Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
File: o8lj0aEdANOEre35u4blOEmpsYw.mft (raw, json)
Hash identifier: 6tXWt5nSutIWnSW9WrGAD0EVPL4DzZJLX41VKPIrBD0=
Subject key identifier: 99:83:6A:BC:32:52:96:26:57:76:E2:2B:27:7F:9D:D4:92:2D:D4:C3
Authority key identifier: A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C
Certificate issuer: /CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c
Certificate serial: 019E322A2F98E115D7E33108F29A14CE9569
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
Manifest number: 1914
Signing time: Sat 16 May 2026 19:01:25 +0000
Manifest this update: Sat 16 May 2026 19:01:25 +0000
Manifest next update: Sun 17 May 2026 19:01:25 +0000
Files and hashes: 1: o8lj0aEdANOEre35u4blOEmpsYw.crl (hash: vVmQPG/1R5U52EabemKQdUJRWwFBZ1rl4gvAQp9RdEY=)
2: sbWj3cDEvspo2pzFM90qmBN7XGY.roa (hash: ZCuFftw5Wl2QKtDaCFVmcabJrAkBRibR6g/1SyLs2gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:2a:2f:98:e1:15:d7:e3:31:08:f2:9a:14:ce:95:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c
Validity
Not Before: May 16 19:01:25 2026 GMT
Not After : May 17 19:01:25 2026 GMT
Subject: CN=99836abc325296265776e22b277f9dd4922dd4c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b7:65:c4:50:cf:fa:37:f9:e7:35:16:89:ba:
f3:5c:c6:f8:77:70:55:3f:7c:11:a6:6e:dc:ce:97:
3f:4e:55:cd:ac:71:b4:ab:66:ec:14:19:b7:fe:f1:
2d:fc:5f:86:be:3d:c5:f5:a2:e7:a3:9b:b0:7c:02:
e5:b9:37:6b:dc:58:26:f6:d2:f1:25:fe:b0:1d:ff:
f3:b8:85:4b:46:6e:52:83:16:e7:02:f2:55:bf:eb:
62:6d:14:f4:3c:14:ab:10:fe:9c:b5:b2:a5:44:33:
db:17:6f:62:b4:15:80:2f:be:ad:f1:22:33:30:d7:
ea:81:6e:46:f8:bc:ed:bd:a2:de:4f:aa:ba:93:b7:
f8:67:f2:d2:85:b6:30:7c:46:ce:39:cc:bb:e5:92:
ce:c2:4b:93:9c:ce:1a:b6:af:a9:86:ba:48:a0:eb:
5f:8c:9f:9d:4d:34:f1:61:f4:60:2e:a5:c2:b1:d7:
db:db:3c:a0:d2:cc:cc:3b:0a:1a:2a:e0:b1:2f:a0:
ad:5a:f8:82:1b:69:ce:ad:0a:45:0c:fe:18:12:c8:
4c:11:1b:b0:0a:e9:dc:7a:30:25:ba:b9:62:11:0c:
ff:dc:d6:76:32:f0:cc:66:cb:15:37:9c:d2:d0:4d:
a8:73:ab:2c:4f:c6:b0:5a:15:f7:f8:4d:f8:45:de:
40:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:83:6A:BC:32:52:96:26:57:76:E2:2B:27:7F:9D:D4:92:2D:D4:C3
X509v3 Authority Key Identifier:
keyid:A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:98:c3:64:8b:f1:2c:80:a9:46:c7:13:0c:b5:86:98:74:ec:
58:c5:5c:99:07:42:f6:0a:0c:4d:78:a2:e4:a0:e9:f8:21:6d:
02:dd:ac:01:94:cf:6a:ab:77:89:b8:f9:ef:89:a1:e1:19:7a:
ed:a3:3a:4b:79:51:25:31:8f:c0:35:60:50:d3:a7:1f:9f:50:
d1:ba:fc:41:96:98:03:49:04:51:d8:3d:d1:7c:f5:5d:6a:3d:
43:db:16:f3:9f:91:45:a8:dc:1a:b2:c2:ed:81:f0:a7:71:ba:
18:e3:11:27:a6:60:73:fd:24:5b:f3:c5:b0:37:7b:c2:46:22:
55:b7:75:27:78:81:2d:c4:f4:0c:20:c4:47:a9:7a:fa:16:83:
33:a4:e9:22:80:8c:3a:29:f0:28:42:9f:3a:b3:3f:91:4f:f8:
52:f4:ae:c2:7c:98:11:db:2c:52:9a:e4:4b:a3:b5:30:76:a6:
c1:99:58:18:09:cd:f8:01:05:f4:c7:4e:a9:c7:a0:91:f6:f1:
82:9c:8e:09:4c:ee:96:03:e6:83:00:44:dc:5f:5c:42:c7:53:
71:51:81:c1:31:2a:4e:ba:e8:f4:8a:f6:7e:98:e4:e9:b4:4f:
46:e5:df:a1:6d:5e:66:7f:3a:af:12:3d:fd:0f:f5:4b:90:1e:
c4:1a:ad:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 21:12:54 2026 by rpki-client