Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
File: d0HROhWph91gAZwCZdLs7EhAlEo.mft (raw, json)
Hash identifier: 8rByyMYk2Sivu8/QcTcz3z1DYWzIFV3uPHDxcGrYgwI=
Subject key identifier: 68:9A:7F:72:AB:FF:4F:34:86:68:ED:30:C3:68:95:0A:4F:C5:ED:E2
Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
Certificate issuer: /CN=7741d13a15a987dd60019c0265d2ecec4840944a
Certificate serial: 019E1FED2D82A905CF5812CC7EF46CB3FC68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
Manifest number: 0A1B
Signing time: Wed 13 May 2026 06:01:37 +0000
Manifest this update: Wed 13 May 2026 06:01:37 +0000
Manifest next update: Thu 14 May 2026 06:01:37 +0000
Files and hashes: 1: 2aVju54fgg9bD1JRsSNN37U-9Hk.roa (hash: gQ2ZXX3Kuvxj5T+dbec4hU1fv3yACHxOQmVvGeAb560=)
2: d0HROhWph91gAZwCZdLs7EhAlEo.crl (hash: xjKO4i6y4/PpvWVLG2ksDn1Jy30p6j7+VWkFBKD5e7s=)
3: sRYXppUiSNJrW5d1MVXqJ1v0U0g.roa (hash: e8cW0JrKBdNEagEPQSlGciScba5vYX0jEPFos43/Uno=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ed:2d:82:a9:05:cf:58:12:cc:7e:f4:6c:b3:fc:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a
Validity
Not Before: May 13 06:01:37 2026 GMT
Not After : May 14 06:01:37 2026 GMT
Subject: CN=689a7f72abff4f348668ed30c368950a4fc5ede2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ff:79:a9:90:0d:f7:ac:57:60:18:fc:25:5a:
8c:a3:89:6e:15:4d:e4:86:f7:06:6f:68:b4:ed:af:
2b:a7:9d:80:f6:f9:10:35:3f:6f:20:38:28:3b:3e:
da:d3:3a:c3:1f:c6:13:e9:0e:30:9b:56:77:da:cc:
f8:fb:c1:f7:34:6a:15:7c:4a:e4:a6:9e:7b:7f:ac:
1f:87:6a:9a:fb:eb:48:9c:17:86:53:33:70:96:38:
f6:2e:61:46:76:80:08:4a:f3:c7:49:98:6b:0e:1f:
68:79:2c:98:59:4e:0a:4d:08:3b:26:7d:90:7d:9c:
0a:9b:a4:cc:b5:a4:b4:4e:b1:5a:a0:39:98:46:09:
b2:ae:90:dd:34:cb:cd:86:a4:66:4a:e1:e2:3b:3f:
a5:d9:13:55:e7:f9:93:33:81:aa:2e:9b:63:83:c9:
6f:0f:8b:85:3f:4a:95:d5:f4:f0:5e:6a:f8:df:ef:
43:ed:86:95:63:8f:b3:af:64:77:a9:00:50:ef:75:
ed:25:94:ac:61:61:7c:ee:00:00:3b:a3:e4:74:51:
68:69:66:fb:f0:de:64:2d:14:05:87:81:5b:8c:e5:
3e:90:2a:e8:64:d1:82:27:f4:d6:db:15:61:0a:52:
68:0b:50:35:ce:e7:12:dd:37:5c:2c:d4:4a:dd:da:
2a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:9A:7F:72:AB:FF:4F:34:86:68:ED:30:C3:68:95:0A:4F:C5:ED:E2
X509v3 Authority Key Identifier:
keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:4e:f8:0d:0e:d2:94:e3:40:0a:78:a2:94:2c:0f:e1:22:01:
6b:55:54:18:f3:03:fa:db:66:a3:5b:84:a5:42:10:c1:7e:cb:
0d:5b:ba:42:b7:5a:ff:e7:95:d2:a5:66:9b:d4:e9:44:cc:fa:
c3:e5:eb:7e:59:e7:8d:74:63:fa:2f:67:d4:78:50:53:1c:18:
28:91:82:92:13:99:37:7d:34:b0:47:72:99:bb:ea:ca:6a:50:
7a:59:90:b3:f7:7c:20:53:0e:d4:d1:d1:87:15:31:a6:71:08:
3f:22:77:f9:3a:10:53:b6:3a:84:41:de:d0:27:d3:e8:e8:55:
fb:fd:d1:d5:48:55:1a:c2:3c:bb:cf:4d:23:e9:6a:0f:99:7f:
4c:d8:4c:c9:37:db:7d:3d:d4:b2:a8:ab:22:9b:91:5b:48:f8:
e7:c4:eb:c1:f9:07:ed:ed:3d:42:a2:79:70:dc:4b:c0:88:47:
f9:2b:4f:ea:76:d4:ca:55:99:1a:23:8a:c4:78:33:b1:4d:b3:
64:6b:2c:c6:76:7e:0a:9f:45:44:f5:a4:7f:03:d0:0b:b5:25:
08:9f:d1:cb:7b:34:bf:92:55:df:42:c5:79:90:35:51:75:9f:
7d:62:53:7a:b0:a9:82:8a:c0:64:49:bf:2d:d8:cc:10:4b:f9:
8e:de:63:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:53:10 2026 by rpki-client