Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/b49500-0b74-4c45-a882-0c84fd757990/1/0HNWUFJtK79SUNl5fknbHZ8cwn8.mft
File: 0HNWUFJtK79SUNl5fknbHZ8cwn8.mft (raw, json)
Hash identifier: S+bNdDfQN5KouBmKkZ1oWZNZ4LjMjWFkNAun3Te0mHU=
Subject key identifier: 57:9C:39:3F:93:C3:64:7A:75:22:53:F1:D0:A3:28:6E:5D:53:24:AD
Authority key identifier: D0:73:56:50:52:6D:2B:BF:52:50:D9:79:7E:49:DB:1D:9F:1C:C2:7F
Certificate issuer: /CN=d0735650526d2bbf5250d9797e49db1d9f1cc27f
Certificate serial: 019E1EDA1EA5C6883EEA6C62E290FFC0D2A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0HNWUFJtK79SUNl5fknbHZ8cwn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/b49500-0b74-4c45-a882-0c84fd757990/1/0HNWUFJtK79SUNl5fknbHZ8cwn8.mft
Manifest number: 020E
Signing time: Wed 13 May 2026 01:01:11 +0000
Manifest this update: Wed 13 May 2026 01:01:11 +0000
Manifest next update: Thu 14 May 2026 01:01:11 +0000
Files and hashes: 1: 0HNWUFJtK79SUNl5fknbHZ8cwn8.crl (hash: ZYT/U8SOFWauU8PojiVZ2lQpwxDXZPTl13XpEL7X6sQ=)
2: WrLNxAyyuRsHIs6t3d8ID4TXQxk.roa (hash: PhJyPBri0VSG1gtomnKeMBfQbUvbGb+z4erxQ/DDa9A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/b49500-0b74-4c45-a882-0c84fd757990/1/0HNWUFJtK79SUNl5fknbHZ8cwn8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/b49500-0b74-4c45-a882-0c84fd757990/1/0HNWUFJtK79SUNl5fknbHZ8cwn8.mft
rsync://rpki.ripe.net/repository/DEFAULT/0HNWUFJtK79SUNl5fknbHZ8cwn8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 01:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:da:1e:a5:c6:88:3e:ea:6c:62:e2:90:ff:c0:d2:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0735650526d2bbf5250d9797e49db1d9f1cc27f
Validity
Not Before: May 13 01:01:11 2026 GMT
Not After : May 14 01:01:11 2026 GMT
Subject: CN=579c393f93c3647a752253f1d0a3286e5d5324ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a6:cc:47:ab:5b:c5:b3:57:2e:e0:61:c4:3a:
01:3c:58:89:41:6a:bc:00:d3:de:28:89:c4:c0:d8:
ff:40:d4:d5:9a:e9:13:a4:e4:0e:27:52:54:72:94:
2a:15:e5:1e:cd:2b:3c:54:3d:57:1e:7e:e4:bf:de:
50:27:2a:7e:6a:fa:3e:74:d7:7a:a9:1d:13:71:02:
61:ab:05:03:7e:b8:1f:5e:07:c0:80:fa:68:4c:a8:
ae:7b:c5:e0:aa:8c:b8:3d:4c:c1:66:2d:fe:b9:70:
7d:80:29:15:6a:e6:b1:b2:a1:fa:79:85:ce:01:47:
16:13:f2:02:96:a3:ef:e7:f6:28:7c:00:89:cf:45:
f5:0e:41:c4:93:7e:bd:94:1d:4c:2a:96:25:d8:1b:
0a:7d:19:77:1a:e0:b9:4b:7e:a1:38:c4:fe:37:02:
79:27:1b:d5:c0:84:2f:7c:75:88:ff:d4:06:95:4e:
7f:08:3c:86:e7:c8:90:c2:87:64:2e:f2:20:86:ab:
7e:8e:e1:ad:1a:8c:ed:26:1a:ce:24:18:87:28:7d:
3e:25:59:6e:c4:51:ec:78:ca:07:5a:63:e1:68:64:
8e:95:f7:38:f1:d9:02:8c:99:0c:5c:f3:6f:be:8a:
df:a7:37:05:85:c1:cc:dd:4b:3f:1b:d6:e8:60:e5:
d5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:9C:39:3F:93:C3:64:7A:75:22:53:F1:D0:A3:28:6E:5D:53:24:AD
X509v3 Authority Key Identifier:
