Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
File: 0KpKGno60j-q4q6un6YZTwISgSk.mft (raw, json)
Hash identifier: 9XP6ZLsoGre/WWYzMSQLhZrcpXAxqpcshpOE3bRPMxk=
Subject key identifier: 9D:A6:FB:55:12:DA:45:0B:A7:F6:AD:B7:B2:5C:45:75:D6:00:9E:89
Authority key identifier: D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29
Certificate issuer: /CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129
Certificate serial: 019E1C7D7719ADA736ACB79A96634A1D8507
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
Manifest number: 0521
Signing time: Tue 12 May 2026 14:00:44 +0000
Manifest this update: Tue 12 May 2026 14:00:44 +0000
Manifest next update: Wed 13 May 2026 14:00:44 +0000
Files and hashes: 1: 0KpKGno60j-q4q6un6YZTwISgSk.crl (hash: tr9CMKRJ5nEniVJsvJEl7ln4lvGVLBLAfS20RjBZKAE=)
2: 0r4BvsnJAN2Pz40prPoUEy6WvzU.roa (hash: AamdQ0j/vjkbuVtweF8p9JDSZ2i84cCde/Gwvcvf218=)
3: 5bf5CwJmQOVXufa2Bw359AZEO9s.roa (hash: vE+kqAcM+EoC006Mvnftc/u8n7NMMiAT3ni4cuysV1M=)
4: epNTET6BvQ6zhUMoLdSPzHjbIWE.roa (hash: qxvi55+BDN0SED0a/Y9HgRfeWegI7IGQUucmOAr178Y=)
5: ncOZbEMiJNqjiscavpDBkZeriIg.roa (hash: KP4yleOLVWJhJdzAKqGM+QLwSbZEncnkoAH1TNTBzJs=)
6: oS9h716veeRY1y9kuFn-MIGUEBg.roa (hash: KS+2BIj/1oDD8HcECr/uPYIsA+2SUgLQkBkCEiNQnZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:7d:77:19:ad:a7:36:ac:b7:9a:96:63:4a:1d:85:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129
Validity
Not Before: May 12 14:00:44 2026 GMT
Not After : May 13 14:00:44 2026 GMT
Subject: CN=9da6fb5512da450ba7f6adb7b25c4575d6009e89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:6f:33:43:d6:73:fa:34:e4:d1:66:65:bd:7a:
3a:f9:d0:d3:42:d7:42:6a:4b:80:b6:6a:54:62:05:
da:d2:af:fb:d7:7c:ac:df:c7:bf:ba:5a:b1:10:56:
ca:d5:91:40:a6:d2:13:5c:be:88:4d:e9:0b:f5:4f:
01:52:14:a3:32:c3:dd:98:63:fe:f6:3d:45:d5:53:
8d:79:08:79:cf:95:5a:ac:b3:29:89:ef:c1:dd:d3:
60:0c:da:13:da:f8:1b:cd:52:45:71:56:e9:e1:cf:
31:35:6b:c5:04:0d:83:39:c1:f7:c9:2e:2b:49:33:
c0:5c:16:da:26:4d:9a:dc:2b:ca:d1:9b:5a:f0:fa:
3a:98:e0:d9:a7:33:cc:d2:e0:0e:de:01:38:e3:a7:
fe:fa:a3:92:3e:66:24:a4:f2:b6:9f:ad:93:f7:8b:
86:3a:64:e5:3a:d9:e4:e0:1f:95:11:40:f9:56:87:
66:0d:69:4b:f5:d4:46:a5:3d:a4:5d:1c:2a:a5:50:
8c:fd:04:7e:2e:84:e7:ca:2a:e6:99:51:5b:09:7f:
17:3a:29:e9:0d:05:fa:79:95:67:a2:c9:fe:a2:13:
b5:56:57:d5:c6:74:b4:b6:fe:b4:71:5c:fb:fa:82:
8f:54:10:3f:06:ec:8d:07:c9:ea:72:bc:af:58:88:
cb:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:A6:FB:55:12:DA:45:0B:A7:F6:AD:B7:B2:5C:45:75:D6:00:9E:89
X509v3 Authority Key Identifier:
keyid:D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:be:86:22:35:7d:f0:9c:48:a3:ed:b0:e6:f0:b7:a1:d8:62:
d9:cd:13:0b:ac:3d:33:4b:b0:69:5f:6f:00:ca:30:f8:ef:59:
00:3e:49:95:da:e0:e3:0c:ba:7c:92:0f:ef:96:c2:8e:82:e4:
db:f0:45:50:38:ed:dd:d0:13:08:3a:5b:90:62:5c:62:b5:07:
7b:c8:45:2c:e4:ff:f9:9f:6b:b9:3d:97:2e:ef:ca:a7:04:fd:
b5:3d:8a:85:82:c2:d5:8c:b6:87:01:fc:e6:3e:13:7e:42:23:
71:12:39:be:fe:5f:80:27:92:36:c0:cc:fc:de:8e:ac:f0:e9:
7a:4a:72:67:ed:91:42:f2:6e:e2:20:a1:10:a5:eb:df:d9:de:
86:3f:2a:c6:3d:36:34:80:20:2e:8c:71:68:b8:b9:8f:3d:fd:
50:f0:05:5d:77:89:23:d4:8f:61:83:b5:e0:6d:cf:f3:8f:32:
e1:b2:8a:db:45:41:aa:fb:81:c0:76:f2:2d:04:1b:db:d0:c1:
b0:be:54:85:57:6b:98:f7:ac:62:f7:3e:9d:4b:25:ee:6b:c2:
bc:47:ff:80:dc:fe:a8:ff:3d:3f:4c:38:11:f9:a7:74:66:84:
e2:51:14:f1:75:63:22:27:29:aa:aa:f6:2c:d2:4d:53:be:94:
ea:79:33:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:14:31 2026 by rpki-client