Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
File: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft (raw, json)
Hash identifier: aie6a17X/tagaQ/GVKSijlZ8OKs0fobf4AXR1iUgjWo=
Subject key identifier: 72:06:57:06:77:CE:86:C7:C0:34:6A:5C:E7:2C:44:C9:A8:41:1D:CE
Authority key identifier: D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
Certificate issuer: /CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Certificate serial: 019F18676ABC9B5D48A6F4E4763C4C732976
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
Manifest number: 1986
Signing time: Tue 30 Jun 2026 12:00:58 +0000
Manifest this update: Tue 30 Jun 2026 12:00:58 +0000
Manifest next update: Wed 01 Jul 2026 12:00:58 +0000
Files and hashes: 1: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl (hash: DTSuPfGXOYz/a3jfUbKt7GhLXjXb4bR8f3xFgxfCuVI=)
2: qB-yYmmoZAETKywXU4O90SMz9p4.roa (hash: zSfrh0GvpLorIoRjiLIdctGLnu0vrYxfcdrku/RI+Pw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 12:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:67:6a:bc:9b:5d:48:a6:f4:e4:76:3c:4c:73:29:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Validity
Not Before: Jun 30 12:00:58 2026 GMT
Not After : Jul 1 12:00:58 2026 GMT
Subject: CN=7206570677ce86c7c0346a5ce72c44c9a8411dce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ea:4d:21:07:d0:e3:dc:76:2f:ac:58:13:5c:
43:b0:d3:f4:09:83:9e:d5:0c:50:ce:7e:2d:bf:f3:
76:32:1c:cb:57:c3:1f:b2:b5:8d:f4:3f:82:82:2e:
f3:ce:14:e0:dd:5c:15:04:fa:6c:30:bc:35:ea:22:
da:ce:92:5a:3b:c3:77:c4:f7:1f:7c:88:82:18:84:
2e:16:bf:5f:fe:3c:b1:64:e3:9f:bd:72:7a:91:b1:
24:a3:a9:d9:b9:3d:a1:45:18:1c:8d:47:3d:86:17:
d1:9c:88:00:1d:03:df:b1:77:0f:03:70:00:1a:e2:
2e:8d:62:56:78:d4:ec:a3:96:e5:22:ce:ba:f3:7f:
98:34:11:29:60:22:88:bf:fe:ff:69:8a:30:e8:51:
fc:ee:33:3b:8e:35:37:0b:60:72:85:b6:04:df:12:
57:b2:2c:a9:c5:7f:b0:c2:07:5c:06:4f:ed:92:c6:
8e:7b:8c:0e:e1:4a:f4:ef:dc:57:f9:7d:92:88:26:
83:15:d1:7d:b8:64:68:fb:14:ca:42:d2:f0:95:e5:
84:37:53:0e:ae:3e:18:86:17:3f:55:5a:26:5d:0d:
af:1e:6d:5c:3f:ea:d7:34:eb:d0:0e:a0:9d:21:0f:
e7:68:7f:44:bd:b5:df:30:aa:c8:be:3b:93:83:07:
91:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:06:57:06:77:CE:86:C7:C0:34:6A:5C:E7:2C:44:C9:A8:41:1D:CE
X509v3 Authority Key Identifier:
keyid:D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:f2:ca:84:35:36:23:d2:2f:49:8d:36:5f:76:6f:46:7d:47:
35:a2:92:da:cb:0f:fc:78:40:0d:2d:a6:5d:e8:a5:7f:93:1a:
36:7c:14:7e:a2:a6:d1:e4:9f:7a:c7:0a:4a:b3:ba:90:62:ed:
55:2a:b6:9b:bc:df:c2:59:85:3f:dd:1d:5e:19:92:91:ce:23:
04:6c:93:af:35:30:af:cb:22:47:9a:aa:3d:fc:75:8b:e7:e9:
99:a8:19:fc:84:53:10:80:de:58:61:d0:e7:45:08:8e:62:e7:
22:fe:c3:fb:9a:4e:d3:bb:51:c8:57:cc:91:4d:ec:10:01:2d:
ac:40:86:46:05:2f:28:c9:9e:54:95:97:6c:53:82:a8:33:33:
39:1f:77:c5:8d:53:f3:dd:20:1a:9e:06:8c:f2:e7:c4:93:97:
e0:9c:ba:22:4b:b5:1c:24:a8:2a:46:6d:ab:9b:75:ef:22:e5:
6c:cc:31:ba:54:98:6a:7f:79:76:27:a3:63:99:93:1c:59:fc:
f8:d7:a5:cc:51:5d:b3:af:5c:29:b2:c4:3f:c3:c7:a2:d8:1b:
18:8b:32:76:0a:2c:83:b6:40:d3:8e:91:53:50:63:0d:ac:4b:
da:d8:e0:4c:3f:aa:86:11:ec:d2:0d:58:eb:a3:61:ef:b7:f7:
66:41:d1:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:18 2026 by rpki-client