Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
File: 0Q44sLejPvOhbhVDNAKYfW1njaE.mft (raw, json)
Hash identifier: lulXDktiiN1Rv6gSAdMvq8WWc/HvNLQK2t6D29OKwyc=
Subject key identifier: 81:41:C3:05:E7:F4:A4:26:A0:6D:61:19:89:7D:9F:F1:AA:42:87:AA
Authority key identifier: D1:0E:38:B0:B7:A3:3E:F3:A1:6E:15:43:34:02:98:7D:6D:67:8D:A1
Certificate issuer: /CN=d10e38b0b7a33ef3a16e15433402987d6d678da1
Certificate serial: 019E1CEC0010251A443DA805D36F5E92CFA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
Manifest number: 15B0
Signing time: Tue 12 May 2026 16:01:28 +0000
Manifest this update: Tue 12 May 2026 16:01:28 +0000
Manifest next update: Wed 13 May 2026 16:01:28 +0000
Files and hashes: 1: 0Q44sLejPvOhbhVDNAKYfW1njaE.crl (hash: d2rb5HQHfmC9K9WJt42UT6wwboZ1MHKvRFH6F0rDA1w=)
2: phJ6M8N_zrI_IBZJHi5JECkFqfg.roa (hash: uo9pYnUB/RDMAdAyJLZVD99p6FFm8bpqEEb9g4ygjVw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:ec:00:10:25:1a:44:3d:a8:05:d3:6f:5e:92:cf:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d10e38b0b7a33ef3a16e15433402987d6d678da1
Validity
Not Before: May 12 16:01:28 2026 GMT
Not After : May 13 16:01:28 2026 GMT
Subject: CN=8141c305e7f4a426a06d6119897d9ff1aa4287aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c8:9e:86:ad:58:7b:32:15:e6:1e:9a:28:b0:
70:1f:79:4c:34:fc:f7:c3:6b:b4:1d:eb:d4:09:b3:
5e:64:86:e5:c1:62:74:dd:5f:6c:08:6f:2d:75:58:
26:95:04:19:90:40:b1:53:40:3c:e4:c5:42:e9:a7:
71:2c:34:33:c9:9c:e4:0b:0d:6f:05:e5:55:48:22:
40:68:38:4c:72:02:e7:ea:37:37:5e:0d:17:af:3f:
c5:f8:5e:49:a7:5f:50:2d:7a:9b:a2:b9:d4:dc:ce:
45:5b:b6:c9:7b:e8:a2:74:ba:cc:ba:86:76:b0:82:
c2:42:b4:22:43:38:5b:20:11:0e:27:ef:4b:27:ec:
ec:46:08:10:91:c1:56:8b:ca:75:37:87:a3:b8:e9:
7a:ae:6d:dd:43:a4:04:2d:2b:50:e3:2f:fb:7e:5b:
96:d8:a3:60:51:16:bc:8a:e6:9f:b4:bf:07:f7:5b:
a3:12:74:82:1d:9e:d2:40:75:0f:66:e3:02:0e:fe:
3a:b2:c0:61:48:74:3d:46:3b:81:b3:d2:47:5c:0f:
7f:16:ba:d2:8c:87:91:8a:a4:55:76:42:b7:e4:de:
bb:21:0f:49:6e:9d:cb:db:7a:23:57:ef:d6:e0:a6:
95:ef:fb:39:77:c8:62:ca:96:15:75:7b:d8:52:3a:
b4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:41:C3:05:E7:F4:A4:26:A0:6D:61:19:89:7D:9F:F1:AA:42:87:AA
X509v3 Authority Key Identifier:
keyid:D1:0E:38:B0:B7:A3:3E:F3:A1:6E:15:43:34:02:98:7D:6D:67:8D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:9e:02:49:1c:4d:10:64:10:b2:e8:2a:27:66:52:8e:7a:38:
