Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
File: o8lj0aEdANOEre35u4blOEmpsYw.mft (raw, json)
Hash identifier: 44+L98wsHIx7FBfTyypqMF82h/9BurITF1QT419MymI=
Subject key identifier: 70:1B:6C:73:EB:AC:46:6B:64:BE:11:CE:52:19:F1:FD:4D:3F:D2:76
Authority key identifier: A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C
Certificate issuer: /CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c
Certificate serial: 019F19E7F9C80C6A04660D15907C71F70063
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
Manifest number: 198C
Signing time: Tue 30 Jun 2026 19:01:00 +0000
Manifest this update: Tue 30 Jun 2026 19:01:00 +0000
Manifest next update: Wed 01 Jul 2026 19:01:00 +0000
Files and hashes: 1: o8lj0aEdANOEre35u4blOEmpsYw.crl (hash: K0rd4zMqiyUC6GgjMzczmcAJwOGh1c6lPNHibEewJQ4=)
2: sbWj3cDEvspo2pzFM90qmBN7XGY.roa (hash: ZCuFftw5Wl2QKtDaCFVmcabJrAkBRibR6g/1SyLs2gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:e7:f9:c8:0c:6a:04:66:0d:15:90:7c:71:f7:00:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c
Validity
Not Before: Jun 30 19:01:00 2026 GMT
Not After : Jul 1 19:01:00 2026 GMT
Subject: CN=701b6c73ebac466b64be11ce5219f1fd4d3fd276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:16:ee:2e:88:b2:cb:c6:94:33:5f:e9:f5:4d:
92:ad:b8:cf:40:ae:0d:dd:64:48:48:b1:6e:14:b3:
7c:ee:51:7c:4b:bf:c1:6f:3f:35:40:8d:6c:0d:47:
56:4e:88:77:6a:17:62:c9:1b:c9:fb:f0:3a:13:db:
b6:7e:ba:5b:af:7a:8d:6a:e4:23:d0:3d:26:39:d5:
22:8e:7e:b8:f1:a8:e8:c9:46:9a:b1:d5:2e:7b:6c:
9a:f9:36:93:d8:7c:8a:7f:ef:c5:8d:d0:92:df:e1:
c8:6c:67:c2:37:bd:c3:cb:9b:38:10:2b:20:fa:65:
fe:68:9d:11:ef:6f:e7:be:90:a8:65:d2:9b:d4:07:
cb:26:24:1f:df:2d:d6:13:35:00:21:68:ba:18:9a:
4d:cc:9b:c9:96:f6:16:e8:3d:c2:56:cd:b0:fb:47:
fb:f7:d3:79:54:e7:63:a8:be:9b:67:5d:48:8f:7e:
d3:c7:15:b7:36:77:6e:55:dc:6f:2e:8e:ac:13:12:
12:26:f8:f4:4f:0d:9e:1d:0c:ec:c6:3e:45:cf:55:
13:12:98:05:52:c1:02:82:11:86:c0:fb:90:b3:d0:
16:fa:94:1d:66:5e:de:87:55:52:73:1b:c8:4d:30:
1d:81:21:cf:de:8d:79:f6:e0:01:75:63:52:cf:23:
81:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:1B:6C:73:EB:AC:46:6B:64:BE:11:CE:52:19:F1:FD:4D:3F:D2:76
X509v3 Authority Key Identifier:
keyid:A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:d2:b0:c2:86:71:9d:7e:a9:cc:01:c9:4a:56:98:10:59:a5:
45:71:39:8e:ca:77:29:ca:28:0a:93:4e:6c:93:cf:6e:00:bb:
d1:b4:29:1d:db:f7:49:e7:af:f6:b7:75:bc:f2:44:31:b1:d2:
d6:6f:e5:10:6d:45:8f:e6:a4:9e:55:e8:ac:72:33:c1:23:b3:
9f:1f:f7:e7:da:46:6b:17:bb:1b:fa:9e:e5:1a:50:e8:f6:48:
d2:46:12:ed:0a:28:6e:82:be:c2:e6:86:9d:88:38:d4:b4:1a:
f9:66:95:47:c0:4c:4d:d8:2c:5a:bc:16:9b:33:f6:e7:44:74:
cd:8e:94:53:bc:bb:bd:66:0b:ec:c6:a2:a6:c6:fc:06:8b:d6:
3b:94:8f:5f:3c:1e:8d:90:52:85:aa:30:98:92:c2:46:0e:84:
f0:67:2a:c6:4a:6d:80:c2:e1:bc:c2:03:b9:26:7f:8e:74:c3:
a3:80:77:e0:aa:8d:8e:47:72:91:13:e2:dc:eb:3c:48:30:d6:
a2:ff:76:77:fd:aa:dc:b4:47:6e:37:8f:ab:15:a9:b3:77:47:
e5:ac:d0:c7:58:c1:a6:f0:75:bb:ea:6c:bc:24:0e:21:6f:ea:
24:da:e3:9b:c8:32:7e:43:31:62:8a:03:37:d7:2c:e1:fb:5f:
51:c6:28:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:15:55 2026 by rpki-client