Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
File: 0cpnYQKGq3OPhs6TX99e1iDwLZY.mft (raw, json)
Hash identifier: awSo+x4KSqwfiI1VGEsZu6j4KDlE5rDKXwIuWfzmnqY=
Subject key identifier: 10:0E:73:C9:4A:CF:A8:51:C5:E6:F3:F8:D0:30:64:77:E7:29:9A:2C
Authority key identifier: D1:CA:67:61:02:86:AB:73:8F:86:CE:93:5F:DF:5E:D6:20:F0:2D:96
Certificate issuer: /CN=d1ca67610286ab738f86ce935fdf5ed620f02d96
Certificate serial: 019D29CE09A69AADFE793EF41011CFFC2845
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
Manifest number: 0781
Signing time: Thu 26 Mar 2026 11:01:01 +0000
Manifest this update: Thu 26 Mar 2026 11:01:01 +0000
Manifest next update: Fri 27 Mar 2026 11:01:01 +0000
Files and hashes: 1: 02YEKq1IDPEF8lBAQFD4RLUmuKw.roa (hash: TS/pQGf2LaMx5573KYxQQhCXKrO448hCMH6JUvctiu8=)
2: 0cpnYQKGq3OPhs6TX99e1iDwLZY.crl (hash: NsdL8vMtDc1dWkWg0Y3VWV55T8qTYjpHBxz2zgeUkKU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:09:a6:9a:ad:fe:79:3e:f4:10:11:cf:fc:28:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1ca67610286ab738f86ce935fdf5ed620f02d96
Validity
Not Before: Mar 26 11:01:01 2026 GMT
Not After : Mar 27 11:01:01 2026 GMT
Subject: CN=100e73c94acfa851c5e6f3f8d0306477e7299a2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1e:d8:88:ad:fb:17:48:bf:2d:37:bc:04:93:
0b:04:38:bf:af:2a:09:7e:25:a5:c3:c1:0c:d3:3f:
a0:b7:a3:f2:0c:06:c7:6d:d8:8e:a3:33:cd:d5:c3:
99:05:2a:81:3d:1c:de:75:1d:56:8d:eb:df:c0:33:
c5:75:54:ea:9e:07:28:45:09:e2:b1:a1:0e:23:70:
eb:ff:73:84:74:94:3c:9f:dd:3e:73:c9:5c:c9:75:
ab:af:4b:6a:24:b2:fe:ba:10:8f:fe:a6:80:e2:2c:
bf:85:91:ba:dc:1e:02:c7:99:03:25:2a:76:52:a5:
48:7e:6e:e5:d0:e7:e9:de:df:6d:91:33:15:5b:19:
c0:05:88:6d:e5:01:ac:1e:0f:04:4a:c6:9f:45:df:
91:ce:0d:40:d7:c5:d4:5d:0b:37:03:4c:5a:5e:de:
43:db:05:17:35:99:7c:e5:76:d6:64:f3:25:20:ec:
8b:e1:5c:10:34:ce:24:7d:70:1f:9d:a0:73:f3:ac:
58:10:cc:a7:18:8a:fa:8d:ba:60:67:08:6d:36:12:
6a:ce:f9:0d:72:11:47:77:4e:bf:cf:87:14:bb:dc:
85:05:77:b6:96:bd:57:c3:10:e2:67:d9:e3:07:b7:
a5:43:b8:51:cb:fc:fe:61:dc:b9:e4:8f:f6:ec:eb:
9c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:0E:73:C9:4A:CF:A8:51:C5:E6:F3:F8:D0:30:64:77:E7:29:9A:2C
X509v3 Authority Key Identifier:
keyid:D1:CA:67:61:02:86:AB:73:8F:86:CE:93:5F:DF:5E:D6:20:F0:2D:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:ea:d6:21:bc:5c:1f:72:6c:21:4d:08:05:45:1b:68:e5:ad:
