Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
File: 8oxp2pTIXt1I2cH9jjMq477mYAQ.mft (raw, json)
Hash identifier: HNdT6i3VVZO8OtW3TDNXg5jj2zYSnhTdHvVKduAfcXY=
Subject key identifier: C2:2A:32:92:5D:3B:DE:16:FD:0C:50:5B:C2:75:E9:D7:F4:B6:87:63
Authority key identifier: F2:8C:69:DA:94:C8:5E:DD:48:D9:C1:FD:8E:33:2A:E3:BE:E6:60:04
Certificate issuer: /CN=f28c69da94c85edd48d9c1fd8e332ae3bee66004
Certificate serial: 019E2F96EA0CA3EFC1AEF3A57F20E5BBF58A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
Manifest number: 11DA
Signing time: Sat 16 May 2026 07:01:19 +0000
Manifest this update: Sat 16 May 2026 07:01:19 +0000
Manifest next update: Sun 17 May 2026 07:01:19 +0000
Files and hashes: 1: 5AGKlldahfI2UQwePdR7aOZv59k.roa (hash: yineAINt5f0q9Dc8di7gq2DzeIUdj6NUc5yoND8zPYQ=)
2: 8oxp2pTIXt1I2cH9jjMq477mYAQ.crl (hash: PTv1oi/SG3GumMoZ/WQY1lH+6eg1gLj6iSCV7rRec1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 07:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:96:ea:0c:a3:ef:c1:ae:f3:a5:7f:20:e5:bb:f5:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f28c69da94c85edd48d9c1fd8e332ae3bee66004
Validity
Not Before: May 16 07:01:19 2026 GMT
Not After : May 17 07:01:19 2026 GMT
Subject: CN=c22a32925d3bde16fd0c505bc275e9d7f4b68763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8b:24:01:e5:d4:5a:49:55:61:31:fc:ca:b0:
f0:48:fc:37:ef:60:d1:02:88:a2:04:2a:b5:1e:64:
88:23:94:79:c6:ea:64:88:e3:02:b5:90:25:fd:1c:
69:b8:bd:89:41:44:73:dd:d7:01:ba:5b:b9:ec:02:
3a:8a:2b:a3:c9:dd:26:f6:94:9c:47:1e:05:83:d7:
43:ae:ed:06:24:30:e8:f0:3f:0e:f4:59:92:9b:6d:
7a:4a:c6:79:4c:fe:89:56:04:eb:1e:40:d0:6d:f6:
c1:af:fe:77:4f:f8:23:d5:c9:e2:cb:d7:0a:1d:c9:
32:ab:c6:66:75:75:dc:61:ad:07:df:79:da:d8:ca:
0e:2a:82:7b:73:57:23:09:a2:e8:a0:9a:6f:68:7f:
09:6c:75:e2:19:b7:b9:75:80:9d:97:7b:89:f2:af:
c7:5e:9c:37:6e:9e:65:f4:56:3a:6e:8e:b9:1d:4d:
71:a3:83:64:0f:10:fd:11:30:cd:71:28:22:15:87:
a7:b6:a8:a8:e6:99:58:09:ba:3b:90:e7:74:3f:1f:
86:1e:d0:e3:e6:4c:9c:bc:5c:51:72:0e:2c:bb:f2:
95:b4:a7:ca:16:cf:1e:28:75:a6:cc:8d:4f:6f:c9:
ad:9c:ea:ef:1f:19:aa:ac:fd:9f:61:f1:41:8c:8b:
d4:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:2A:32:92:5D:3B:DE:16:FD:0C:50:5B:C2:75:E9:D7:F4:B6:87:63
X509v3 Authority Key Identifier:
keyid:F2:8C:69:DA:94:C8:5E:DD:48:D9:C1:FD:8E:33:2A:E3:BE:E6:60:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:42:91:c9:54:e6:57:62:cc:29:f3:94:3c:1b:5d:e3:44:52:
93:8c:76:04:56:aa:c9:24:da:cf:93:e1:53:d0:ed:c7:be:3e:
1c:c8:2e:6c:ab:d7:2f:31:cb:56:1f:96:8d:7d:a2:fa:27:f1:
e6:84:f4:e6:e7:29:81:a9:6c:30:7e:f0:af:58:8b:b4:7a:53:
21:49:2b:24:1c:15:3e:d5:4f:ad:a1:65:08:4c:a4:52:73:3f:
84:c5:92:99:71:7a:90:12:02:4b:7e:a5:43:1c:66:18:80:07:
50:dc:e2:41:af:d4:5f:fa:6f:5d:8e:dc:c7:38:66:e8:29:ca:
e7:6e:a9:2b:95:6c:23:fe:65:22:d2:e3:e2:e5:14:5c:37:ac:
65:92:92:c2:08:76:e6:f9:fa:1b:cd:c0:74:4f:d3:3f:36:9a:
a4:39:6d:21:12:b0:1d:6f:77:42:a4:ac:05:91:8b:41:cf:ff:
15:76:e1:27:66:dd:10:48:e9:08:49:dc:18:2a:bd:9d:2d:04:
7c:74:12:d9:d7:cf:cf:6b:9d:b8:0d:07:27:62:09:e8:f1:b9:
c1:e3:a0:46:3e:74:41:cd:5d:05:03:6a:3d:ea:ca:d9:1c:93:
8d:0a:27:f0:16:1f:c0:65:7f:86:f3:97:6c:e5:36:90:6a:e8:
9c:08:02:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:41 2026 by rpki-client