Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.mft
File: 6oRgBs-LnjiPMUUTWAklAs7METY.mft (raw, json)
Hash identifier: TYkdhR2hEmZEKF0Ckj8//OXDLhTNXjswc36N2RTDVuA=
Subject key identifier: 35:03:81:4C:51:D6:78:28:BD:57:76:F4:BB:E5:F4:E7:1E:E2:67:90
Authority key identifier: EA:84:60:06:CF:8B:9E:38:8F:31:45:13:58:09:25:02:CE:CC:11:36
Certificate issuer: /CN=ea846006cf8b9e388f31451358092502cecc1136
Certificate serial: 019DCED09A9F352722A8F47E9769740F16D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6oRgBs-LnjiPMUUTWAklAs7METY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.mft
Manifest number: 10E2
Signing time: Mon 27 Apr 2026 12:01:10 +0000
Manifest this update: Mon 27 Apr 2026 12:01:10 +0000
Manifest next update: Tue 28 Apr 2026 12:01:10 +0000
Files and hashes: 1: 6oRgBs-LnjiPMUUTWAklAs7METY.crl (hash: hqM/aNK0y9eU+jQpqsh/Ausng3G7AH/+zUyNE8bugPQ=)
2: BDoL8rUpvbaK_16BWlbfMCNWUSU.roa (hash: GfKO3arzoWGyw+NdQY8Rv86I2fy83YtHFt/TTLJyJno=)
3: hvVtewn6w22bnIW8yznhNvKtiF4.roa (hash: m3PFir5NovTfkiQPZLXiwU+9sgPb6SDjnc3/rkv8wo8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.mft
rsync://rpki.ripe.net/repository/DEFAULT/6oRgBs-LnjiPMUUTWAklAs7METY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 12:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:d0:9a:9f:35:27:22:a8:f4:7e:97:69:74:0f:16:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea846006cf8b9e388f31451358092502cecc1136
Validity
Not Before: Apr 27 12:01:10 2026 GMT
Not After : Apr 28 12:01:10 2026 GMT
Subject: CN=3503814c51d67828bd5776f4bbe5f4e71ee26790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d1:aa:c2:fe:73:57:46:5f:af:07:21:a0:22:
f5:e7:91:da:54:80:ad:64:d7:0d:d9:b8:fa:cc:04:
47:3d:6b:22:5b:e9:66:96:7d:ea:f4:f1:f3:76:bd:
ad:27:e8:15:61:7b:88:02:ae:45:f0:c9:4e:e9:3f:
01:37:5f:c6:22:1c:44:64:95:4e:6d:30:aa:57:e4:
24:88:b2:f6:17:87:61:94:a6:d8:df:6a:e7:4d:eb:
e0:90:2d:5e:0c:b8:d0:c8:3d:91:b1:d9:fa:20:e7:
45:3b:82:9a:b7:41:5d:88:a5:e5:e0:b5:8f:24:18:
09:bc:3a:6f:18:ea:26:9e:ff:4c:27:47:a6:f0:ba:
44:a7:73:ba:23:fd:c1:41:40:5e:03:83:57:a9:bc:
e8:c5:00:2f:7e:36:8d:07:c9:27:2b:3f:8a:23:87:
29:b6:97:89:d7:7a:52:7b:d4:d3:9c:d4:5e:3c:62:
97:da:b2:f7:73:8c:41:08:21:db:bd:81:fa:d0:cf:
45:31:09:23:c6:48:cc:03:1a:e6:fc:8e:f1:ed:ea:
81:d7:6e:9e:37:d9:56:59:d9:04:fc:82:0c:d8:ad:
a0:ae:71:1f:c7:e6:a7:0b:df:3e:ac:64:0d:9d:84:
62:00:da:e3:de:3a:26:0b:a8:c0:7f:68:f5:1c:4f:
3f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:03:81:4C:51:D6:78:28:BD:57:76:F4:BB:E5:F4:E7:1E:E2:67:90
X509v3 Authority Key Identifier:
keyid:EA:84:60:06:CF:8B:9E:38:8F:31:45:13:58:09:25:02:CE:CC:11:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6oRgBs-LnjiPMUUTWAklAs7METY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d5:cd:88:f0:39:56:4a:24:4a:7a:8f:88:dc:dd:58:bc:c4:43:
94:65:e8:e6:fb:f5:63:73:24:33:0c:fe:97:52:1e:c3:39:0a:
1a:74:06:67:ef:cc:37:a6:05:93:1d:2a:ec:aa:18:35:0f:eb:
59:a3:5a:96:94:a5:4b:fe:af:3c:2e:bc:2b:24:f7:7f:d1:50:
4c:a9:a1:16:06:6f:59:80:52:69:9e:2c:e2:2f:28:11:5f:e1:
90:ce:ad:92:57:90:df:83:57:0d:d7:b4:af:e1:21:17:cf:a1:
72:6d:ca:63:95:ec:ab:ed:11:ba:58:41:be:45:04:dc:04:3c:
64:81:ba:e8:74:5d:c8:40:fc:94:41:f8:bd:38:be:89:9b:d6:
f0:2e:fc:e5:87:ca:13:bf:63:53:f2:96:02:63:cc:a2:ea:4e:
48:9a:f7:4e:a7:8f:46:6c:2b:ae:23:c5:16:78:86:b1:f1:14:
d4:e7:3a:09:8b:59:eb:42:cf:85:d6:92:41:08:b0:e2:f6:8d:
d1:23:28:e2:22:aa:00:f6:95:be:20:9a:b7:7b:94:4b:86:2c:
25:64:4f:39:22:7b:89:77:ff:1f:e7:7c:5b:8c:6d:ef:db:05:
7a:00:37:65:8c:dc:5c:19:a1:28:74:71:43:89:7b:74:d7:f8:
64:f4:5a:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 22:32:12 2026 by rpki-client