Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft
File: De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft (raw, json)
Hash identifier: 72p7FRc2VKesfaj2VjXBJiaoWkIXLQaczG5igkc+oUQ=
Subject key identifier: 53:3D:3C:C3:14:DD:66:8E:AD:8B:BD:B5:B9:30:1C:9B:AB:6A:9F:06
Authority key identifier: 0D:ED:66:D2:C5:A4:93:A0:95:34:35:7E:5C:A2:6F:03:D1:A4:DD:D4
Certificate issuer: /CN=0ded66d2c5a493a09534357e5ca26f03d1a4ddd4
Certificate serial: 019E1E361CE598D348EDD296321C6B804A25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft
Manifest number: 0CF4
Signing time: Tue 12 May 2026 22:02:03 +0000
Manifest this update: Tue 12 May 2026 22:02:03 +0000
Manifest next update: Wed 13 May 2026 22:02:03 +0000
Files and hashes: 1: De1m0sWkk6CVNDV-XKJvA9Gk3dQ.crl (hash: nVeyxiZZEPFvIaTxpnl0YQ7l0bGiRgyi6foDWWxOzTw=)
2: SbbT_vemLYhSpPxloUrfpgEATIA.roa (hash: TxqN78AgB7Nz/Wz8KEGfJojT7Yd8MRSlYTLQkCNBIXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:36:1c:e5:98:d3:48:ed:d2:96:32:1c:6b:80:4a:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ded66d2c5a493a09534357e5ca26f03d1a4ddd4
Validity
Not Before: May 12 22:02:03 2026 GMT
Not After : May 13 22:02:03 2026 GMT
Subject: CN=533d3cc314dd668ead8bbdb5b9301c9bab6a9f06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:46:9a:7c:ba:d3:8d:7a:74:b5:5d:36:59:fa:
c7:cf:98:20:d4:27:fd:63:d2:08:97:7c:8d:05:5a:
be:5c:c6:22:a0:e2:66:40:d4:75:5b:e1:63:21:9c:
83:5c:f5:dc:79:d7:22:05:62:a7:22:bd:df:63:1d:
3f:39:a7:72:a3:fe:a9:8e:ff:b5:d3:4d:34:a5:96:
58:7b:d8:aa:1a:48:12:c8:d0:e5:69:e6:b3:30:e7:
13:1e:63:fe:8c:ab:dc:2e:8a:c8:f3:b2:c1:c5:9b:
60:80:6f:33:e3:96:a9:42:da:ff:d9:9e:d5:67:7b:
3a:41:d5:8a:e0:83:c1:d8:f6:24:c8:a9:e8:47:72:
8f:72:4a:a1:9f:81:31:6c:83:d2:a2:57:94:00:2b:
4a:eb:cd:0c:a1:1a:11:0f:c8:0f:12:d1:6b:0a:55:
f6:5b:77:4d:43:b0:5b:96:ad:94:cb:33:d4:b2:de:
09:0a:10:49:e6:0f:9f:10:63:03:98:e1:9e:5c:da:
7a:45:be:00:54:41:fa:d7:7b:8c:84:e2:a8:a0:00:
4d:0c:cc:87:75:ad:f2:2a:2f:f1:c6:78:83:1b:91:
f5:c6:f3:7d:06:b1:ca:b6:aa:15:6e:09:c8:60:71:
0e:6e:f3:c7:55:70:70:28:41:05:37:19:00:1b:e5:
ea:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:3D:3C:C3:14:DD:66:8E:AD:8B:BD:B5:B9:30:1C:9B:AB:6A:9F:06
X509v3 Authority Key Identifier:
keyid:0D:ED:66:D2:C5:A4:93:A0:95:34:35:7E:5C:A2:6F:03:D1:A4:DD:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:0a:47:af:77:66:b5:ac:6f:23:7d:87:47:c2:73:ae:59:c4:
