Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
File: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft (raw, json)
Hash identifier: 3VeffsSQEFA5hfjZ+MEEFmDOElkd1ZE6L3q8qFRiLz0=
Subject key identifier: A3:02:C6:59:98:94:D5:C8:6A:C1:F4:83:19:AD:A9:9F:02:0B:BF:D2
Authority key identifier: D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
Certificate issuer: /CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Certificate serial: 019E1F483C904F242A4F8796267D9DDC7767
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
Manifest number: 12CF
Signing time: Wed 13 May 2026 03:01:28 +0000
Manifest this update: Wed 13 May 2026 03:01:28 +0000
Manifest next update: Thu 14 May 2026 03:01:28 +0000
Files and hashes: 1: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl (hash: AzPRUqNoNGaaNmsZO30CtVpr+6wAM9iJMEK7BMgTsZs=)
2: OgtLPNJMhUcc3a3Q9gVgb_uUcTU.roa (hash: W+gl2jZGWcmgxMC+cnSTgyo7gRfrRZB5RZkp77uUONU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:48:3c:90:4f:24:2a:4f:87:96:26:7d:9d:dc:77:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Validity
Not Before: May 13 03:01:28 2026 GMT
Not After : May 14 03:01:28 2026 GMT
Subject: CN=a302c6599894d5c86ac1f48319ada99f020bbfd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c4:8c:ff:14:4f:a6:2f:19:eb:a8:2d:e6:b8:
d5:e2:88:6b:41:c4:fc:3f:f4:5d:20:6b:8c:4b:bb:
0b:24:c0:ab:91:98:6d:64:40:40:bd:41:29:ab:b1:
13:8c:e0:a3:78:79:86:1a:5f:58:28:60:18:ef:d2:
91:6b:65:8a:df:15:d8:94:43:de:c4:be:d5:06:06:
17:89:6e:de:c7:5a:b9:6f:87:38:13:fb:8e:0f:eb:
90:53:95:fa:b2:9b:1c:f1:7e:46:bc:42:08:a0:d5:
49:84:b3:84:c9:f4:60:96:65:46:6e:05:0e:e5:35:
dd:f6:e5:f9:d4:e8:0f:97:4b:ba:02:78:74:26:24:
5f:2b:64:fb:9c:71:4b:19:d8:42:42:5c:a4:9e:7e:
be:9c:49:18:6e:2d:fa:90:eb:0a:5e:6f:d5:d4:3e:
89:c9:7b:86:2b:05:0c:9c:a8:63:9e:28:48:ca:ab:
a7:d0:73:42:7a:a9:35:34:97:2c:fa:cc:5b:e9:93:
90:eb:ff:fd:c6:41:49:d5:d6:91:d9:5a:f4:5c:eb:
72:be:50:4d:be:3c:31:55:38:96:e6:01:6b:01:4c:
ab:e4:79:eb:ff:d4:6a:d0:67:3a:4a:77:75:a9:b4:
d9:8f:4e:fb:cc:96:8e:6f:e6:c4:5b:48:8c:76:48:
43:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:02:C6:59:98:94:D5:C8:6A:C1:F4:83:19:AD:A9:9F:02:0B:BF:D2
X509v3 Authority Key Identifier:
keyid:D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:da:5f:13:9e:4b:6c:52:db:a7:2b:6e:9b:20:5b:9d:f1:e8:
55:58:1d:e3:30:69:1c:1d:14:7e:f8:47:14:25:b0:eb:51:8a:
86:1a:55:80:af:bd:d9:f3:12:e8:5e:92:5b:d1:cf:96:ef:cf:
9d:dd:c8:34:e8:b5:79:19:fc:c0:3d:c9:c5:bb:30:bb:74:81:
6e:fd:33:30:a8:34:32:aa:4d:c0:49:e4:e2:88:2b:86:09:d0:
fd:91:ee:22:9d:f9:de:df:c0:45:d6:9e:de:d4:67:35:26:3a:
f1:22:92:e9:ef:23:78:42:ad:cf:8b:6b:a9:6f:a9:5d:7a:4d:
20:64:eb:f2:41:a1:62:78:cf:f0:e9:7e:d3:68:b8:a0:32:db:
a4:9c:ee:0b:b9:d0:98:20:47:43:67:54:39:c7:48:e1:5f:a4:
87:d3:9f:8d:d5:8c:0f:66:f9:e0:ab:a0:7f:24:56:76:43:60:
bb:c4:b9:10:27:9b:ec:13:b2:ba:2d:a7:68:94:d2:e2:a4:8e:
93:10:8e:db:ff:be:ad:a2:ac:e0:78:38:10:3d:9e:b1:f8:30:
b8:fb:1c:3a:a7:7f:d6:97:ef:67:c9:5f:8f:b8:d0:92:33:c0:
e1:bb:5e:1f:54:34:2f:44:d1:38:46:56:9e:54:ed:a2:f0:dd:
92:57:d8:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:06:17 2026 by rpki-client