:fe:18:52:
40:41:c4:8b:5f:f3:4a:b9:d4:23:17:e8:e4:5a:52:
b3:62:65:fa:15:2f:7f:c7:7b:cd:b4:76:8c:d8:5d:
7b:fc:c6:87:9f:6c:cc:4d:a8:9f:4c:c1:52:fb:ee:
1c:a2:ec:bf:f8:3a:97:42:0e:6f:5c:9f:0b:1a:39:
06:58:2a:30:65:d1:c0:66:9d:e6:d7:df:ae:97:45:
71:20:b6:1e:b6:9a:cd:25:36:d2:cc:e7:9c:fc:4e:
83:c5:0d:81:e9:59:48:22:40:97:10:c2:cf:64:41:
60:66:eb:bb:ab:19:6c:4a:4b:e5:4f:28:17:4f:fa:
f7:dc:66:3e:50:35:40:bb:fe:34:7f:02:4d:8c:70:
92:61:fd:89:f3:48:a6:1b:11:a3:60:16:1b:80:bb:
85:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:30:E0:CF:88:09:FD:FB:0E:93:37:BB:1E:04:BE:B4:AE:E3:BE:84
X509v3 Authority Key Identifier:
keyid:D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:8d:df:4f:42:60:c6:5d:a6:00:01:0b:c0:8e:46:45:c0:0c:
d9:bc:12:6a:7b:f7:05:75:0b:d6:d8:d3:67:2a:fc:45:22:b5:
34:24:74:3d:38:9e:81:7c:e4:2c:52:de:fb:a5:26:bb:d6:ee:
b2:4f:35:77:a0:41:c5:51:79:31:a9:cd:10:4a:8a:6e:24:7b:
75:27:d5:4d:54:3a:d4:3f:4f:85:92:85:fb:c1:bf:02:16:5f:
c1:4d:62:1a:8d:dd:bb:ed:2c:2c:44:70:36:09:6c:ff:31:ba:
8c:df:03:c6:94:0a:c6:7a:b4:fd:08:37:f7:c1:3f:cc:09:0d:
85:e0:c2:a1:27:b7:cd:ca:6b:cd:a6:67:70:e4:26:fc:3e:f0:
5b:bb:ba:13:3e:be:bc:d1:3f:b1:0e:8d:30:fc:75:a7:63:68:
df:00:a4:e7:14:38:cf:62:bd:0f:d4:83:32:2e:a7:78:fe:8c:
7e:2f:fe:df:b1:4e:0c:7f:84:70:e5:ed:78:75:db:91:fb:06:
0f:c6:fd:fa:37:47:c1:3f:b3:57:83:86:4a:d0:62:e2:90:da:
90:42:e6:11:6c:b2:0b:e2:1a:c8:45:b5:0c:29:d0:a9:90:c9:
3d:ce:fb:a0:eb:c9:5d:81:bb:b2:12:98:50:d7:e0:fc:bf:93:
94:f1:9d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:37:14 2026 by rpki-client