65:c6:1b:0f:a9:31:39:06:bc:36:d4:13:83:03:a0:81:fc:cc:
78:95:ee:b4:8e:ca:86:d1:ca:b3:4c:83:16:f1:14:8a:02:18:
ad:ed:7f:d9:a2:3f:03:42:a9:b6:ea:ea:79:e8:2c:00:c6:ba:
b4:8a:dc:af:d1:e5:3b:ce:bd:bf:e2:d8:75:b7:0a:11:35:6b:
fd:be:31:69:4c:10:ae:07:41:b0:cd:29:20:96:29:68:9a:ce:
e9:13:c1:8c:c7:8b:0a:1a:b6:b6:d3:ac:c2:09:96:7b:96:62:
1e:c3:86:94:63:44:35:16:12:9a:4b:a3:5a:c7:ea:85:19:cc:
51:c8:52:65:e6:b4:f2:89:13:3e:9e:aa:90:76:aa:60:74:5a:
df:1c:73:5e:15:69:de:b0:7e:5e:ad:f0:45:7d:c9:94:29:ed:
a3:3d:17:b6:11:bb:3f:ea:02:3a:ec:c6:78:62:db:b8:ef:7f:
1a:b7:05:13:b7:ea:b7:31:2b:5a:26:3e:dd:a9:33:41:8e:ae:
87:3f:44:e6:b7:eb:59:e3:b3:49:db:76:54:93:e7:ff:78:1a:
41:07:cf:48:c6:79:7c:c1:90:f6:c7:0c:69:99:01:70:c9:c2:
d3:a6:75:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4c7AAQJRpEPagF029eks+hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxMGUzOGIwYjdhMzNlZjNhMTZlMTU0MzM0MDI5ODdkNmQ2
NzhkYTEwHhcNMjYwNTEyMTYwMTI4WhcNMjYwNTEzMTYwMTI4WjAzMTEwLwYDVQQD
Eyg4MTQxYzMwNWU3ZjRhNDI2YTA2ZDYxMTk4OTdkOWZmMWFhNDI4N2FhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk8iehq1YezIV5h6aKLBwH3lMNPz3
w2u0HevUCbNeZIblwWJ03V9sCG8tdVgmlQQZkECxU0A85MVC6adxLDQzyZzkCw1v
BeVVSCJAaDhMcgLn6jc3Xg0Xrz/F+F5Jp19QLXqbornU3M5FW7bJe+iidLrMuoZ2
sILCQrQiQzhbIBEOJ+9LJ+zsRggQkcFWi8p1N4ejuOl6rm3dQ6QELStQ4y/7fluW
2KNgURa8iuaftL8H91ujEnSCHZ7SQHUPZuMCDv46ssBhSHQ9RjuBs9JHXA9/FrrS
jIeRiqRVdkK35N67IQ9Jbp3L23ojV+/W4KaV7/s5d8hiypYVdXvYUjq0YQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIFBwwXn9KQmoG1hGYl9n/GqQoeqMB8GA1UdIwQY
MBaAFNEOOLC3oz7zoW4VQzQCmH1tZ42hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFE0NHNMZWpQdk9oYmhWRE5BS1lmVzFuamFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy8zZmEwOWEtZTg3NC00ZjM0LWJmNDUt
MmMwZWRhNzA2NjZhLzEvMFE0NHNMZWpQdk9oYmhWRE5BS1lmVzFuamFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy8zZmEwOWEtZTg3NC00ZjM0LWJmNDUtMmMwZWRhNzA2NjZh
LzEvMFE0NHNMZWpQdk9oYmhWRE5BS1lmVzFuamFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD54CSRxN
EGQQsugqJ2ZSjno4ZcYbD6kxOQa8NtQTgwOggfzMeJXutI7KhtHKs0yDFvEUigIY
re1/2aI/A0KpturqeegsAMa6tIrcr9HlO869v+LYdbcKETVr/b4xaUwQrgdBsM0p
IJYpaJrO6RPBjMeLChq2ttOswgmWe5ZiHsOGlGNENRYSmkujWsfqhRnMUchSZea0
8okTPp6qkHaqYHRa3xxzXhVp3rB+Xq3wRX3JlCntoz0XthG7P+oCOuzGeGLbuO9/
GrcFE7fqtzErWiY+3akzQY6uhz9E5rfrWeOzSdt2VJPn/3gaQQfPSMZ5fMGQ9scM
aZkBcMnC06Z1zw==
-----END CERTIFICATE-----
Generated at Wed May 13 01:34:53 2026 by rpki-client