Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
File: t72OrhZp3rOj-kGGSR4FyzLOCSo.mft (raw, json)
Hash identifier: RbUYA0DQ9IwrOCzgQhs8L+LxKB0sFw1bJcvWab4BkrY=
Subject key identifier: 21:E4:F7:56:0E:E5:E6:5D:AF:66:6C:7F:5B:88:84:70:F3:AB:EC:A6
Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Certificate serial: 019E2B15269196BC7882A88B3CA90907BC57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
Manifest number: 13CB
Signing time: Fri 15 May 2026 10:01:06 +0000
Manifest this update: Fri 15 May 2026 10:01:06 +0000
Manifest next update: Sat 16 May 2026 10:01:06 +0000
Files and hashes: 1: OhJpimseggO-Y4_hoEiI1nB-3a4.roa (hash: zDlcOi1opjdDim5XNlXyOBikBSD080S2FUrAKbWMWcM=)
2: t72OrhZp3rOj-kGGSR4FyzLOCSo.crl (hash: ycQxVLjIb3R6zr5d7JmMyw2FTJMuVnaNt9ZifkiEspY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 10:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2b:15:26:91:96:bc:78:82:a8:8b:3c:a9:09:07:bc:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Validity
Not Before: May 15 10:01:06 2026 GMT
Not After : May 16 10:01:06 2026 GMT
Subject: CN=21e4f7560ee5e65daf666c7f5b888470f3abeca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b1:50:3d:2b:52:86:ea:04:4a:ee:07:7a:8d:
42:03:f9:44:45:c3:e5:34:6f:1c:09:a6:92:87:0f:
86:cd:39:63:9f:9c:81:c1:45:c6:83:83:02:e1:81:
ce:78:ae:be:75:1c:28:ec:59:bf:d2:55:ac:11:d6:
ac:33:f8:39:3e:01:b5:de:33:17:62:9d:28:8d:d4:
00:94:9b:05:75:9c:cd:17:ac:f0:fa:02:1e:06:19:
cc:91:2a:a1:70:da:58:48:74:3c:84:71:fb:43:c6:
4c:b5:a0:b1:8b:c4:7e:9f:ca:f8:ce:c3:bd:f5:46:
64:d6:02:27:bc:90:fe:64:da:3e:75:fe:b9:43:af:
02:64:11:a2:4f:71:a2:07:10:92:fd:02:0c:8a:51:
93:32:ff:49:0f:3a:d5:99:01:88:4b:8a:c2:8f:1f:
a2:28:b7:38:62:ee:32:a2:a0:d6:ba:ae:dc:3a:d6:
69:f4:a6:1e:2a:df:82:69:22:0f:96:85:a5:86:01:
16:88:cb:aa:f7:db:30:7c:fc:9e:58:3c:a7:26:14:
b3:5f:5e:34:ec:96:17:16:40:e9:f3:4d:3c:75:04:
aa:b4:16:b1:1a:26:da:19:eb:f3:9e:66:10:90:43:
c3:bd:13:7d:a4:71:e8:31:2b:cf:3a:74:f2:00:6a:
0c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E4:F7:56:0E:E5:E6:5D:AF:66:6C:7F:5B:88:84:70:F3:AB:EC:A6
X509v3 Authority Key Identifier:
keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:75:3f:a9:e5:7e:df:19:7b:5b:f6:78:6c:4f:cb:e2:11:bf:
43:aa:f5:b0:2a:47:fc:6d:f6:71:29:7e:42:91:54:30:51:0a:
31:47:68:0d:de:2f:ff:f3:9a:3c:48:48:10:82:0e:41:f3:2d:
86:ef:84:12:d1:54:c5:59:a9:6b:11:de:51:1c:4a:e9:04:1c:
96:67:71:df:96:c0:42:9a:52:59:01:fe:f2:01:42:1c:6e:49:
29:81:6d:39:d5:1a:7f:c4:5c:f1:94:d6:41:bd:4f:1c:53:06:
19:b7:f1:0c:fc:7e:57:b7:79:7c:d1:64:75:ec:d9:6c:53:03:
29:aa:a0:ad:6c:46:dd:4c:fc:89:39:d4:cc:14:01:56:30:3c:
f1:87:5a:d8:e2:8c:5d:28:94:c9:52:4f:de:4d:a2:e1:af:9f:
1d:15:f6:d3:7b:34:03:8e:aa:d8:d5:92:2a:00:02:1d:12:38:
60:a9:5f:ce:ed:2d:01:e9:02:0d:d1:85:12:54:8f:34:17:36:
3a:9a:61:b4:66:91:19:d6:aa:3c:cd:40:3e:a3:64:ee:fd:e0:
7f:dd:b2:32:d9:ed:49:47:68:4a:67:aa:5c:24:b8:c7:e7:4b:
8d:80:9c:70:d4:74:3c:29:9f:d5:27:5d:42:f4:6e:1a:74:65:
46:88:87:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 17:38:33 2026 by rpki-client