Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
File: 02JOkIx0mP22E1QnU-9Wx1zXBL0.mft (raw, json)
Hash identifier: d/HWx4p5sHhwp9Idl9wDhDgPe9ggJe84NTtxV79R2SU=
Subject key identifier: 1E:95:EB:FA:8C:26:18:DE:4C:CB:33:4B:EA:0F:46:8E:87:CD:8C:F0
Authority key identifier: D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
Certificate issuer: /CN=d3624e908c7498fdb613542753ef56c75cd704bd
Certificate serial: 019E2024697604B4EDF609DE0D707793BA1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
Manifest number: 0D43
Signing time: Wed 13 May 2026 07:01:57 +0000
Manifest this update: Wed 13 May 2026 07:01:57 +0000
Manifest next update: Thu 14 May 2026 07:01:57 +0000
Files and hashes: 1: 02JOkIx0mP22E1QnU-9Wx1zXBL0.crl (hash: IriiDbWN6flndL5Rr2bmDiYAUkP7MeCQurhQT73B2D0=)
2: xY4otenPhOP0H70AgN8yfipmuag.roa (hash: j8oE81MNRmqQfvzLQxhYODVo2K+D9FqNssi/KIrbHB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:24:69:76:04:b4:ed:f6:09:de:0d:70:77:93:ba:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3624e908c7498fdb613542753ef56c75cd704bd
Validity
Not Before: May 13 07:01:57 2026 GMT
Not After : May 14 07:01:57 2026 GMT
Subject: CN=1e95ebfa8c2618de4ccb334bea0f468e87cd8cf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6f:c1:f1:10:f2:04:58:e7:88:48:82:8e:ab:
d2:28:b4:38:07:4e:2a:91:27:da:d9:3f:a1:db:ad:
32:47:3a:55:6f:12:07:27:94:41:18:5a:22:23:e4:
bf:3f:11:35:d0:72:24:0c:ed:c9:71:f2:eb:c0:04:
d2:a0:d2:6d:ce:4d:aa:f0:9f:35:6d:dd:8f:a5:ed:
a7:0b:30:2c:1d:93:16:f4:db:c5:63:4f:81:e9:0c:
68:b6:93:32:c8:eb:77:a8:3b:42:49:40:15:27:f3:
32:20:e5:11:32:51:f6:de:f1:d3:91:69:38:c1:b7:
d7:8c:5b:33:7a:7c:44:cc:3f:cc:71:de:af:f4:42:
dd:df:05:62:ae:70:25:36:50:7e:c7:8f:5c:20:51:
09:92:0c:fc:18:7e:ce:a0:fd:49:b9:7c:0e:db:92:
0b:17:3a:6a:ad:5d:02:6b:af:51:50:15:bc:0c:30:
c9:10:c1:9b:df:fc:a9:40:0d:91:c3:5d:aa:70:a8:
6d:5c:62:2d:3a:98:c9:81:88:9b:41:44:52:31:fe:
f9:2e:65:11:dd:0a:53:de:9c:61:6a:45:f3:cf:cd:
48:19:3c:9c:d9:0f:3e:f4:4d:33:34:01:32:26:69:
de:f4:43:9e:cd:00:5a:c3:e0:3b:1d:ea:0e:64:41:
46:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:95:EB:FA:8C:26:18:DE:4C:CB:33:4B:EA:0F:46:8E:87:CD:8C:F0
X509v3 Authority Key Identifier:
keyid:D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:bc:c6:8b:a7:f1:02:86:24:de:14:87:f8:e0:b6:92:57:98:
c1:3a:cd:cc:b8:1c:6d:10:82:ca:c2:1d:62:aa:ec:3b:08:71:
96:3f:35:d5:1c:c0:c4:22:ac:b1:80:61:e4:f9:82:1d:03:e6:
b6:4b:70:04:02:5a:b7:24:60:ec:6f:e1:03:3f:2b:0e:1f:66:
7c:88:d6:d7:7b:57:68:ed:18:01:c0:5d:ac:6e:e8:cd:5b:ec:
bf:3b:ec:64:37:1d:a0:78:f1:59:12:db:b3:a3:1e:e8:01:c2:
00:f6:7f:fa:45:07:13:7c:52:53:3c:bc:65:5f:61:b6:28:97:
67:a1:00:3c:2b:34:db:3d:ec:05:85:40:dc:10:5a:c1:e7:aa:
a5:b7:c6:19:1a:d9:28:19:ed:8c:1e:60:28:c4:ca:70:8c:0a:
c4:09:6c:48:64:25:ee:e3:bc:f0:ec:3d:50:c5:f0:ee:42:87:
a1:f6:71:95:ad:0c:56:49:32:1a:0a:e3:78:9b:8c:bf:7b:e0:
d0:1c:dd:00:40:e1:58:a9:03:8b:72:50:16:ab:7b:64:a8:b3:
f1:f6:89:75:1f:96:0b:5b:98:39:9b:d2:9f:7f:9f:90:f8:af:
0c:60:ea:48:c2:cd:12:67:7f:1c:fa:ed:54:71:6c:c4:9b:a9:
99:55:fa:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gJGl2BLTt9gneDXB3k7oaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNjI0ZTkwOGM3NDk4ZmRiNjEzNTQyNzUzZWY1NmM3NWNk
NzA0YmQwHhcNMjYwNTEzMDcwMTU3WhcNMjYwNTE0MDcwMTU3WjAzMTEwLwYDVQQD
EygxZTk1ZWJmYThjMjYxOGRlNGNjYjMzNGJlYTBmNDY4ZTg3Y2Q4Y2YwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzW/B8RDyBFjniEiCjqvSKLQ4B04q
kSfa2T+h260yRzpVbxIHJ5RBGFoiI+S/PxE10HIkDO3JcfLrwATSoNJtzk2q8J81
bd2Ppe2nCzAsHZMW9NvFY0+B6QxotpMyyOt3qDtCSUAVJ/MyIOURMlH23vHTkWk4
wbfXjFszenxEzD/Mcd6v9ELd3wVirnAlNlB+x49cIFEJkgz8GH7OoP1JuXwO25IL
FzpqrV0Ca69RUBW8DDDJEMGb3/ypQA2Rw12qcKhtXGItOpjJgYibQURSMf75LmUR
3QpT3pxhakXzz81IGTyc2Q8+9E0zNAEyJmne9EOezQBaw+A7HeoOZEFGWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB6V6/qMJhjeTMszS+oPRo6HzYzwMB8GA1UdIwQY
MBaAFNNiTpCMdJj9thNUJ1PvVsdc1wS9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDJKT2tJeDBtUDIyRTFRblUtOVd4MXpYQkwwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC80MmVmMWItMTBjNy00ZGFjLTljMTMt
NjQ1MGYxODQxMTIyLzEvMDJKT2tJeDBtUDIyRTFRblUtOVd4MXpYQkwwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC80MmVmMWItMTBjNy00ZGFjLTljMTMtNjQ1MGYxODQxMTIy
LzEvMDJKT2tJeDBtUDIyRTFRblUtOVd4MXpYQkwwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ7zGi6fx
AoYk3hSH+OC2kleYwTrNzLgcbRCCysIdYqrsOwhxlj811RzAxCKssYBh5PmCHQPm
tktwBAJatyRg7G/hAz8rDh9mfIjW13tXaO0YAcBdrG7ozVvsvzvsZDcdoHjxWRLb
s6Me6AHCAPZ/+kUHE3xSUzy8ZV9htiiXZ6EAPCs02z3sBYVA3BBaweeqpbfGGRrZ
KBntjB5gKMTKcIwKxAlsSGQl7uO88Ow9UMXw7kKHofZxla0MVkkyGgrjeJuMv3vg
0BzdAEDhWKkDi3JQFqt7ZKiz8faJdR+WC1uYOZvSn3+fkPivDGDqSMLNEmd/HPrt
VHFsxJupmVX6dw==
-----END CERTIFICATE-----
Generated at Wed May 13 12:52:43 2026 by rpki-client