4e:42:3d:d5:2b:4d:ba:86:de:a1:66:8e:75:48:0d:67:65:3b:
25:fb:8e:76:16:e6:16:0b:88:b2:fe:f6:80:9a:43:c1:52:65:
9e:55:54:f2:f1:4d:45:87:20:b9:4d:d8:b6:88:37:20:f0:0c:
21:58:9f:64:71:f2:f0:86:19:a3:b6:a7:0f:36:43:1a:98:7d:
ec:6a:97:75:12:53:93:28:15:80:a9:16:87:27:5e:7e:ed:99:
e6:d2:f9:6d:4b:a4:8b:08:f5:cd:22:f6:a7:f3:22:16:54:88:
dd:42:d7:a4:5d:da:fc:43:49:c4:76:71:c1:31:5c:05:fa:17:
0b:3e:92:5f:16:f8:f4:a9:57:10:cf:68:8b:29:74:5a:40:38:
db:80:9f:5e:05:6d:bf:5e:e0:80:11:d0:d7:41:39:14:58:77:
94:3d:1a:d8:71:0d:22:61:c9:ce:30:c5:e4:2b:87:f2:9e:61:
e4:08:71:3a:6c:d1:7d:f4:c7:c6:05:75:89:e3:82:48:96:f3:
50:df:b0:d5:b9:64:15:97:71:e6:be:4f:d6:45:17:bb:66:9d:
b1:f9:4f:2f:37:96:2a:cc:f0:6d:40:d8:de:95:1b:f1:ad:92:
b7:9a:fc:41
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pzgmmmq3+eT70EBHP/ChFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxY2E2NzYxMDI4NmFiNzM4Zjg2Y2U5MzVmZGY1ZWQ2MjBm
MDJkOTYwHhcNMjYwMzI2MTEwMTAxWhcNMjYwMzI3MTEwMTAxWjAzMTEwLwYDVQQD
EygxMDBlNzNjOTRhY2ZhODUxYzVlNmYzZjhkMDMwNjQ3N2U3Mjk5YTJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvB7YiK37F0i/LTe8BJMLBDi/ryoJ
fiWlw8EM0z+gt6PyDAbHbdiOozPN1cOZBSqBPRzedR1WjevfwDPFdVTqngcoRQni
saEOI3Dr/3OEdJQ8n90+c8lcyXWrr0tqJLL+uhCP/qaA4iy/hZG63B4Cx5kDJSp2
UqVIfm7l0Ofp3t9tkTMVWxnABYht5QGsHg8ESsafRd+Rzg1A18XUXQs3A0xaXt5D
2wUXNZl85XbWZPMlIOyL4VwQNM4kfXAfnaBz86xYEMynGIr6jbpgZwhtNhJqzvkN
chFHd06/z4cUu9yFBXe2lr1XwxDiZ9njB7elQ7hRy/z+Ydy55I/27OucMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBAOc8lKz6hRxebz+NAwZHfnKZosMB8GA1UdIwQY
MBaAFNHKZ2EChqtzj4bOk1/fXtYg8C2WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGNwbllRS0dxM09QaHM2VFg5OWUxaUR3TFpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS83YTFhNjItZTQ4MS00YTE0LWFkNmUt
MzViZmY5NmRhNGM1LzEvMGNwbllRS0dxM09QaHM2VFg5OWUxaUR3TFpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS83YTFhNjItZTQ4MS00YTE0LWFkNmUtMzViZmY5NmRhNGM1
LzEvMGNwbllRS0dxM09QaHM2VFg5OWUxaUR3TFpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjurWIbxc
H3JsIU0IBUUbaOWtTkI91StNuobeoWaOdUgNZ2U7JfuOdhbmFguIsv72gJpDwVJl
nlVU8vFNRYcguU3Ytog3IPAMIVifZHHy8IYZo7anDzZDGph97GqXdRJTkygVgKkW
hydefu2Z5tL5bUukiwj1zSL2p/MiFlSI3ULXpF3a/ENJxHZxwTFcBfoXCz6SXxb4
9KlXEM9oiyl0WkA424CfXgVtv17ggBHQ10E5FFh3lD0a2HENImHJzjDF5CuH8p5h
5AhxOmzRffTHxgV1ieOCSJbzUN+w1blkFZdx5r5P1kUXu2adsflPLzeWKszwbUDY
3pUb8a2St5r8QQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 16:36:44 2026 by rpki-client