Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
File: o3U2my1LsuLe3maGRTE-NE5vHMA.mft (raw, json)
Hash identifier: d0q3aGqspCGVV1KPH98IY8imBISyGyMKvcXZuLPQUlQ=
Subject key identifier: 7F:2B:73:89:06:74:FD:92:5E:44:CF:32:10:9A:E9:73:DA:BB:0A:4E
Authority key identifier: A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
Certificate issuer: /CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Certificate serial: 019E99289439294B559D87539BFFF4A8B563
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
Manifest number: 194A
Signing time: Fri 05 Jun 2026 19:00:33 +0000
Manifest this update: Fri 05 Jun 2026 19:00:33 +0000
Manifest next update: Sat 06 Jun 2026 19:00:33 +0000
Files and hashes: 1: cqrDqsllU4angXR7ZhiixighcHI.roa (hash: fhOWug7UyzusWzCmpcbK8cX3/PPspaEdcPiG9KdZ6F4=)
2: o3U2my1LsuLe3maGRTE-NE5vHMA.crl (hash: 3B/gi7XXDI6czQXEBYA2Y8hZRI59gTVjrOiGWKt3u4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 17:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:99:28:94:39:29:4b:55:9d:87:53:9b:ff:f4:a8:b5:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Validity
Not Before: Jun 5 19:00:33 2026 GMT
Not After : Jun 6 19:00:33 2026 GMT
Subject: CN=7f2b73890674fd925e44cf32109ae973dabb0a4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:09:59:dd:6e:6f:f2:bd:be:02:ef:7b:07:26:
44:74:99:04:59:27:e6:2a:bc:ef:64:63:1b:6c:9e:
43:f8:62:c8:68:ee:b3:b0:8e:0c:7a:73:04:01:30:
98:65:0c:60:b4:fe:df:c1:06:0a:10:8d:f2:80:e4:
72:8b:a5:e3:da:ed:bf:0c:ef:a0:51:ec:3a:bb:e9:
78:87:ce:3b:2b:80:3f:0a:8e:f0:05:86:07:37:24:
01:21:75:66:fb:8b:0e:b9:55:2e:ff:72:90:ac:83:
a3:9d:75:70:6f:76:47:74:e5:e6:b8:3e:30:78:77:
e1:0a:6d:c2:13:6d:84:d4:5c:22:db:22:2a:4e:5f:
ad:82:29:3b:3c:4f:06:7e:ed:2f:e6:24:3b:ae:27:
11:54:87:80:50:dd:75:89:5b:b8:eb:b3:65:31:fb:
09:6a:35:60:1a:fc:89:78:67:db:5b:84:57:84:68:
dc:4e:5c:7c:05:fb:8d:98:f5:1b:7c:17:ce:0e:13:
53:71:4b:c6:5b:d9:fc:ed:e3:69:08:23:11:37:ad:
75:c7:7b:70:c1:37:cf:0c:43:d1:55:64:37:08:0f:
4e:d8:6a:ee:af:ba:77:57:0a:21:a6:c6:82:96:69:
b6:41:99:12:b1:89:13:fc:41:5c:a0:80:5f:1d:3d:
b8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:2B:73:89:06:74:FD:92:5E:44:CF:32:10:9A:E9:73:DA:BB:0A:4E
X509v3 Authority Key Identifier:
keyid:A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:62:b2:82:0c:dc:77:8d:77:07:85:a7:40:dd:21:e9:c3:f0:
3e:30:7b:f3:43:87:15:98:85:c0:e1:73:b2:29:fc:6b:51:70:
f3:bd:e1:1d:f1:61:30:15:76:89:e2:09:b3:a5:cc:e2:98:11:
5d:de:31:13:5e:43:a2:11:93:1b:71:bc:6c:08:93:2a:42:2e:
1e:16:e8:0c:08:db:f3:26:ca:13:84:20:59:f6:52:29:c8:cd:
e1:21:31:e3:b8:0a:af:bc:57:93:d8:2f:d8:7a:73:23:c9:36:
75:a6:1f:e3:b9:ad:1c:0b:ee:88:47:0a:bd:02:07:8d:de:08:
a7:9d:00:bc:bd:7a:5e:53:40:39:81:32:15:19:02:4c:29:79:
3d:e7:04:3b:3a:82:80:f5:70:01:cc:4f:f7:f9:99:7b:a6:33:
2a:01:16:af:4e:b7:1e:0a:58:46:6b:b1:63:56:8e:ca:4d:b6:
a6:0d:e2:5b:da:f3:2d:76:00:ee:96:82:f7:8d:d4:5f:bd:98:
1c:b8:5c:c4:ce:82:70:68:e8:37:43:26:81:67:63:6e:98:ae:
68:e2:04:27:18:2b:7f:01:30:4a:35:41:31:2b:0c:9e:1c:57:
1b:3a:aa:64:ac:2f:f8:1a:2f:a2:95:6c:e2:ab:e4:c9:00:6f:
7a:f1:9b:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 5 21:16:52 2026 by rpki-client