Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
File: 0KpKGno60j-q4q6un6YZTwISgSk.mft (raw, json)
Hash identifier: j2D0mJiQh+2YTVB4alenbfLTgy59M1YW3VFKnQgIRxY=
Subject key identifier: F6:28:EB:7C:06:E2:52:5C:B2:20:C7:0C:42:44:3A:E0:1F:B5:82:B3
Authority key identifier: D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29
Certificate issuer: /CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129
Certificate serial: 019CABA252B5D4E2C81D502B71B9B1C6D005
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
Manifest number: 0462
Signing time: Sun 01 Mar 2026 23:01:07 +0000
Manifest this update: Sun 01 Mar 2026 23:01:07 +0000
Manifest next update: Mon 02 Mar 2026 23:01:07 +0000
Files and hashes: 1: 0KpKGno60j-q4q6un6YZTwISgSk.crl (hash: 6Bmn5jqrktL9YRmhcsz/dQtXkDhJT28Sjv392Y9A7sU=)
2: 0r4BvsnJAN2Pz40prPoUEy6WvzU.roa (hash: AamdQ0j/vjkbuVtweF8p9JDSZ2i84cCde/Gwvcvf218=)
3: 5bf5CwJmQOVXufa2Bw359AZEO9s.roa (hash: vE+kqAcM+EoC006Mvnftc/u8n7NMMiAT3ni4cuysV1M=)
4: epNTET6BvQ6zhUMoLdSPzHjbIWE.roa (hash: qxvi55+BDN0SED0a/Y9HgRfeWegI7IGQUucmOAr178Y=)
5: ncOZbEMiJNqjiscavpDBkZeriIg.roa (hash: KP4yleOLVWJhJdzAKqGM+QLwSbZEncnkoAH1TNTBzJs=)
6: oS9h716veeRY1y9kuFn-MIGUEBg.roa (hash: KS+2BIj/1oDD8HcECr/uPYIsA+2SUgLQkBkCEiNQnZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:52:b5:d4:e2:c8:1d:50:2b:71:b9:b1:c6:d0:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129
Validity
Not Before: Mar 1 23:01:07 2026 GMT
Not After : Mar 2 23:01:07 2026 GMT
Subject: CN=f628eb7c06e2525cb220c70c42443ae01fb582b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:45:75:2f:f0:3e:23:b0:a2:81:4a:7a:b2:58:
aa:da:bf:a7:90:c4:89:50:fe:6a:20:f3:65:ec:94:
42:17:fc:22:bd:2c:60:01:c7:3d:4c:23:57:6b:5b:
12:c3:3f:61:5b:ea:c5:63:38:56:8a:12:ae:9d:56:
8f:4c:27:ef:24:d2:7e:91:27:eb:b2:e6:92:a8:61:
fd:a6:df:c3:c3:63:e8:e8:cb:e5:3d:95:dd:64:3a:
19:25:22:48:0f:17:a9:d8:e7:63:33:2e:42:64:2a:
7a:1b:a7:df:7e:ad:60:2e:5e:9a:98:79:14:b4:60:
9f:b6:08:b9:67:26:10:ab:8c:d4:0c:9b:30:bd:47:
18:81:65:d2:00:4a:64:8a:61:79:ef:87:a3:8f:e9:
9d:a9:f7:e9:4f:b1:f3:01:31:b5:6d:bd:af:72:e7:
08:36:fb:77:85:07:a4:3c:e5:67:f8:e4:40:9f:40:
7f:0d:3d:9d:07:ec:9b:5f:f2:e6:18:01:4b:eb:bb:
dd:78:60:0b:be:12:86:42:40:25:2d:9a:11:11:b5:
e6:3e:c5:90:19:fd:d0:f9:6c:ad:0f:0b:e4:42:fd:
db:30:80:2b:2f:c2:5e:e4:1f:d9:37:3c:51:ab:d1:
99:41:58:10:c1:a5:12:6a:b9:5c:f1:d8:f2:5b:8b:
dc:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:28:EB:7C:06:E2:52:5C:B2:20:C7:0C:42:44:3A:E0:1F:B5:82:B3
X509v3 Authority Key Identifier:
