Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
File: Ony1ktfk7HG2eFXR38VdnQZwVHE.mft (raw, json)
Hash identifier: OugRy+HndP7KlIunj7G4OFpQ+3nq51lg22rbGVcuUHs=
Subject key identifier: AA:AA:20:5F:76:11:BC:96:0B:E6:20:14:16:94:BB:25:FA:DE:1B:AB
Authority key identifier: 3A:7C:B5:92:D7:E4:EC:71:B6:78:55:D1:DF:C5:5D:9D:06:70:54:71
Certificate issuer: /CN=3a7cb592d7e4ec71b67855d1dfc55d9d06705471
Certificate serial: 019EE70D8FBF3407A87D05306CD1F224E1B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
Manifest number: 1055
Signing time: Sat 20 Jun 2026 22:01:25 +0000
Manifest this update: Sat 20 Jun 2026 22:01:25 +0000
Manifest next update: Sun 21 Jun 2026 22:01:25 +0000
Files and hashes: 1: Ay8bkrrQ4W8en6WQA0oZqxfliDY.roa (hash: eQ24k3su4taaH0Z4GfAAZBwUKUzpQjLgnBxCtBNBzyI=)
2: Ony1ktfk7HG2eFXR38VdnQZwVHE.crl (hash: IFX3DPDhonqqQ/FSyZilneQcOGDlYrcZ1S4Qj1d+REc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Jun 2026 21:52:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e7:0d:8f:bf:34:07:a8:7d:05:30:6c:d1:f2:24:e1:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a7cb592d7e4ec71b67855d1dfc55d9d06705471
Validity
Not Before: Jun 20 22:01:25 2026 GMT
Not After : Jun 21 22:01:25 2026 GMT
Subject: CN=aaaa205f7611bc960be620141694bb25fade1bab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:27:83:19:ab:ec:b4:0c:71:99:7e:5b:0c:5f:
2b:81:6f:1b:8f:12:7b:9c:fe:a7:4a:1a:18:c0:1f:
8c:60:71:e1:5c:1b:00:58:86:8c:ac:a7:19:3f:56:
17:78:18:15:c4:2e:d6:8f:53:89:77:1e:a7:49:d6:
19:e8:2f:ff:f8:29:cb:c4:b4:36:0e:a2:30:f7:c2:
cc:c6:50:3f:5d:69:43:15:b4:d6:7d:eb:c9:d5:57:
03:fa:ec:14:df:83:25:af:c4:80:69:23:fa:8e:ee:
66:02:8f:34:cd:f0:79:bb:3f:ea:a2:63:ff:38:4a:
2f:13:e6:57:47:9d:35:c5:43:f2:d8:ae:fb:77:b0:
48:43:a9:2e:75:2d:7f:93:01:b1:68:48:ec:f5:56:
ee:05:b1:a0:98:5f:de:9f:d9:2d:59:0a:79:d7:88:
09:59:c6:f5:d4:99:48:fc:92:28:31:22:65:2f:c1:
8d:7a:66:c3:aa:0f:93:c6:d2:20:e0:3a:50:f5:33:
88:db:8d:3c:39:2e:b2:8b:8a:e3:cf:da:02:1d:81:
50:af:8a:a1:bc:cf:fa:dd:a4:42:1f:4f:e5:87:c7:
dc:e5:0d:4e:9b:56:bb:65:9d:91:1a:4c:e4:fd:6a:
71:0b:7b:24:0f:8f:00:14:f8:7f:f0:45:d1:45:48:
41:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:AA:20:5F:76:11:BC:96:0B:E6:20:14:16:94:BB:25:FA:DE:1B:AB
X509v3 Authority Key Identifier:
keyid:3A:7C:B5:92:D7:E4:EC:71:B6:78:55:D1:DF:C5:5D:9D:06:70:54:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:92:a3:5b:9a:22:bc:1f:dd:48:43:0c:df:7b:95:b9:32:bc:
b7:6e:af:86:2e:df:2d:ba:f1:23:52:20:57:c2:e3:80:a4:6e:
2e:55:cc:44:58:05:4b:cf:3d:ed:6f:75:b4:a3:0c:41:a7:25:
1b:9c:5e:27:fc:54:8b:d0:5d:5b:d1:74:e1:58:d7:27:46:92:
24:fc:d9:05:59:da:1d:05:5f:86:ec:76:06:57:d6:15:d3:e3:
48:8c:aa:37:9a:dc:6f:0c:d2:36:6b:76:3d:6f:49:97:69:52:
73:59:08:d3:6c:32:4a:9a:2c:fd:ad:61:54:94:18:8d:d6:c2:
24:3d:05:31:c8:23:25:8f:ce:aa:b5:cf:b2:cf:7a:68:ed:e6:
bd:f0:18:76:d1:8c:89:1f:16:c5:b9:18:b2:f0:1e:20:ac:8b:
56:a0:04:55:68:57:bc:f9:b9:5c:f8:cb:b6:fc:85:77:db:7b:
70:d2:fe:05:6d:d3:14:6e:e4:a8:e5:94:19:7d:45:29:6a:18:
cc:d3:19:3b:3b:43:b6:72:7f:be:6f:dd:9c:a4:d5:00:78:da:
d1:47:67:42:7e:af:a0:30:d1:f7:25:9b:f9:0d:0c:35:cf:69:
ff:10:85:55:36:00:26:80:5e:13:51:66:1c:d2:be:3b:fb:d9:
35:3c:cc:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 21 08:04:02 2026 by rpki-client