Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
File: o3U2my1LsuLe3maGRTE-NE5vHMA.mft (raw, json)
Hash identifier: qXmlcYLEO/MCYEWTVZP337keMaNwV+vFFP7asmThZrk=
Subject key identifier: 4E:9C:13:FA:98:AE:A9:60:F9:CA:F0:C6:8C:B5:18:78:B0:30:8B:0A
Authority key identifier: A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
Certificate issuer: /CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Certificate serial: 019E973A3B15F60A5E476676F18BEEFB6897
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
Manifest number: 1949
Signing time: Fri 05 Jun 2026 10:00:36 +0000
Manifest this update: Fri 05 Jun 2026 10:00:36 +0000
Manifest next update: Sat 06 Jun 2026 10:00:36 +0000
Files and hashes: 1: cqrDqsllU4angXR7ZhiixighcHI.roa (hash: fhOWug7UyzusWzCmpcbK8cX3/PPspaEdcPiG9KdZ6F4=)
2: o3U2my1LsuLe3maGRTE-NE5vHMA.crl (hash: kjon2DXQ+uxkioY/LJ7eoFNCE9tP2PNrbpqlmqufu1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:97:3a:3b:15:f6:0a:5e:47:66:76:f1:8b:ee:fb:68:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Validity
Not Before: Jun 5 10:00:36 2026 GMT
Not After : Jun 6 10:00:36 2026 GMT
Subject: CN=4e9c13fa98aea960f9caf0c68cb51878b0308b0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1c:2f:cd:88:0c:98:61:06:26:5c:41:b0:6f:
18:dd:45:c5:a5:ec:19:41:95:f3:92:bf:bd:0e:f9:
59:57:8a:bf:50:43:04:81:64:61:ef:1b:ca:04:21:
c6:b0:17:d6:37:29:c1:7f:2f:5d:24:a7:63:75:03:
f9:ef:dd:29:ed:0c:c0:c5:2d:68:6e:6f:33:6e:ab:
31:a1:ce:65:f1:22:6d:34:3c:3a:97:24:9c:af:a3:
9e:c7:fe:55:cd:65:f4:38:65:bb:c1:4e:ec:62:6e:
5a:41:43:02:f3:91:0c:f5:8d:3c:18:75:31:0c:fa:
0a:99:af:24:02:b7:1c:11:43:63:31:5b:98:bc:2b:
11:e3:48:75:60:cd:a4:32:7a:5d:0c:48:6d:59:3a:
8d:5e:81:e8:e7:3f:82:54:26:8a:f3:22:71:49:a7:
4a:b1:7d:21:8a:1b:0e:8b:0b:cb:2f:ed:f1:d0:f1:
5f:12:f7:61:b1:4b:8b:81:ab:3a:29:3b:22:36:56:
b6:11:3e:42:9f:4e:6e:9a:12:d8:27:f5:4e:22:71:
ce:e5:91:6f:3e:17:7c:fe:2f:18:c1:5a:92:0b:33:
82:85:db:fe:77:bf:8f:6c:55:9c:a9:9e:bf:0f:b8:
49:da:b2:01:07:50:5b:01:6b:2a:d2:5e:3d:77:13:
7d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:9C:13:FA:98:AE:A9:60:F9:CA:F0:C6:8C:B5:18:78:B0:30:8B:0A
X509v3 Authority Key Identifier:
keyid:A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:da:26:f9:63:35:b2:24:db:57:4d:bd:90:52:3e:a6:4f:76:
e9:a2:d6:b0:59:a2:56:cc:8d:3a:6d:a0:b6:18:09:98:6d:a9:
da:60:7e:5e:bd:55:de:82:b9:78:54:18:7d:d1:7c:4a:e6:fb:
51:e8:9c:84:f3:cc:89:dd:d1:0f:f7:0a:fc:55:6e:d5:52:f4:
c4:df:32:d2:73:3e:39:43:73:d4:bc:d1:88:ac:fd:59:9d:1f:
84:94:44:8e:4f:3f:b6:e6:60:ed:d2:42:37:f4:be:d8:8a:2a:
46:59:78:3a:7d:3f:e7:67:54:85:7d:64:86:2b:7d:2e:1e:f8:
75:df:f1:29:7c:19:83:22:50:aa:5e:96:fd:09:69:4b:57:d0:
87:6b:a9:81:26:28:8a:3c:25:b4:df:4a:1a:24:cb:e2:cf:d4:
9b:21:5e:c1:23:12:b3:98:9c:32:c6:a0:3b:5b:f1:e4:af:6f:
25:d6:96:ee:49:58:39:c0:f7:dd:df:91:2a:54:2e:43:3f:38:
3e:1a:0f:c1:44:7d:98:7e:62:05:fc:bf:4f:f8:21:b9:f5:a4:
f4:04:62:29:99:56:b3:ab:a8:9c:9a:e5:20:d3:7a:54:c1:83:
24:8c:e8:23:9e:c4:14:02:0d:1b:61:a8:8e:5f:79:78:2a:b3:
27:bf:ca:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 5 20:08:01 2026 by rpki-client