Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
File: Ony1ktfk7HG2eFXR38VdnQZwVHE.mft (raw, json)
Hash identifier: u17jDeMSdai0M4Ld/xu0iSPXSd+3K1O9aJz8MPJtMyU=
Subject key identifier: 6A:DD:D3:B5:01:CE:DF:09:A7:78:EF:B9:54:E3:E3:1D:3B:7F:3C:C0
Authority key identifier: 3A:7C:B5:92:D7:E4:EC:71:B6:78:55:D1:DF:C5:5D:9D:06:70:54:71
Certificate issuer: /CN=3a7cb592d7e4ec71b67855d1dfc55d9d06705471
Certificate serial: 019EDD6588BBDB49376619DECC32658C4853
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
Manifest number: 1050
Signing time: Fri 19 Jun 2026 01:01:19 +0000
Manifest this update: Fri 19 Jun 2026 01:01:19 +0000
Manifest next update: Sat 20 Jun 2026 01:01:19 +0000
Files and hashes: 1: Ay8bkrrQ4W8en6WQA0oZqxfliDY.roa (hash: eQ24k3su4taaH0Z4GfAAZBwUKUzpQjLgnBxCtBNBzyI=)
2: Ony1ktfk7HG2eFXR38VdnQZwVHE.crl (hash: QTSIk0iD+WBluiNDUfX2+/S81Nz7lX9lBLnYj4QWRXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Jun 2026 00:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:dd:65:88:bb:db:49:37:66:19:de:cc:32:65:8c:48:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a7cb592d7e4ec71b67855d1dfc55d9d06705471
Validity
Not Before: Jun 19 01:01:19 2026 GMT
Not After : Jun 20 01:01:19 2026 GMT
Subject: CN=6addd3b501cedf09a778efb954e3e31d3b7f3cc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4a:0c:ab:75:9a:7d:87:29:38:16:51:e9:b2:
f1:2c:3b:ec:19:73:42:c4:f1:0c:64:5a:dc:50:94:
79:35:fb:cf:97:47:e7:7f:88:3d:7c:fe:f4:19:1d:
5d:b7:8f:77:58:19:67:6e:84:6a:e8:0c:94:7f:ee:
e7:1d:11:4f:09:1f:89:9d:81:ca:8c:99:59:de:cb:
cc:a2:47:0c:b5:4b:20:fe:49:99:6e:31:67:ca:9f:
08:01:42:5f:37:d3:a3:f6:59:8b:c0:19:97:39:f9:
3b:9b:f5:53:dc:8f:82:f7:cd:f5:da:9a:7d:2e:5d:
68:2b:7e:bb:19:b3:9f:08:e8:d8:01:3b:4f:90:ba:
71:2e:92:12:21:99:4f:6f:0a:48:6a:8c:4c:83:3a:
8f:3c:23:5a:a7:57:f8:61:c8:07:18:b0:98:5c:6d:
de:06:b9:3b:c6:a5:19:21:d8:bd:f6:55:8a:33:db:
f6:9b:46:76:5c:9c:72:35:4b:a9:1a:56:c0:ba:0e:
a6:5e:cc:99:6b:bc:11:55:46:09:f5:d8:3b:98:c8:
b0:b1:c0:1a:23:56:5d:55:20:3a:a7:c4:f5:ef:a2:
b8:b7:86:77:fb:6a:37:65:19:2a:d9:84:e8:18:89:
de:f5:bd:12:cc:21:a5:e1:b3:53:b9:f5:ae:3a:a3:
20:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:DD:D3:B5:01:CE:DF:09:A7:78:EF:B9:54:E3:E3:1D:3B:7F:3C:C0
X509v3 Authority Key Identifier:
keyid:3A:7C:B5:92:D7:E4:EC:71:B6:78:55:D1:DF:C5:5D:9D:06:70:54:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ony1ktfk7HG2eFXR38VdnQZwVHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf4aa6-28ca-4e71-8aaa-3cc592898789/1/Ony1ktfk7HG2eFXR38VdnQZwVHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:0e:22:5d:f3:52:e2:2d:38:e5:b1:8d:1c:cb:6d:46:9a:f6:
b5:38:8b:f0:f9:e1:ad:00:e7:2e:b9:13:52:c0:f4:80:e6:c0:
ee:c7:b4:66:01:97:71:ae:41:f5:b3:6d:5a:cf:0a:d5:da:33:
8d:e8:1a:a5:f1:37:fd:31:a2:3d:02:f7:03:64:86:4d:64:00:
43:28:ee:27:ab:8e:27:36:e9:50:a8:85:fa:5d:ea:ca:f6:30:
aa:a3:8b:8d:89:83:5d:8a:d3:7d:a5:ef:33:6b:6f:51:16:59:
f8:2b:20:90:c6:df:b9:7e:a8:f1:c2:ca:fa:3e:14:93:45:db:
f5:80:a3:16:85:9b:13:45:01:b9:28:56:08:3c:1f:83:7e:ba:
6a:43:9d:1d:84:8a:ec:b6:c4:77:61:65:42:44:24:79:c6:fe:
31:69:bc:6f:e7:9a:9c:a3:3c:80:0e:33:11:e6:54:78:02:a1:
48:67:ec:62:27:5d:98:4c:93:fc:cf:b3:07:7f:71:e1:2b:d1:
a0:45:ac:fe:64:b3:e3:21:ce:32:db:6f:91:29:c6:45:23:54:
18:a9:a8:ae:76:2a:56:de:9a:a1:22:ee:81:3b:ca:7a:43:76:
59:b7:f1:37:8d:78:8c:e9:a8:c0:32:72:e2:bc:73:ee:2e:00:
0d:60:cb:42
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7dZYi720k3ZhnezDJljEhTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhN2NiNTkyZDdlNGVjNzFiNjc4NTVkMWRmYzU1ZDlkMDY3
MDU0NzEwHhcNMjYwNjE5MDEwMTE5WhcNMjYwNjIwMDEwMTE5WjAzMTEwLwYDVQQD
Eyg2YWRkZDNiNTAxY2VkZjA5YTc3OGVmYjk1NGUzZTMxZDNiN2YzY2MwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0oMq3WafYcpOBZR6bLxLDvsGXNC
xPEMZFrcUJR5NfvPl0fnf4g9fP70GR1dt493WBlnboRq6AyUf+7nHRFPCR+JnYHK
jJlZ3svMokcMtUsg/kmZbjFnyp8IAUJfN9Oj9lmLwBmXOfk7m/VT3I+C98312pp9
Ll1oK367GbOfCOjYATtPkLpxLpISIZlPbwpIaoxMgzqPPCNap1f4YcgHGLCYXG3e
Brk7xqUZIdi99lWKM9v2m0Z2XJxyNUupGlbAug6mXsyZa7wRVUYJ9dg7mMiwscAa
I1ZdVSA6p8T176K4t4Z3+2o3ZRkq2YToGIne9b0SzCGl4bNTufWuOqMglQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGrd07UBzt8Jp3jvuVTj4x07fzzAMB8GA1UdIwQY
MBaAFDp8tZLX5OxxtnhV0d/FXZ0GcFRxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT255MWt0Zms3SEcyZUZYUjM4VmRuUVp3VkhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9jZjRhYTYtMjhjYS00ZTcxLThhYWEt
M2NjNTkyODk4Nzg5LzEvT255MWt0Zms3SEcyZUZYUjM4VmRuUVp3VkhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9jZjRhYTYtMjhjYS00ZTcxLThhYWEtM2NjNTkyODk4Nzg5
LzEvT255MWt0Zms3SEcyZUZYUjM4VmRuUVp3VkhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbA4iXfNS
4i045bGNHMttRpr2tTiL8PnhrQDnLrkTUsD0gObA7se0ZgGXca5B9bNtWs8K1doz
jegapfE3/TGiPQL3A2SGTWQAQyjuJ6uOJzbpUKiF+l3qyvYwqqOLjYmDXYrTfaXv
M2tvURZZ+CsgkMbfuX6o8cLK+j4Uk0Xb9YCjFoWbE0UBuShWCDwfg366akOdHYSK
7LbEd2FlQkQkecb+MWm8b+eanKM8gA4zEeZUeAKhSGfsYiddmEyT/M+zB39x4SvR
oEWs/mSz4yHOMttvkSnGRSNUGKmornYqVt6aoSLugTvKekN2WbfxN414jOmowDJy
4rxz7i4ADWDLQg==
-----END CERTIFICATE-----
Generated at Fri Jun 19 08:27:06 2026 by rpki-client