Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
File: 0mHPvAfsMGN33LFql6EWDHptgsw.mft (raw, json)
Hash identifier: rwMbaWm74UnXMrKJxF2+dfJbrN1v1VxFL/96cJoQUBM=
Subject key identifier: D1:F9:25:C4:C0:80:28:DE:1A:3F:BF:5D:10:EF:DF:42:C9:E3:47:11
Authority key identifier: D2:61:CF:BC:07:EC:30:63:77:DC:B1:6A:97:A1:16:0C:7A:6D:82:CC
Certificate issuer: /CN=d261cfbc07ec306377dcb16a97a1160c7a6d82cc
Certificate serial: 019E1D22A905DCA29EA517B6FECCD5E4FDBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
Manifest number: 0547
Signing time: Tue 12 May 2026 17:01:11 +0000
Manifest this update: Tue 12 May 2026 17:01:11 +0000
Manifest next update: Wed 13 May 2026 17:01:11 +0000
Files and hashes: 1: 0mHPvAfsMGN33LFql6EWDHptgsw.crl (hash: HJUniVdQvgPn+MAGbY5LRIyUuajmtktRwKedg2cgP24=)
2: p0fL_-s25OijH9UglPLyGf3hQ3k.roa (hash: sp4Y+8h1IocJtG1a3SfrXHCpPOK9+n80lPdEb2+Nl4c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:a9:05:dc:a2:9e:a5:17:b6:fe:cc:d5:e4:fd:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d261cfbc07ec306377dcb16a97a1160c7a6d82cc
Validity
Not Before: May 12 17:01:11 2026 GMT
Not After : May 13 17:01:11 2026 GMT
Subject: CN=d1f925c4c08028de1a3fbf5d10efdf42c9e34711
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f1:80:8b:04:ef:a8:e8:11:a0:e9:8d:e8:5c:
ea:72:c7:08:eb:73:65:1c:14:4b:4a:78:d6:0f:f8:
b4:1c:e9:ce:25:05:0f:bf:8f:5f:db:88:18:10:fe:
67:42:01:91:ea:9b:88:e0:41:25:d1:64:8a:a7:14:
b3:b4:a2:b5:99:1e:81:39:f9:5c:a9:07:31:9f:b9:
31:d9:1d:b1:9f:71:44:dd:ba:3d:cd:1b:31:20:8f:
94:f0:ea:96:81:a5:d0:55:05:4e:61:0f:98:ab:d5:
c0:93:47:bb:2d:f5:a0:4c:0c:1a:5b:31:0b:a7:ad:
f9:05:98:f5:36:43:87:ff:6b:43:f7:5e:1c:0e:de:
4e:1f:44:c8:1b:3f:c1:ae:c5:c0:ea:14:07:68:8b:
7b:d8:9c:8c:21:bf:af:5b:4f:88:56:85:48:8b:f4:
5e:38:ed:bc:b0:cd:62:55:19:f9:93:01:1a:90:24:
d4:c1:aa:1e:ff:ad:be:46:5d:c1:90:c3:17:b2:ae:
bd:f5:68:eb:81:f9:39:8a:34:da:d0:f0:c3:dc:90:
d4:9e:24:80:d8:ee:cc:68:70:4c:bb:d7:28:c5:1e:
67:c1:2a:bd:be:8a:c2:3f:fa:2e:7c:0b:0a:e7:45:
5c:d4:36:be:d8:26:ef:91:fc:e7:ad:a9:6a:44:53:
4b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:F9:25:C4:C0:80:28:DE:1A:3F:BF:5D:10:EF:DF:42:C9:E3:47:11
X509v3 Authority Key Identifier:
keyid:D2:61:CF:BC:07:EC:30:63:77:DC:B1:6A:97:A1:16:0C:7A:6D:82:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:20:83:d7:35:4a:87:32:58:59:fc:af:10:fa:6b:b3:20:0b:
57:ab:62:20:22:49:89:89:29:2b:24:a2:79:70:96:6c:97:66:
cc:75:dc:45:43:4d:0e:f4:8c:55:da:44:a1:e3:f7:05:42:b9:
41:d1:4c:63:49:50:3b:a0:cb:8b:16:ea:d6:4d:98:64:cc:3e:
8c:3f:82:0c:bd:8c:54:57:51:3c:58:e9:85:4f:37:1c:40:41:
e9:ff:78:49:d4:e3:7d:6f:d2:ac:be:6c:3c:0f:05:58:eb:d0:
c8:5c:d8:e7:2e:67:7e:78:10:55:20:fc:49:49:36:a5:34:d0:
02:c0:99:6f:e6:06:da:23:aa:ba:a4:1f:c8:00:6a:58:16:7d:
90:b9:aa:bf:1b:34:38:e0:14:7e:00:9a:09:5f:4c:b6:e2:59:
cd:1c:81:8b:62:34:92:06:5e:72:f1:f9:34:f6:53:ec:a1:f0:
e6:9b:c0:0c:cd:a4:14:ce:9c:21:53:ef:42:ab:79:f8:1b:f2:
cd:c9:5f:c0:37:d1:39:09:a9:0d:cd:3a:e0:ba:02:57:1f:7f:
0d:6b:6c:c8:5d:c9:52:d8:61:6e:81:eb:08:cc:57:a1:82:b8:
78:24:35:69:bd:2d:4a:7c:df:d0:69:5b:a7:4d:31:0b:03:eb:
ba:87:53:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:15:37 2026 by rpki-client