Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
File: pOuetVR8f18ar8CtoUCAVBlhhyY.mft (raw, json)
Hash identifier: XelOJxRQRnc6lYZF0UEGZGL6sw0c8LF8tSeMz5RgGPc=
Subject key identifier: 0D:06:B7:99:91:11:1C:37:41:D0:87:1A:C4:7A:46:B3:A7:00:9D:46
Authority key identifier: A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26
Certificate issuer: /CN=a4eb9eb5547c7f5f1aafc0ada140805419618726
Certificate serial: 019E20C8092EB0A7AE4882A537FC05A6FB43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
Manifest number: 0CF9
Signing time: Wed 13 May 2026 10:00:40 +0000
Manifest this update: Wed 13 May 2026 10:00:40 +0000
Manifest next update: Thu 14 May 2026 10:00:40 +0000
Files and hashes: 1: RZZbXwpHPue2NW4m459EoqMZKyE.roa (hash: v17nBO3LbcF/rH9ckA2KnZ23x5seOdWkK+ByqrSeon0=)
2: pOuetVR8f18ar8CtoUCAVBlhhyY.crl (hash: U73TAu89wrAsGU+XdHl1xQVtmjTHeQIJyuFi1SyEC0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 10:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:c8:09:2e:b0:a7:ae:48:82:a5:37:fc:05:a6:fb:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4eb9eb5547c7f5f1aafc0ada140805419618726
Validity
Not Before: May 13 10:00:40 2026 GMT
Not After : May 14 10:00:40 2026 GMT
Subject: CN=0d06b79991111c3741d0871ac47a46b3a7009d46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:37:12:f3:16:11:f1:91:09:19:a6:70:29:f9:
f5:45:c1:d9:24:5d:8f:f7:f6:e0:0f:3b:05:23:26:
66:62:59:68:ca:7d:ea:3d:f7:3a:07:b6:79:10:ba:
55:f5:ad:a8:d4:ac:a0:3a:0c:3b:3e:6b:7e:1c:e5:
d4:60:41:c8:01:a3:b0:ce:14:3d:20:86:69:d2:0b:
3a:ac:b1:c2:2d:6d:a9:aa:07:cd:63:c7:35:7d:06:
99:01:6a:1a:35:10:ca:f2:97:cd:89:72:57:39:6b:
e1:b7:0a:20:49:53:f4:88:23:7d:b0:bf:4d:79:d6:
49:8c:b7:e5:46:7e:e6:f7:e5:7b:68:ee:bc:ad:3e:
1a:88:5f:14:83:84:b6:82:2d:6a:ec:9a:be:c5:11:
f9:8d:14:d8:6a:5a:81:33:49:02:c3:a2:25:df:1f:
96:c2:80:52:fc:a5:c1:70:b6:23:7a:0d:9d:a6:23:
c6:e2:3f:4d:da:c5:05:f3:d5:8a:21:2a:3e:f5:8c:
e3:27:56:12:87:60:80:f1:ef:96:6f:b8:b9:5e:a9:
68:1a:e3:f9:8b:88:7a:50:1a:ce:72:9f:15:8f:d7:
db:1d:eb:17:eb:c4:ce:27:f7:ba:1e:35:87:0e:dd:
db:5f:26:ed:c9:1a:98:1a:e8:1d:2a:91:fb:d1:f7:
be:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:06:B7:99:91:11:1C:37:41:D0:87:1A:C4:7A:46:B3:A7:00:9D:46
X509v3 Authority Key Identifier:
keyid:A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:59:55:ec:4e:3d:02:c0:93:b6:a1:30:83:41:f2:c7:f8:fe:
