Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
File: 0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft (raw, json)
Hash identifier: WemcjXbC4b6LJC5PMxqND5eVyCOzlqFdujufQEEb6Wo=
Subject key identifier: 15:3F:52:AF:3B:33:4B:88:91:80:99:18:CB:AB:01:D4:20:DA:B7:2F
Authority key identifier: D1:3B:BC:92:A2:FA:90:A0:A1:12:2B:83:30:34:6F:9A:61:71:D9:76
Certificate issuer: /CN=d13bbc92a2fa90a0a1122b8330346f9a6171d976
Certificate serial: 019E1CEB8359D1461A5BF8656C3F999741C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Tu8kqL6kKChEiuDMDRvmmFx2XY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
Manifest number: 1405
Signing time: Tue 12 May 2026 16:00:57 +0000
Manifest this update: Tue 12 May 2026 16:00:57 +0000
Manifest next update: Wed 13 May 2026 16:00:57 +0000
Files and hashes: 1: 0Tu8kqL6kKChEiuDMDRvmmFx2XY.crl (hash: I9sVm4M1vKUCmS2IoytSV3geYKuZIJ0bilyXOzxtEGs=)
2: 1pCvkt2PpE0ZPUQ0xcRpclm4Vx4.asa (hash: DhYV1vMdkhq6+tjylyKNPB9YXFnru1L+V/7iVRsUG3M=)
3: 2xGqMqbFa646EMEXsukXriphVW8.roa (hash: odEL2M6BYLsF4njGikEkDGjtP1dJDgPaubWbiCHPAAg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Tu8kqL6kKChEiuDMDRvmmFx2XY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 16:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:eb:83:59:d1:46:1a:5b:f8:65:6c:3f:99:97:41:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d13bbc92a2fa90a0a1122b8330346f9a6171d976
Validity
Not Before: May 12 16:00:57 2026 GMT
Not After : May 13 16:00:57 2026 GMT
Subject: CN=153f52af3b334b8891809918cbab01d420dab72f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:40:ca:31:96:e0:41:70:6f:09:4a:9d:0a:68:
15:cd:92:a4:c6:23:f2:3f:14:51:af:9b:59:ae:69:
23:28:03:e8:d7:14:42:b2:f8:80:6f:df:d0:67:99:
23:d2:0a:a2:ca:50:de:90:ca:09:ac:5d:b3:ea:72:
78:b5:c8:30:9f:1c:55:83:a7:8c:10:f9:29:6d:24:
39:3d:8a:f1:fb:87:07:77:69:4b:a7:e3:e0:54:46:
a2:88:78:8b:74:5a:15:fa:07:c8:bc:a4:b4:e7:43:
be:a8:43:31:55:53:f9:3d:04:ab:80:68:60:7c:03:
c0:1c:0e:a4:17:37:74:00:6a:de:8f:d0:e7:15:de:
ef:c8:9d:8b:44:ec:43:84:9f:f4:5d:78:b1:91:fd:
8a:17:a1:10:e0:59:8d:1c:d1:44:8b:5f:57:dd:e2:
9a:14:03:15:d4:c3:12:46:5a:2b:57:cd:b8:1e:cc:
64:b8:9c:73:83:49:9b:b4:95:9d:de:3b:82:45:11:
b0:da:0a:fc:71:7e:d5:64:f3:a0:a1:45:9c:bb:ed:
68:35:b3:6c:0c:9c:a7:21:71:66:06:ca:cd:d5:b5:
13:92:79:31:19:92:ae:72:8b:a7:39:91:9c:5f:9e:
a4:96:fb:50:25:81:50:5f:65:a6:77:34:bb:5b:fe:
c7:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:3F:52:AF:3B:33:4B:88:91:80:99:18:CB:AB:01:D4:20:DA:B7:2F
X509v3 Authority Key Identifier:
keyid:D1:3B:BC:92:A2:FA:90:A0:A1:12:2B:83:30:34:6F:9A:61:71:D9:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Tu8kqL6kKChEiuDMDRvmmFx2XY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:4b:b9:ce:a4:76:92:56:01:e4:d6:71:13:c6:64:49:31:c6:
f6:7c:57:38:25:ca:33:32:11:48:9e:24:4f:bc:35:ea:6a:9e:
e0:84:46:93:ed:53:27:7b:3f:2f:75:a1:c5:cd:0a:f9:73:19:
cf:8f:2a:32:2e:2c:2c:c9:90:d6:a1:df:72:98:56:bf:50:7c:
ea:d7:cf:6b:fc:28:e3:a7:78:8c:6f:33:29:3a:be:d7:d8:1a:
46:90:e9:29:91:26:46:73:e3:2f:c2:04:f6:64:c4:19:c6:75:
85:4f:0a:d2:da:93:4f:3a:2a:66:e1:84:48:25:30:8a:8e:40:
b9:aa:8f:11:b8:99:6b:46:f0:88:f3:4e:db:12:cf:9d:75:06:
f2:4d:4d:fc:e2:b2:93:f2:da:c0:ae:4a:cf:05:6c:bd:61:a4:
e5:2e:2f:b1:7a:e1:f9:f9:a8:91:30:e1:9a:2d:a1:e4:ea:5e:
bf:6e:10:92:85:39:4a:93:e7:05:17:c3:a4:03:90:89:28:d4:
bc:27:b9:97:59:7e:82:02:5b:76:ec:6d:62:bc:87:65:87:d2:
b0:0c:60:15:ae:5b:8d:6d:88:75:16:ee:ba:20:fd:73:df:fb:
4b:8b:bd:a7:70:a6:81:53:52:cb:69:d7:a8:fa:26:3b:70:95:
ec:07:f0:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:03:41 2026 by rpki-client