Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
File: oJ1luSb910PaW0c9NBhf4QGwWig.mft (raw, json)
Hash identifier: rABU9LUhoQ18esIVpu6GCNuj00iGekGsG6CJ5GZSVrY=
Subject key identifier: D6:11:EC:78:22:D1:7F:4A:44:FA:B8:8C:89:46:05:2F:40:30:A1:74
Authority key identifier: A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
Certificate issuer: /CN=a09d65b926fdd743da5b473d34185fe101b05a28
Certificate serial: 019E83465F8DA422065ABC8215D65A5C66AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
Manifest number: 193D
Signing time: Mon 01 Jun 2026 13:01:27 +0000
Manifest this update: Mon 01 Jun 2026 13:01:27 +0000
Manifest next update: Tue 02 Jun 2026 13:01:27 +0000
Files and hashes: 1: jvhBNJv-kjTUWe2w73IOrhsH8ZM.roa (hash: QuobanihGf2Vt3kAlHWHavYrnvmF3ftRBf2VjsfIBoY=)
2: oJ1luSb910PaW0c9NBhf4QGwWig.crl (hash: aGeE/We4EVKS3zkTxcHpLlQSWuUMAk9uEojER0mn2aM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 02 Jun 2026 13:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:83:46:5f:8d:a4:22:06:5a:bc:82:15:d6:5a:5c:66:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09d65b926fdd743da5b473d34185fe101b05a28
Validity
Not Before: Jun 1 13:01:27 2026 GMT
Not After : Jun 2 13:01:27 2026 GMT
Subject: CN=d611ec7822d17f4a44fab88c8946052f4030a174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a9:84:8d:08:c6:1f:05:68:09:68:34:4c:34:
fd:74:02:5b:5b:6a:23:76:97:d1:10:7a:3a:9e:d9:
2a:94:58:8b:1f:58:fa:b8:f6:a7:e8:9f:9a:19:52:
62:d2:ea:10:8e:6c:97:8b:5c:6b:ea:57:01:7a:a0:
38:9e:6c:8d:6d:5d:b4:72:11:30:a7:7c:40:7a:b4:
45:b7:b5:e3:35:3f:a8:b4:9e:88:1c:e1:00:57:61:
8b:c4:ba:8e:63:07:8e:d4:f9:41:c0:02:d9:cc:73:
23:dc:ec:ea:0b:b7:44:56:f7:fc:68:81:8e:2c:0d:
ec:f8:73:e5:25:6e:b2:39:65:18:a3:a3:78:ec:75:
f5:52:e9:a0:bb:36:6a:35:dc:3a:26:26:4b:66:6b:
46:ca:8d:d0:f9:5a:dd:62:7a:5b:d0:86:7c:3d:d5:
a4:01:99:9e:b9:40:80:2b:11:31:1e:d4:45:98:29:
78:ea:4a:24:80:9e:2f:11:c6:05:8c:f9:79:a5:f8:
00:11:67:52:53:4e:7e:45:bb:ea:6a:5f:51:d7:58:
d4:ba:ac:7b:ab:32:4a:54:c2:09:bc:5f:28:44:f7:
f9:56:36:a5:67:d2:61:82:ab:a4:5a:5c:82:73:90:
33:13:26:1d:40:e2:b6:cb:1e:e6:21:87:db:94:33:
30:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:11:EC:78:22:D1:7F:4A:44:FA:B8:8C:89:46:05:2F:40:30:A1:74
X509v3 Authority Key Identifier:
keyid:A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:dd:f1:a0:9e:34:75:af:3a:8b:35:34:41:a3:11:8a:1f:c7:
a0:8e:1e:79:57:42:43:4e:1b:7b:90:8b:64:20:58:df:a6:e9:
86:d7:d0:08:0d:d6:cb:13:9e:44:48:5e:6e:a1:92:38:79:8f:
4a:b9:1a:51:41:6c:04:f5:0a:34:35:85:4a:20:00:7e:2e:ae:
80:79:0d:cb:18:6a:9d:a2:9a:7a:7c:ec:71:4b:fe:44:96:19:
eb:eb:fe:60:d9:06:99:3e:77:62:35:2e:3c:a2:d5:8d:7b:3a:
82:60:ed:06:94:3b:f8:98:91:d1:df:d5:42:04:44:82:99:fd:
f1:95:be:eb:a2:5c:ce:80:d9:57:a3:f8:f3:6f:c2:92:59:71:
1a:85:a8:2b:cb:10:8b:51:12:aa:c1:c6:15:99:f9:c3:03:c3:
77:7c:e6:4e:35:0f:3a:e5:42:84:bf:5f:c5:66:05:c2:46:77:
d4:75:9c:ab:ee:d2:c5:ca:1a:b7:54:6b:7e:2c:25:57:7f:1c:
02:00:55:fc:b0:5a:e2:e3:b0:2f:21:ca:38:22:e5:d0:cc:be:
c2:4b:c7:75:36:09:88:ec:63:51:4c:99:fc:2c:12:90:81:c4:
fe:09:aa:d0:34:25:1f:63:43:d6:29:e9:8e:77:04:cf:46:ba:
33:da:94:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 1 22:21:41 2026 by rpki-client