Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
File: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft (raw, json)
Hash identifier: fjq/XHoea3rq5j6qeZEe5xx0kEGuyiLzLWOLHm2D0Vw=
Subject key identifier: 12:52:5A:D3:CA:5F:25:E7:B4:70:13:B7:4A:A6:E5:8A:56:6B:94:09
Authority key identifier: D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
Certificate issuer: /CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Certificate serial: 019F17C36AB3E95284CFC5D2378678F24C53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
Manifest number: 16CC
Signing time: Tue 30 Jun 2026 09:01:50 +0000
Manifest this update: Tue 30 Jun 2026 09:01:50 +0000
Manifest next update: Wed 01 Jul 2026 09:01:50 +0000
Files and hashes: 1: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl (hash: V03qXCvTICRR4ytiBs1+2NODfeIv1m6TZKxk4+d4XqM=)
2: t0X5t_3y1eMrgSVfnROrir2IJb4.roa (hash: BPcyM2IeAIooAh+FVKFVf4qaLxjgFOkdsiFt2kQ2Eag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 09:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:c3:6a:b3:e9:52:84:cf:c5:d2:37:86:78:f2:4c:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Validity
Not Before: Jun 30 09:01:50 2026 GMT
Not After : Jul 1 09:01:50 2026 GMT
Subject: CN=12525ad3ca5f25e7b47013b74aa6e58a566b9409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:60:14:11:e7:37:1d:41:bf:8e:af:c0:9e:f0:
01:51:54:be:09:74:fd:3a:e6:19:c2:7f:a3:61:94:
d2:7c:02:8b:4f:79:34:06:32:a5:a5:c2:4b:2a:24:
af:f4:b9:f5:ad:84:ad:82:71:2a:5e:a2:97:04:19:
f7:ab:80:4f:36:5d:0b:ae:d4:5c:cb:14:5f:34:6f:
7b:18:c1:9f:20:17:15:cc:51:4c:2b:b0:eb:9f:2a:
10:61:29:6a:84:ef:cc:53:0b:ee:ac:de:83:55:6c:
9d:c3:31:eb:42:f9:85:9d:65:17:c2:38:cc:a8:2d:
3f:95:a7:1f:12:f3:53:ea:6e:2e:ed:70:10:34:3b:
3b:51:90:51:66:d5:c6:66:fd:d2:64:48:22:11:f1:
a7:af:8a:52:2b:02:10:a5:af:cb:d9:e4:0e:d4:03:
d2:19:17:5b:b4:64:22:3d:48:c8:2d:d4:1a:f8:49:
c1:00:87:fc:6a:fd:3f:f1:2b:92:95:38:cf:57:0a:
fa:a8:39:1c:86:95:ce:96:a2:00:18:02:20:e2:9e:
9e:0a:ac:2c:45:94:87:91:b3:71:9f:7a:8a:42:ed:
59:33:c8:a6:3a:3d:a9:12:aa:5c:2f:bb:74:6c:8b:
ad:05:2c:e7:91:56:6f:bb:cd:67:6a:2d:12:78:6c:
2f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:52:5A:D3:CA:5F:25:E7:B4:70:13:B7:4A:A6:E5:8A:56:6B:94:09
X509v3 Authority Key Identifier:
keyid:D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:9d:d6:fd:98:b8:fd:fa:c5:16:62:a9:47:44:3d:1e:d7:0a:
dd:65:c1:7e:9e:e9:15:8e:d6:bd:d8:b5:34:2d:c8:a5:35:f1:
cf:ec:7e:6e:26:39:60:f0:63:05:4c:93:13:ae:f4:43:7c:76:
8d:1a:ff:2f:70:43:4a:c3:d5:7a:25:59:3b:d7:9e:47:ee:5d:
e5:c3:de:a6:af:34:ae:66:4a:da:e8:d5:d4:1c:1d:cb:81:6b:
7b:b2:f6:b6:57:76:71:a9:29:3a:fe:ed:ed:e8:9a:96:a5:9d:
92:cd:56:7a:7f:7a:55:3e:78:d9:4d:ad:6c:01:67:6b:1b:45:
fa:cd:a5:6f:1b:36:9d:7f:49:18:9d:ad:62:8b:d0:17:b2:8f:
ed:57:37:6b:4b:6b:93:ab:30:0c:73:34:48:6d:e6:15:ac:fa:
c8:7f:ae:20:cd:4a:e2:e2:6f:ed:31:2e:e3:aa:6e:20:e9:62:
d5:14:79:21:34:04:90:0b:60:84:72:5f:d3:58:0d:a0:ad:b3:
cc:72:24:86:aa:fe:0a:a5:17:26:90:cf:d6:be:39:8c:9c:c5:
d7:20:c6:60:d4:49:a8:6e:35:9d:2f:b7:f2:8b:8b:e3:70:13:
95:cf:ce:2d:c7:51:dd:89:b3:33:f5:60:b4:82:b2:63:9b:03:
cf:de:0d:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:38:06 2026 by rpki-client