Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
File: o8p7HBOn17MSMUErj7aUehdH250.mft (raw, json)
Hash identifier: tV1rSE/s2NDzt/F2qrO79I2hSQTlxfN5e0OTkL8VwxQ=
Subject key identifier: 8D:A6:6D:F6:A9:4C:77:C4:C4:33:A8:2B:39:1C:0C:8E:B6:F6:E9:E7
Authority key identifier: A3:CA:7B:1C:13:A7:D7:B3:12:31:41:2B:8F:B6:94:7A:17:47:DB:9D
Certificate issuer: /CN=a3ca7b1c13a7d7b31231412b8fb6947a1747db9d
Certificate serial: 019E9C2A81142FD3E3295452A506CB3251D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
Manifest number: 0734
Signing time: Sat 06 Jun 2026 09:01:31 +0000
Manifest this update: Sat 06 Jun 2026 09:01:31 +0000
Manifest next update: Sun 07 Jun 2026 09:01:31 +0000
Files and hashes: 1: HlrwIab2M9srn4RxDvYJgsLRgu0.roa (hash: 7RDUg5q6/CoL8hnKalD+rZmIPoU5JzkF0lqwqiGYim4=)
2: gAEobSYXeBTkpjhr1NGGBygqZvA.roa (hash: UAsheFQAdNFM95KSSftG0uZENkjtk9zrTcPB/F/4eEU=)
3: o8p7HBOn17MSMUErj7aUehdH250.crl (hash: 7mGoZKwwwtgm4ooUOY3sn/063g93vTpU9ssaJBxPQiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 09:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9c:2a:81:14:2f:d3:e3:29:54:52:a5:06:cb:32:51:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3ca7b1c13a7d7b31231412b8fb6947a1747db9d
Validity
Not Before: Jun 6 09:01:31 2026 GMT
Not After : Jun 7 09:01:31 2026 GMT
Subject: CN=8da66df6a94c77c4c433a82b391c0c8eb6f6e9e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4f:58:4c:c4:67:fa:33:e4:da:3e:90:a9:ec:
ba:dd:1e:a1:0a:b9:66:95:62:fa:d6:cb:05:08:96:
ba:be:8c:30:5a:d7:c7:cc:db:1c:f7:2f:5a:ab:15:
b6:ed:cc:d2:a6:bb:32:3c:af:62:97:b5:52:fc:6a:
be:ab:b4:e9:4d:bf:76:63:a8:9a:17:8e:08:83:e0:
02:32:e6:66:e9:04:65:f9:0a:d3:b4:8b:2a:23:5b:
ce:05:84:74:80:66:92:25:74:43:ee:85:35:67:3f:
c1:da:66:48:7f:ca:8d:98:56:9d:75:1a:70:da:5b:
82:41:dd:24:9c:a9:07:99:bd:70:f4:fc:74:3a:54:
4f:6c:b7:15:4a:90:bc:66:17:47:51:10:12:ed:38:
86:e6:d0:23:9f:6a:bc:09:1b:9a:01:c9:8a:79:ac:
06:56:06:e1:3f:01:52:34:5d:90:93:5b:f1:3d:09:
51:bc:33:e4:c4:59:da:f4:94:29:06:07:89:fe:76:
1d:f8:0e:6c:bb:61:f0:a9:ce:48:f8:78:fa:de:4c:
a4:ce:24:c7:cd:c5:f7:62:89:d7:22:50:13:b7:72:
11:f5:33:0a:4c:4d:f7:02:61:c8:19:ba:6f:d6:0f:
af:6b:98:da:06:c0:c7:23:60:e6:3d:db:f7:e9:c1:
82:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:A6:6D:F6:A9:4C:77:C4:C4:33:A8:2B:39:1C:0C:8E:B6:F6:E9:E7
X509v3 Authority Key Identifier:
keyid:A3:CA:7B:1C:13:A7:D7:B3:12:31:41:2B:8F:B6:94:7A:17:47:DB:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:e0:1b:d5:a0:32:ea:1f:07:68:fb:34:c7:2a:f0:ce:27:2a:
b0:b4:6f:e4:ca:cb:cb:66:bc:93:45:10:ff:aa:4f:b2:56:1c:
73:3c:8a:22:4d:0b:cf:ce:6d:e6:f9:0a:11:6e:f9:a2:2a:0a:
70:75:e1:4f:2b:49:f7:8a:e3:d6:7a:d8:aa:71:1e:49:7f:54:
e5:ac:06:4e:13:38:67:49:9c:2d:83:53:af:48:82:f5:df:b5:
f4:5f:60:d8:df:f3:bc:d7:7a:71:9a:0f:7e:82:ca:2d:05:ef:
65:e8:a9:88:43:a4:9f:f2:f4:19:9f:e1:af:09:2a:40:f6:fe:
fc:19:b8:b4:8f:57:7f:56:09:03:b6:9f:f1:5f:5c:32:9d:d2:
23:d5:14:ff:aa:d9:89:74:d8:ff:22:fc:b5:5b:ba:1c:8f:7f:
06:be:53:47:c9:44:5c:b5:b7:07:a4:eb:f8:5b:7b:72:c7:8e:
fe:9d:86:24:9b:00:14:91:8b:78:9a:ed:9f:56:ce:c9:c1:c9:
d6:4b:7d:8c:d7:7d:e1:cb:83:e4:c6:32:eb:b8:29:fb:5a:f7:
87:ba:55:9e:a6:be:3c:53:ec:94:6c:87:50:5f:5c:43:5a:0b:
5a:a0:a7:62:21:d9:05:7b:15:ea:d1:d7:73:2c:34:a0:ef:a7:
de:b1:68:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 15:15:38 2026 by rpki-client