Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
File: 0PT6gHWHU7JDohZe3ep12-7oJsQ.mft (raw, json)
Hash identifier: MzCChGND5mBsNzPUX0Wv66qPts6AEL6cUdW2lrPnB4w=
Subject key identifier: 3B:E4:95:5B:B9:04:DE:B5:10:15:A5:18:C9:88:64:F7:93:03:E4:BC
Authority key identifier: D0:F4:FA:80:75:87:53:B2:43:A2:16:5E:DD:EA:75:DB:EE:E8:26:C4
Certificate issuer: /CN=d0f4fa80758753b243a2165eddea75dbeee826c4
Certificate serial: 019E1C4743DFC3ED74CCED9198C81DA1DD33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
Manifest number: 13F1
Signing time: Tue 12 May 2026 13:01:32 +0000
Manifest this update: Tue 12 May 2026 13:01:32 +0000
Manifest next update: Wed 13 May 2026 13:01:32 +0000
Files and hashes: 1: 0PT6gHWHU7JDohZe3ep12-7oJsQ.crl (hash: FK6amuNx/ed7sqT7+XsooDcGuC7QzNLebNgbohUA9u0=)
2: pLi1qq2wcSmdgCiUnjjCoQErQdA.roa (hash: 7prO26MADaOtqZ/YBeNHajM4pUEvbdbYtkMA592/T+U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 13:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:47:43:df:c3:ed:74:cc:ed:91:98:c8:1d:a1:dd:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0f4fa80758753b243a2165eddea75dbeee826c4
Validity
Not Before: May 12 13:01:32 2026 GMT
Not After : May 13 13:01:32 2026 GMT
Subject: CN=3be4955bb904deb51015a518c98864f79303e4bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:97:9a:14:65:34:ca:94:03:25:f2:c0:f5:2a:
c3:67:56:1d:80:cd:c9:84:54:b3:ba:6d:de:ef:5d:
97:1e:df:65:bc:72:2c:21:9e:58:3f:28:69:af:85:
84:a8:f8:63:18:5d:7e:09:3a:c0:c2:da:b6:46:13:
7f:3b:e9:b9:f5:0f:ab:f7:8d:61:cc:0b:ee:7e:df:
46:54:a5:48:64:18:40:bc:72:49:49:5f:d2:07:54:
1f:d6:aa:38:8a:8b:04:67:25:44:a8:2a:1b:3a:71:
d0:11:e5:2a:cb:dd:ad:87:d3:b7:70:f6:f1:2f:30:
3b:76:86:25:87:53:c4:7a:d2:f7:6b:7e:3f:2f:66:
58:3a:99:dc:92:e6:16:d0:e9:06:42:b6:66:b2:5b:
c8:21:3a:3c:ac:2c:e9:47:83:d0:8f:b0:14:1d:08:
38:ab:5e:ce:86:27:41:c1:95:8d:bc:1a:45:80:d8:
32:47:2c:61:e2:db:ad:1f:12:30:d5:e2:06:ba:9f:
5e:8c:08:ab:a7:32:97:09:08:60:91:86:b1:e0:be:
4d:9b:b1:14:0f:e2:c2:92:13:92:aa:9c:c9:17:f8:
25:fd:78:ed:fb:d0:52:6e:1b:2f:32:57:18:1e:0f:
87:66:10:37:67:2b:e6:17:75:b7:7e:02:0c:72:20:
34:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:E4:95:5B:B9:04:DE:B5:10:15:A5:18:C9:88:64:F7:93:03:E4:BC
X509v3 Authority Key Identifier:
keyid:D0:F4:FA:80:75:87:53:B2:43:A2:16:5E:DD:EA:75:DB:EE:E8:26:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:a1:09:12:de:c3:bd:33:80:b0:cd:e5:67:54:fc:cb:d9:b2:
e6:3a:64:f8:f8:e3:13:09:0b:09:09:d9:21:7f:5f:f8:f3:83:
ad:cd:3f:b7:3b:04:f3:e6:82:15:a5:8e:88:af:c7:4a:72:e9:
e0:c5:08:17:fa:d4:71:20:03:69:6f:a1:6a:3c:5e:fe:27:9d:
35:15:78:d4:44:da:d3:08:02:6f:0b:dc:4c:ab:10:9c:d0:5c:
cc:14:a2:41:8e:c1:c8:11:9f:85:28:25:86:08:fa:7b:be:ca:
e7:19:74:5e:19:0e:a4:78:0c:e3:33:e6:8b:10:65:d8:58:0b:
44:2e:cb:73:eb:67:04:a7:74:2d:aa:eb:b7:24:00:c5:08:03:
22:80:d2:a2:1d:03:3b:61:e7:0f:fe:6a:b3:a5:13:60:8b:f4:
5d:ea:9c:fb:bb:2f:60:08:1a:97:00:ee:c2:38:df:88:66:01:
1a:81:8c:4d:32:74:53:a0:cc:47:c9:1e:50:c6:c7:03:f2:90:
76:e2:9b:b1:92:4e:0f:42:16:a1:8b:9d:61:f5:c3:43:78:f1:
a0:64:30:f9:6f:a2:46:4f:23:4f:da:e0:90:78:05:2a:58:b1:
43:9f:be:bf:2e:2d:ff:0b:12:2d:8d:2d:90:48:6a:7a:be:1c:
aa:fc:d6:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:02:09 2026 by rpki-client