Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
File: oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft (raw, json)
Hash identifier: fs/GNmiV6Vp7m66Cbyuaw9xsUErQUgg3aKyB8IaLVLQ=
Subject key identifier: 1F:4E:FF:FA:CF:F0:35:96:BA:B7:DF:3D:16:27:FA:9B:79:6D:02:43
Authority key identifier: A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
Certificate issuer: /CN=a220dda64843a4ee364b089356ca87995830fd77
Certificate serial: 019EB87C8E9F1800D6072D4710E7446054E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
Manifest number: 107D
Signing time: Thu 11 Jun 2026 21:00:31 +0000
Manifest this update: Thu 11 Jun 2026 21:00:31 +0000
Manifest next update: Fri 12 Jun 2026 21:00:31 +0000
Files and hashes: 1: J576zMYsvhdS1kduYOyMDY6tWBo.roa (hash: HQssjrgmFTJtkMHgZxRNGivJgKKVgxjUhkrUCmJCcew=)
2: oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl (hash: C/wy09H+PK0S3ZC00flM9kqlkG/ChtYGJhJtITyNZG4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:7c:8e:9f:18:00:d6:07:2d:47:10:e7:44:60:54:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a220dda64843a4ee364b089356ca87995830fd77
Validity
Not Before: Jun 11 21:00:31 2026 GMT
Not After : Jun 12 21:00:31 2026 GMT
Subject: CN=1f4efffacff03596bab7df3d1627fa9b796d0243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:94:d5:97:e7:24:00:51:19:91:60:94:a5:0a:
16:13:fe:3f:a7:1f:ff:8c:73:1a:bf:3b:16:e7:df:
32:4e:0f:ab:48:e2:11:4f:ac:21:e2:fb:e6:9e:5f:
e8:ea:35:81:b8:4b:56:a5:cd:74:f3:7e:b3:56:cc:
a9:c1:eb:de:ef:cd:3c:f7:15:83:29:1b:97:fd:ff:
d9:ae:86:33:3c:e1:02:66:4d:c2:fe:34:dc:f3:a8:
79:56:30:e7:2b:7f:e7:4d:b5:ca:46:8e:b2:18:f2:
34:e4:c6:5e:3f:9b:fc:f1:6f:08:d5:3b:ee:d0:5b:
63:74:4e:f9:7d:09:bd:c0:05:63:99:a0:60:12:d7:
e4:17:08:56:47:79:90:21:62:93:46:f5:5c:27:38:
52:f8:9e:ff:34:00:5d:bc:cc:f5:ab:99:f4:f8:cf:
ce:5c:3c:36:06:7d:cb:bd:e1:85:54:e3:97:92:da:
d5:eb:f6:f3:d4:ef:65:c5:5a:fc:23:02:73:7a:34:
09:66:6e:8b:b0:b9:73:73:cb:9c:d9:1d:ac:b0:90:
fa:c2:fe:1a:a5:29:48:52:0f:6b:f6:85:08:7b:4a:
3a:1f:29:5a:b0:25:33:23:20:77:51:9b:56:33:58:
b6:a0:31:aa:b7:c7:e8:83:69:75:09:61:bc:41:ac:
5d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:4E:FF:FA:CF:F0:35:96:BA:B7:DF:3D:16:27:FA:9B:79:6D:02:43
X509v3 Authority Key Identifier:
keyid:A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:dc:e4:43:85:28:6c:4c:73:2d:65:bf:0e:26:a1:57:18:e3:
62:ba:f9:59:38:17:d1:22:2c:63:b8:aa:6d:7c:46:90:cf:01:
fb:04:d9:92:a5:4d:09:6d:a2:9f:ad:92:0a:42:cc:7d:26:85:
16:34:73:21:e4:5f:d2:61:c2:78:c0:b2:07:48:3c:83:9c:68:
0e:f1:61:69:5d:e9:3a:69:e6:93:26:3d:46:a7:f8:10:91:e6:
c8:cd:e4:d6:03:0b:4c:e6:13:ff:4a:67:8d:68:5e:23:70:6d:
6c:de:23:e1:d4:0b:e3:fc:9d:f6:ab:80:37:b5:46:20:15:86:
41:f9:a1:c5:d1:4f:5e:d4:15:2c:5c:16:9d:89:3d:b9:36:81:
7d:29:4f:ae:a5:4c:b0:c2:39:d4:54:12:14:12:c9:02:41:33:
97:6d:ce:8a:31:d7:d8:b3:3f:86:ce:ed:e2:05:c3:f6:56:b2:
4e:3b:65:54:c3:86:af:38:a0:30:86:c8:6a:eb:3a:4b:56:0c:
f0:3c:cf:8b:0b:fe:02:84:50:a6:70:41:53:ba:04:24:9d:91:
ed:9d:6b:05:cb:ff:0b:4f:3b:5e:ff:24:4f:eb:91:c9:08:34:
cc:50:78:10:da:8f:f2:94:a9:37:19:a7:6f:f1:5b:b9:20:df:
d7:a7:10:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 06:12:51 2026 by rpki-client