Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
File: 0gXOrys2rZ_lGQaehrlONtLsS94.mft (raw, json)
Hash identifier: b+iHZ0RznIZDiPpjSaX744qzoeV4j+5xw62fJWSDiec=
Subject key identifier: 99:C3:C4:44:53:FD:53:B9:AD:C5:60:E7:B8:A6:28:61:92:8E:D3:65
Authority key identifier: D2:05:CE:AF:2B:36:AD:9F:E5:19:06:9E:86:B9:4E:36:D2:EC:4B:DE
Certificate issuer: /CN=d205ceaf2b36ad9fe519069e86b94e36d2ec4bde
Certificate serial: 019E30057A47F4BB371C13C11E24A873BEC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
Manifest number: 0C3F
Signing time: Sat 16 May 2026 09:02:05 +0000
Manifest this update: Sat 16 May 2026 09:02:05 +0000
Manifest next update: Sun 17 May 2026 09:02:05 +0000
Files and hashes: 1: 0gXOrys2rZ_lGQaehrlONtLsS94.crl (hash: TTxaTEHZ5p3ZZ8ylDOxHbbiHfOUcWY8q0lDT3369l50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:05:7a:47:f4:bb:37:1c:13:c1:1e:24:a8:73:be:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d205ceaf2b36ad9fe519069e86b94e36d2ec4bde
Validity
Not Before: May 16 09:02:05 2026 GMT
Not After : May 17 09:02:05 2026 GMT
Subject: CN=99c3c44453fd53b9adc560e7b8a62861928ed365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1b:4c:7c:d6:81:20:4c:2a:33:a8:ef:fd:be:
62:8a:10:58:ec:04:19:10:96:9b:3c:e1:5c:29:c6:
8d:d4:a0:e0:ee:14:5d:e3:22:58:8e:5d:96:24:65:
5a:9c:2a:df:54:37:5d:69:15:eb:cb:45:57:be:2e:
21:74:e2:7e:bb:f5:76:50:5a:d4:1a:93:b2:32:82:
cb:41:ae:2e:8b:18:d8:3f:a8:9f:1f:d0:f3:ff:e1:
36:9e:ae:d0:56:55:a9:65:e4:03:ba:05:be:e6:32:
90:7d:6f:00:e2:b1:f4:74:51:28:42:7d:6f:63:40:
f7:de:fe:38:9b:13:9e:6b:e8:c1:8a:11:2f:c7:4b:
94:55:07:45:af:fb:11:22:d4:ef:cd:3c:ec:ef:8f:
c4:e6:d9:b4:b3:a5:5e:12:ad:3b:fb:4f:6b:d5:a8:
c1:8d:ef:1a:be:c9:0d:13:ee:26:6a:22:c2:85:25:
e8:6e:59:e4:a6:ac:5d:9c:64:4d:78:93:b8:28:75:
44:80:29:fc:13:ee:64:d8:bc:bb:79:e5:c5:90:e4:
6d:4b:ef:0d:1a:76:da:85:29:2f:80:c5:4c:d6:3d:
48:e1:3c:0f:94:46:b7:bc:b0:62:98:84:4e:ce:0a:
dc:52:41:04:5c:59:ee:d5:d2:75:ae:1a:2f:ee:dc:
93:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:C3:C4:44:53:FD:53:B9:AD:C5:60:E7:B8:A6:28:61:92:8E:D3:65
X509v3 Authority Key Identifier:
keyid:D2:05:CE:AF:2B:36:AD:9F:E5:19:06:9E:86:B9:4E:36:D2:EC:4B:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:76:86:e2:b0:fd:66:8f:b4:c8:15:b7:eb:02:1c:1d:a5:3c:
ce:42:4c:f2:55:68:c5:59:ce:18:e2:8f:e5:d0:5c:c3:d5:fb:
49:03:f2:a7:6c:d4:ee:cb:58:18:13:b6:ee:ca:bd:f2:e1:e8:
20:70:0c:4c:b7:cf:c0:1d:e1:ce:39:eb:e8:cc:9f:d2:5d:4c:
98:f7:c2:41:b5:4e:49:b2:3e:c9:be:46:7f:8e:b9:28:81:82:
cb:26:40:76:4a:be:88:d2:bb:a7:87:c9:2e:38:4c:27:b7:82:
46:b6:18:e2:e5:a4:c8:11:28:36:2c:e0:57:3e:d9:d2:16:85:
03:b1:07:bd:62:3f:4f:5b:d1:3c:ea:34:ba:88:05:de:de:b0:
8c:5b:e2:9e:75:73:86:1a:4a:84:27:aa:1b:f5:96:bd:7f:94:
24:20:d8:0a:9c:4a:b2:c5:0e:7a:5a:be:91:0b:b6:10:28:ef:
55:d5:de:9a:1c:6e:b9:d8:b7:43:8e:71:ea:d4:ee:af:8c:de:
db:b6:28:a6:2e:2e:72:ef:bd:c3:b7:29:1a:ef:99:6d:f9:41:
70:c0:a6:2a:c4:b5:d0:76:f8:94:28:6a:6c:38:50:6b:2b:ab:
ce:45:d0:4b:7d:94:d9:fc:f3:50:d9:60:13:71:1f:cd:04:da:
3c:dd:c1:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 19:32:10 2026 by rpki-client