8b:b9:7c:d3:c9:e9:f0:95:01:32:8e:aa:13:40:79:fc:81:a9:
46:88:cb:62:d1:59:7b:09:98:14:fe:6b:35:ac:db:54:1f:d1:
64:02:fd:42:2b:09:55:bd:83:9a:66:74:4e:0a:a6:15:25:63:
26:b1:b0:37:33:df:2d:cc:f8:78:3a:e9:cd:85:6c:40:78:02:
b1:d4:d7:a2:ba:a6:b1:92:65:dc:50:b6:be:8d:ae:06:f6:e6:
34:98:d1:1d:f6:0e:43:9d:0f:0a:31:62:e5:e8:c7:9c:a2:4c:
39:c8:ec:75:9a:ca:1f:16:de:d1:9a:3e:96:d1:92:a1:da:21:
68:2e:5b:9d:a1:79:83:14:ce:59:70:a6:1c:95:37:a8:57:1f:
c5:bf:d2:e9:dc:7c:b9:0a:4c:cc:6d:03:3e:a1:60:43:5a:cd:
6a:d0:45:b8:05:69:ee:fb:26:08:fb:17:d8:c7:2c:a0:bf:6b:
5f:6f:0d:b7:c2:95:a2:2e:66:80:b5:da:a5:70:7a:a1:f8:ab:
ca:17:50:29:ac:19:69:fa:91:d9:a5:6f:7e:08:dd:a3:3f:38:
e9:25:11:38:91:c4:ca:20:d6:9d:85:bc:9c:23:78:43:f6:6d:
4d:cc:2d:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gyAkusKeuSIKlN/wFpvtDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0ZWI5ZWI1NTQ3YzdmNWYxYWFmYzBhZGExNDA4MDU0MTk2
MTg3MjYwHhcNMjYwNTEzMTAwMDQwWhcNMjYwNTE0MTAwMDQwWjAzMTEwLwYDVQQD
EygwZDA2Yjc5OTkxMTExYzM3NDFkMDg3MWFjNDdhNDZiM2E3MDA5ZDQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAszcS8xYR8ZEJGaZwKfn1RcHZJF2P
9/bgDzsFIyZmYlloyn3qPfc6B7Z5ELpV9a2o1KygOgw7Pmt+HOXUYEHIAaOwzhQ9
IIZp0gs6rLHCLW2pqgfNY8c1fQaZAWoaNRDK8pfNiXJXOWvhtwogSVP0iCN9sL9N
edZJjLflRn7m9+V7aO68rT4aiF8Ug4S2gi1q7Jq+xRH5jRTYalqBM0kCw6Il3x+W
woBS/KXBcLYjeg2dpiPG4j9N2sUF89WKISo+9YzjJ1YSh2CA8e+Wb7i5XqloGuP5
i4h6UBrOcp8Vj9fbHesX68TOJ/e6HjWHDt3bXybtyRqYGugdKpH70fe+1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA0Gt5mRERw3QdCHGsR6RrOnAJ1GMB8GA1UdIwQY
MBaAFKTrnrVUfH9fGq/AraFAgFQZYYcmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcE91ZXRWUjhmMThhcjhDdG9VQ0FWQmxoaHlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi80Y2Q3MmQtZDhhNS00NmNlLTg2NzQt
MGQyMjIzMmMzNGEwLzEvcE91ZXRWUjhmMThhcjhDdG9VQ0FWQmxoaHlZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi80Y2Q3MmQtZDhhNS00NmNlLTg2NzQtMGQyMjIzMmMzNGEw
LzEvcE91ZXRWUjhmMThhcjhDdG9VQ0FWQmxoaHlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwFlV7E49
AsCTtqEwg0Hyx/j+i7l808np8JUBMo6qE0B5/IGpRojLYtFZewmYFP5rNazbVB/R
ZAL9QisJVb2DmmZ0TgqmFSVjJrGwNzPfLcz4eDrpzYVsQHgCsdTXorqmsZJl3FC2
vo2uBvbmNJjRHfYOQ50PCjFi5ejHnKJMOcjsdZrKHxbe0Zo+ltGSodohaC5bnaF5
gxTOWXCmHJU3qFcfxb/S6dx8uQpMzG0DPqFgQ1rNatBFuAVp7vsmCPsX2McsoL9r
X28Nt8KVoi5mgLXapXB6ofiryhdQKawZafqR2aVvfgjdoz846SUROJHEyiDWnYW8
nCN4Q/ZtTcwtlw==
-----END CERTIFICATE-----
Generated at Wed May 13 19:34:17 2026 by rpki-client