Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/c5cd96-b9d2-434b-a431-1c35fbce9616/1/0ZHOrh_4itqODi-VUGddFTMokeQ.mft
File: 0ZHOrh_4itqODi-VUGddFTMokeQ.mft (raw, json)
Hash identifier: Fsvy96VgV8A0t+ALi+qpZiO+OcnvLQ8r68ePS/eOrR0=
Subject key identifier: 20:9A:A5:4E:D0:C1:9B:D6:15:84:C0:F0:14:59:B2:79:50:A6:68:C3
Authority key identifier: D1:91:CE:AE:1F:F8:8A:DA:8E:0E:2F:95:50:67:5D:15:33:28:91:E4
Certificate issuer: /CN=d191ceae1ff88ada8e0e2f9550675d15332891e4
Certificate serial: 019E1CB4EF2A08965BD2E0E4A8B59997AA5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ZHOrh_4itqODi-VUGddFTMokeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/c5cd96-b9d2-434b-a431-1c35fbce9616/1/0ZHOrh_4itqODi-VUGddFTMokeQ.mft
Manifest number: 012B
Signing time: Tue 12 May 2026 15:01:20 +0000
Manifest this update: Tue 12 May 2026 15:01:20 +0000
Manifest next update: Wed 13 May 2026 15:01:20 +0000
Files and hashes: 1: 0ZHOrh_4itqODi-VUGddFTMokeQ.crl (hash: 6j6XcqzuLunELEvX1tCEDLD/5SRZdUpN5QV8F2gtxIs=)
2: _VYu2mv6bKW7U-bqoazVPbuNZw0.roa (hash: jBfKqmXGL7y6Zilv4tkveGpy7JudLuPoH0FpKfvCBu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/c5cd96-b9d2-434b-a431-1c35fbce9616/1/0ZHOrh_4itqODi-VUGddFTMokeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/c5cd96-b9d2-434b-a431-1c35fbce9616/1/0ZHOrh_4itqODi-VUGddFTMokeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0ZHOrh_4itqODi-VUGddFTMokeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b4:ef:2a:08:96:5b:d2:e0:e4:a8:b5:99:97:aa:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d191ceae1ff88ada8e0e2f9550675d15332891e4
Validity
Not Before: May 12 15:01:20 2026 GMT
Not After : May 13 15:01:20 2026 GMT
Subject: CN=209aa54ed0c19bd61584c0f01459b27950a668c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e8:08:45:db:91:47:de:46:de:94:c8:b9:e8:
92:d3:e3:8b:bb:3e:5a:37:4b:5c:37:e4:7d:fb:73:
9f:fa:80:09:59:74:1a:df:32:8a:30:72:a5:b9:e5:
b0:11:ad:9d:b7:28:72:aa:43:3c:11:ea:31:f8:0b:
11:5e:87:7a:2b:93:c5:ee:71:e4:7b:51:40:70:48:
d0:b6:4d:74:af:81:1a:0f:9f:11:8c:c0:f9:65:44:
e3:a7:b3:c0:06:39:28:a1:1e:a6:af:a4:69:62:6a:
8e:d4:63:95:60:36:71:b8:6a:ef:95:e4:0a:6e:d1:
d4:4f:fb:7f:16:a1:dd:96:89:ed:b3:d2:47:a8:67:
55:70:bf:fd:3c:be:4a:d5:8b:5b:da:7f:d5:98:6f:
50:04:62:50:75:bd:ae:e8:b1:c1:3f:41:8c:d2:73:
f4:ef:5a:ce:f5:92:4b:01:ba:96:0d:94:65:9a:9a:
e6:3e:a8:9d:e2:05:b4:d6:0e:bb:f4:93:b7:c5:64:
ad:a9:bb:03:df:09:3a:a5:fc:53:eb:f2:a2:6d:6f:
d6:42:27:5d:3c:a8:08:2a:97:ae:d5:5a:e7:44:73:
47:9e:64:d5:9e:e3:37:c8:ad:5d:04:04:ac:59:7d:
38:73:eb:7c:6a:28:52:70:79:4d:f8:be:f9:b0:4c:
b1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:9A:A5:4E:D0:C1:9B:D6:15:84:C0:F0:14:59:B2:79:50:A6:68:C3
X509v3 Authority Key Identifier:
keyid:D1:91:CE:AE:1F:F8:8A:DA:8E:0E:2F:95:50:67:5D:15:33:28:91:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ZHOrh_4itqODi-VUGddFTMokeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c5cd96-b9d2-434b-a431-1c35fbce9616/1/0ZHOrh_4itqODi-VUGddFTMokeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c5cd96-b9d2-434b-a431-1c35fbce9616/1/0ZHOrh_4itqODi-VUGddFTMokeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:99:f3:1c:4f:d7:10:86:1d:22:4f:ff:27:7f:44:13:b3:96:
72:4c:b9:0a:6f:1c:b4:94:df:e8:f3:36:d9:27:1f:57:f7:3e:
46:70:7d:fd:3b:61:89:da:dc:8a:20:fd:00:d5:39:74:a0:8a:
7d:10:1b:28:78:e8:d5:82:30:c2:e2:63:8c:a8:f9:d4:1b:36:
6d:5b:1a:d5:e2:7b:55:b2:ee:08:1c:72:82:ca:f9:12:7e:86:
91:be:55:cf:f5:5d:0f:85:ec:12:43:10:aa:de:29:0c:fc:bd:
6b:1e:8d:89:ad:cd:cc:57:21:aa:30:84:13:dd:ab:7b:8e:ad:
dd:e0:03:5b:4f:68:3c:1d:67:58:e4:71:61:d4:d8:c3:0a:bb:
22:3d:2a:e6:e1:28:5f:8b:0c:4a:a2:31:6b:1e:ad:ca:ff:cc:
5e:3d:30:34:f5:5d:c1:d0:3c:80:12:48:a6:d2:91:f5:71:82:
f9:60:1e:39:70:b9:1a:33:83:c9:66:15:83:20:4b:b8:b3:9c:
ef:07:d4:1b:b9:c1:76:ff:7b:15:ef:90:4b:63:8e:37:61:57:
3b:58:34:69:ba:6c:b8:44:b3:77:a3:9b:5d:74:01:f9:47:b8:
3a:cc:6a:06:b6:17:a1:be:6a:09:d1:28:70:20:b5:ea:70:76:
a5:e1:82:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:13:43 2026 by rpki-client