keyid:D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:ce:f5:9c:91:97:8a:c7:58:83:95:67:12:74:aa:96:30:d8:
ed:d0:00:a5:cb:94:5f:04:80:c2:45:48:d3:a1:7c:73:b2:83:
88:7a:31:9a:6f:55:ef:df:e2:a2:a6:43:e4:60:f2:ca:71:44:
18:7e:cd:f9:d6:b5:26:73:78:ae:28:e8:b8:43:b1:ac:b7:9d:
3d:b3:98:b3:3f:ac:d8:e3:9f:f5:87:12:0c:a9:51:56:de:8a:
fd:54:32:dd:81:6b:7e:7e:2c:37:18:f9:6d:74:ac:e8:71:e2:
91:d6:f8:91:a1:26:bc:95:78:65:9c:1e:20:f6:75:fd:5a:cb:
0e:d8:be:5c:b6:64:6f:aa:10:c8:f7:0a:4a:90:17:68:9e:1a:
40:4b:d5:8c:5d:91:93:35:24:a3:f6:cc:10:6f:17:74:34:06:
20:ec:f4:93:f0:23:f5:0f:88:d6:57:78:e7:f8:97:24:9f:04:
ea:13:05:05:b7:f2:36:08:62:27:ec:33:c1:db:24:b4:18:a2:
04:df:f4:97:57:cb:69:38:31:3d:5d:53:cf:6e:99:bc:ce:2e:
9e:de:f3:d3:3f:59:5a:f3:e0:c7:47:d5:0b:5f:09:1a:b4:70:
cc:d3:dc:38:ba:ab:bf:10:b1:b6:01:50:85:03:a7:54:64:ea:
d2:41:a0:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrolK11OLIHVArcbmxxtAFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwYWE0YTFhN2EzYWQyM2ZhYWUyYWVhZTlmYTYxOTRmMDIx
MjgxMjkwHhcNMjYwMzAxMjMwMTA3WhcNMjYwMzAyMjMwMTA3WjAzMTEwLwYDVQQD
EyhmNjI4ZWI3YzA2ZTI1MjVjYjIyMGM3MGM0MjQ0M2FlMDFmYjU4MmIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlUV1L/A+I7CigUp6sliq2r+nkMSJ
UP5qIPNl7JRCF/wivSxgAcc9TCNXa1sSwz9hW+rFYzhWihKunVaPTCfvJNJ+kSfr
suaSqGH9pt/Dw2Po6MvlPZXdZDoZJSJIDxep2OdjMy5CZCp6G6fffq1gLl6amHkU
tGCftgi5ZyYQq4zUDJswvUcYgWXSAEpkimF574ejj+mdqffpT7HzATG1bb2vcucI
Nvt3hQekPOVn+ORAn0B/DT2dB+ybX/LmGAFL67vdeGALvhKGQkAlLZoREbXmPsWQ
Gf3Q+WytDwvkQv3bMIArL8Je5B/ZNzxRq9GZQVgQwaUSarlc8djyW4vc8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPYo63wG4lJcsiDHDEJEOuAftYKzMB8GA1UdIwQY
MBaAFNCqShp6OtI/quKurp+mGU8CEoEpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEtwS0dubzYwai1xNHE2dW42WVpUd0lTZ1NrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS83NjU1NmUtYTFkOC00ZTBhLTg0Njgt
MjIxNGYxOGViMzI5LzEvMEtwS0dubzYwai1xNHE2dW42WVpUd0lTZ1NrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS83NjU1NmUtYTFkOC00ZTBhLTg0NjgtMjIxNGYxOGViMzI5
LzEvMEtwS0dubzYwai1xNHE2dW42WVpUd0lTZ1NrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh871nJGX
isdYg5VnEnSqljDY7dAApcuUXwSAwkVI06F8c7KDiHoxmm9V79/ioqZD5GDyynFE
GH7N+da1JnN4rijouEOxrLedPbOYsz+s2OOf9YcSDKlRVt6K/VQy3YFrfn4sNxj5
bXSs6HHikdb4kaEmvJV4ZZweIPZ1/VrLDti+XLZkb6oQyPcKSpAXaJ4aQEvVjF2R
kzUko/bMEG8XdDQGIOz0k/Aj9Q+I1ld45/iXJJ8E6hMFBbfyNghiJ+wzwdsktBii
BN/0l1fLaTgxPV1Tz26ZvM4unt7z0z9ZWvPgx0fVC18JGrRwzNPcOLqrvxCxtgFQ
hQOnVGTq0kGg+w==
-----END CERTIFICATE-----
Generated at Mon Mar 2 03:14:51 2026 by rpki-client