keyid:D0:73:56:50:52:6D:2B:BF:52:50:D9:79:7E:49:DB:1D:9F:1C:C2:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0HNWUFJtK79SUNl5fknbHZ8cwn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b49500-0b74-4c45-a882-0c84fd757990/1/0HNWUFJtK79SUNl5fknbHZ8cwn8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b49500-0b74-4c45-a882-0c84fd757990/1/0HNWUFJtK79SUNl5fknbHZ8cwn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:cd:9a:a2:45:c2:eb:85:56:e0:53:bc:d8:1b:61:40:db:6a:
d5:50:1e:28:8f:62:79:3f:98:77:a5:72:70:74:7b:da:b3:3d:
cc:2a:76:3f:c3:81:35:4f:5b:69:6c:c5:f1:3e:7b:9b:f0:06:
1e:f3:54:47:0f:e2:3a:3f:75:53:6c:10:4b:ad:34:7c:0e:75:
c1:c5:9c:4b:45:8a:c9:fc:58:35:4c:50:e8:a0:cc:4c:7e:51:
58:24:dd:ec:9e:a0:77:2d:02:69:0c:11:84:b3:d5:a2:d0:7b:
32:32:94:42:7f:e9:ba:5b:a8:8a:63:1a:e0:99:6f:07:cd:2a:
f4:f2:cd:f1:61:b2:48:34:eb:4b:8e:fd:d1:f6:4e:97:c7:68:
56:7a:58:5c:8c:97:a0:0a:70:2b:cd:47:57:a9:fe:a7:2f:f2:
71:3a:d9:8c:41:55:76:06:76:b4:93:fd:fe:f1:f6:28:94:37:
89:11:01:29:26:4b:c9:85:62:10:e2:e8:23:4f:74:c7:cd:3f:
7d:81:c4:ea:85:68:32:48:78:35:ec:3e:a8:24:82:fd:c7:72:
53:a7:0e:21:14:63:6c:e7:68:e9:7c:48:c3:e1:53:bb:48:6a:
eb:c5:b3:c9:c3:2f:8f:a6:ec:93:42:81:71:75:42:0e:98:5e:
a1:a4:b1:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4e2h6lxog+6mxi4pD/wNKgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwNzM1NjUwNTI2ZDJiYmY1MjUwZDk3OTdlNDlkYjFkOWYx
Y2MyN2YwHhcNMjYwNTEzMDEwMTExWhcNMjYwNTE0MDEwMTExWjAzMTEwLwYDVQQD
Eyg1NzljMzkzZjkzYzM2NDdhNzUyMjUzZjFkMGEzMjg2ZTVkNTMyNGFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyqbMR6tbxbNXLuBhxDoBPFiJQWq8
ANPeKInEwNj/QNTVmukTpOQOJ1JUcpQqFeUezSs8VD1XHn7kv95QJyp+avo+dNd6
qR0TcQJhqwUDfrgfXgfAgPpoTKiue8Xgqoy4PUzBZi3+uXB9gCkVauaxsqH6eYXO
AUcWE/IClqPv5/YofACJz0X1DkHEk369lB1MKpYl2BsKfRl3GuC5S36hOMT+NwJ5
JxvVwIQvfHWI/9QGlU5/CDyG58iQwodkLvIghqt+juGtGoztJhrOJBiHKH0+JVlu
xFHseMoHWmPhaGSOlfc48dkCjJkMXPNvvorfpzcFhcHM3Us/G9boYOXVXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFecOT+Tw2R6dSJT8dCjKG5dUyStMB8GA1UdIwQY
MBaAFNBzVlBSbSu/UlDZeX5J2x2fHMJ/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEhOV1VGSnRLNzlTVU5sNWZrbmJIWjhjd244LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9iNDk1MDAtMGI3NC00YzQ1LWE4ODIt
MGM4NGZkNzU3OTkwLzEvMEhOV1VGSnRLNzlTVU5sNWZrbmJIWjhjd244Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS9iNDk1MDAtMGI3NC00YzQ1LWE4ODItMGM4NGZkNzU3OTkw
LzEvMEhOV1VGSnRLNzlTVU5sNWZrbmJIWjhjd244LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYc2aokXC
64VW4FO82BthQNtq1VAeKI9ieT+Yd6VycHR72rM9zCp2P8OBNU9baWzF8T57m/AG
HvNURw/iOj91U2wQS600fA51wcWcS0WKyfxYNUxQ6KDMTH5RWCTd7J6gdy0CaQwR
hLPVotB7MjKUQn/puluoimMa4JlvB80q9PLN8WGySDTrS4790fZOl8doVnpYXIyX
oApwK81HV6n+py/ycTrZjEFVdgZ2tJP9/vH2KJQ3iREBKSZLyYViEOLoI090x80/
fYHE6oVoMkh4New+qCSC/cdyU6cOIRRjbOdo6XxIw+FTu0hq68WzycMvj6bsk0KB
cXVCDpheoaSxFA==
-----END CERTIFICATE-----
Generated at Wed May 13 12:34:15 2026 by rpki-client