ef:11:f6:83:58:9e:9a:69:47:b6:67:3f:6e:2b:35:e7:0a:8c:
32:1e:cd:d1:8a:70:3e:68:56:b5:87:47:3b:3c:3a:b4:61:94:
4e:10:2d:84:ed:7e:18:d6:8b:2a:43:8b:4f:d3:61:99:41:ad:
a6:77:ae:6d:d9:de:50:8e:5f:18:0a:08:db:76:03:1e:ee:54:
c0:3a:f8:3f:57:8b:a3:2d:92:a0:a3:a8:6a:89:97:0c:cc:fb:
55:97:b6:50:d6:6f:dc:3e:19:b4:87:53:ec:e9:00:18:c5:75:
55:81:2d:1c:56:91:27:9d:69:d1:48:c5:47:07:01:93:dc:fd:
4e:ce:de:f3:94:d9:af:eb:70:8b:4b:ed:99:f6:9b:47:ba:5f:
24:ab:56:3a:0e:a0:11:20:a1:6f:ff:3a:2b:19:b7:b9:b3:33:
23:18:96:0a:dc:cd:0d:11:3e:62:9f:8e:d7:78:84:57:23:21:
d6:22:64:ad:35:6e:9c:6c:b9:5a:4f:da:31:66:47:05:33:95:
cd:75:82:db:24:c3:d7:92:e6:08:7b:d3:fa:46:c4:8b:57:a7:
53:f5:c8:7b:31:5b:fb:37:09:69:f8:66:a8:49:a7:cd:e3:52:
05:bf:bc:4d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4eNhzlmNNI7dKWMhxrgEolMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkZWQ2NmQyYzVhNDkzYTA5NTM0MzU3ZTVjYTI2ZjAzZDFh
NGRkZDQwHhcNMjYwNTEyMjIwMjAzWhcNMjYwNTEzMjIwMjAzWjAzMTEwLwYDVQQD
Eyg1MzNkM2NjMzE0ZGQ2NjhlYWQ4YmJkYjViOTMwMWM5YmFiNmE5ZjA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0aafLrTjXp0tV02WfrHz5gg1Cf9
Y9IIl3yNBVq+XMYioOJmQNR1W+FjIZyDXPXcedciBWKnIr3fYx0/Oadyo/6pjv+1
0000pZZYe9iqGkgSyNDlaeazMOcTHmP+jKvcLorI87LBxZtggG8z45apQtr/2Z7V
Z3s6QdWK4IPB2PYkyKnoR3KPckqhn4ExbIPSoleUACtK680MoRoRD8gPEtFrClX2
W3dNQ7Bblq2UyzPUst4JChBJ5g+fEGMDmOGeXNp6Rb4AVEH613uMhOKooABNDMyH
da3yKi/xxniDG5H1xvN9BrHKtqoVbgnIYHEObvPHVXBwKEEFNxkAG+XqvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFM9PMMU3WaOrYu9tbkwHJurap8GMB8GA1UdIwQY
MBaAFA3tZtLFpJOglTQ1flyibwPRpN3UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGUxbTBzV2trNkNWTkRWLVhLSnZBOUdrM2RRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9kOWNjNWItZjg2OC00M2ZlLTljNWMt
MzdiOTZmZmJhNzZhLzEvRGUxbTBzV2trNkNWTkRWLVhLSnZBOUdrM2RRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9kOWNjNWItZjg2OC00M2ZlLTljNWMtMzdiOTZmZmJhNzZh
LzEvRGUxbTBzV2trNkNWTkRWLVhLSnZBOUdrM2RRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxApHr3dm
taxvI32HR8JzrlnE7xH2g1iemmlHtmc/bis15wqMMh7N0YpwPmhWtYdHOzw6tGGU
ThAthO1+GNaLKkOLT9NhmUGtpneubdneUI5fGAoI23YDHu5UwDr4P1eLoy2SoKOo
aomXDMz7VZe2UNZv3D4ZtIdT7OkAGMV1VYEtHFaRJ51p0UjFRwcBk9z9Ts7e85TZ
r+twi0vtmfabR7pfJKtWOg6gESChb/86Kxm3ubMzIxiWCtzNDRE+Yp+O13iEVyMh
1iJkrTVunGy5Wk/aMWZHBTOVzXWC2yTD15LmCHvT+kbEi1enU/XIezFb+zcJafhm
qEmnzeNSBb+8TQ==
-----END CERTIFICATE-----
Generated at Wed May 13 07:37:27 2026 by rpki-client