Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
File: 0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft (raw, json)
Hash identifier: z86JQQnNw/XlzemS2/zyrXarJ/3yex7OjFf4tYo4sSc=
Subject key identifier: 83:AB:45:BA:6A:3B:27:C1:45:87:67:48:53:4A:7F:8D:76:07:F8:5C
Authority key identifier: D2:17:97:85:86:BF:F3:A6:77:7D:55:A9:A9:63:58:41:51:6D:43:B4
Certificate issuer: /CN=d217978586bff3a6777d55a9a9635841516d43b4
Certificate serial: 019EC17FF2A89B7AD729D7A4CAD02FE85166
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
Manifest number: 0EEE
Signing time: Sat 13 Jun 2026 15:00:48 +0000
Manifest this update: Sat 13 Jun 2026 15:00:48 +0000
Manifest next update: Sun 14 Jun 2026 15:00:48 +0000
Files and hashes: 1: 0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl (hash: 1GF0vt9i0y5rF2NWyoueo2nV44GzslQdDmjMFy8utLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 15:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:7f:f2:a8:9b:7a:d7:29:d7:a4:ca:d0:2f:e8:51:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217978586bff3a6777d55a9a9635841516d43b4
Validity
Not Before: Jun 13 15:00:48 2026 GMT
Not After : Jun 14 15:00:48 2026 GMT
Subject: CN=83ab45ba6a3b27c145876748534a7f8d7607f85c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:08:cb:34:22:67:c3:a1:40:53:de:ad:91:e3:
f5:2a:87:32:61:60:88:f7:40:2c:6a:6f:ab:27:d7:
7d:eb:7c:e8:e8:0c:b7:fc:df:e5:39:c4:0f:5d:45:
9f:9f:ab:bf:7d:42:e0:a5:27:3e:ca:93:17:a1:88:
7a:6d:94:8c:cd:bb:44:a6:9e:c3:d4:87:04:3d:a8:
cb:b5:4c:d2:7b:9d:9b:a0:20:f8:69:a6:21:38:7a:
40:11:c0:e7:9d:9c:06:3f:6d:f8:6e:93:f2:82:f4:
0e:bc:d3:41:d5:f6:3c:71:d7:30:7d:4e:cc:83:33:
2e:f5:2b:c4:17:81:f8:80:f2:64:9d:a3:a5:5f:3d:
cc:47:89:f2:58:d7:bf:b2:a1:1c:a8:ab:02:dd:bc:
f7:51:66:da:e4:53:ef:06:77:88:37:81:c1:ba:9a:
a1:af:89:14:b2:6c:7e:37:8c:95:1b:d5:79:45:fa:
76:6e:07:42:24:01:5f:dd:97:c4:82:88:12:f6:c2:
47:a3:c7:f7:ac:27:a0:2e:15:ef:98:a5:f1:c4:34:
82:7e:b9:97:6e:2b:3a:b1:0d:54:f3:47:69:1c:ac:
8c:de:1e:1a:b6:8d:d3:1b:42:f4:20:f8:21:7b:a7:
5b:b8:c7:d1:cf:7d:f5:b6:9f:3d:2f:d6:17:10:6e:
d2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:AB:45:BA:6A:3B:27:C1:45:87:67:48:53:4A:7F:8D:76:07:F8:5C
X509v3 Authority Key Identifier:
keyid:D2:17:97:85:86:BF:F3:A6:77:7D:55:A9:A9:63:58:41:51:6D:43:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:4d:a3:ec:52:cf:b6:64:82:34:c6:72:07:15:d1:d0:2e:28:
0e:de:48:a8:09:4f:3c:05:88:a2:b9:02:0f:71:33:df:f7:dc:
c9:f7:f9:38:ef:7f:0d:95:be:14:35:35:d8:01:3a:72:e6:00:
0f:0b:70:f4:c6:8a:56:9e:a3:8a:67:3a:0e:4e:08:c7:b9:64:
6b:e7:13:4b:40:30:c3:8d:dc:d4:6b:10:08:19:db:0c:b9:c7:
3e:fa:25:1d:75:67:eb:1f:c3:a0:3d:9f:3d:e4:69:76:12:a6:
21:4c:3d:f0:a9:6c:de:58:88:e0:2d:2e:ef:8a:da:15:35:24:
26:42:8c:43:37:f0:c2:31:c7:7f:2f:36:b9:81:3a:5c:ad:d1:
7f:7b:fc:03:12:c0:8b:89:a5:36:4d:5c:68:49:c5:4b:80:a9:
d1:6a:61:f8:1b:12:bd:1b:05:03:30:d1:98:7f:79:40:c9:bf:
2e:ec:3d:59:74:6d:44:ea:f3:11:c8:ba:87:48:11:43:02:24:
d8:33:3b:5b:ee:79:a4:0f:a1:94:9c:98:99:39:9d:cc:40:26:
0b:56:00:1a:b7:8e:87:34:a5:30:08:f1:e5:1b:ba:06:ef:a4:
00:f9:9d:a0:43:51:6e:5e:b1:00:6a:6b:3b:75:b9:65:29:b5:
9d:83:88:d7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7Bf/Kom3rXKdekytAv6FFmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyMTc5Nzg1ODZiZmYzYTY3NzdkNTVhOWE5NjM1ODQxNTE2
ZDQzYjQwHhcNMjYwNjEzMTUwMDQ4WhcNMjYwNjE0MTUwMDQ4WjAzMTEwLwYDVQQD
Eyg4M2FiNDViYTZhM2IyN2MxNDU4NzY3NDg1MzRhN2Y4ZDc2MDdmODVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQjLNCJnw6FAU96tkeP1KocyYWCI
90Asam+rJ9d963zo6Ay3/N/lOcQPXUWfn6u/fULgpSc+ypMXoYh6bZSMzbtEpp7D
1IcEPajLtUzSe52boCD4aaYhOHpAEcDnnZwGP234bpPygvQOvNNB1fY8cdcwfU7M
gzMu9SvEF4H4gPJknaOlXz3MR4nyWNe/sqEcqKsC3bz3UWba5FPvBneIN4HBupqh
r4kUsmx+N4yVG9V5Rfp2bgdCJAFf3ZfEgogS9sJHo8f3rCegLhXvmKXxxDSCfrmX
bis6sQ1U80dpHKyM3h4ato3TG0L0IPghe6dbuMfRz331tp89L9YXEG7SmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIOrRbpqOyfBRYdnSFNKf412B/hcMB8GA1UdIwQY
MBaAFNIXl4WGv/Omd31VqaljWEFRbUO0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGhlWGhZYV84NlozZlZXcHFXTllRVkZ0UTdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy83OTBhNzgtNGEyZC00ZjE2LTg4MGEt
NGNlNGQzYjE5N2Q4LzEvMGhlWGhZYV84NlozZlZXcHFXTllRVkZ0UTdRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy83OTBhNzgtNGEyZC00ZjE2LTg4MGEtNGNlNGQzYjE5N2Q4
LzEvMGhlWGhZYV84NlozZlZXcHFXTllRVkZ0UTdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALE2j7FLP
tmSCNMZyBxXR0C4oDt5IqAlPPAWIorkCD3Ez3/fcyff5OO9/DZW+FDU12AE6cuYA
Dwtw9MaKVp6jimc6Dk4Ix7lka+cTS0Aww43c1GsQCBnbDLnHPvolHXVn6x/DoD2f
PeRpdhKmIUw98Kls3liI4C0u74raFTUkJkKMQzfwwjHHfy82uYE6XK3Rf3v8AxLA
i4mlNk1caEnFS4Cp0Wph+BsSvRsFAzDRmH95QMm/Luw9WXRtROrzEci6h0gRQwIk
2DM7W+55pA+hlJyYmTmdzEAmC1YAGreOhzSlMAjx5Ru6Bu+kAPmdoENRbl6xAGpr
O3W5ZSm1nYOI1w==
-----END CERTIFICATE-----
Generated at Sun Jun 14 00:53:54 2026 by rpki-client