Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft
File: o3F-pUuVlC-tgalD7bHBD535Svs.mft (raw, json)
Hash identifier: Eeb2XYtfxQGEk7BraVOXiVdPxG6F8tKYbuX/bqT2dbc=
Subject key identifier: 18:E3:92:C1:47:79:AA:58:57:50:A5:8F:35:3B:38:C4:28:98:6B:E5
Authority key identifier: A3:71:7E:A5:4B:95:94:2F:AD:81:A9:43:ED:B1:C1:0F:9D:F9:4A:FB
Certificate issuer: /CN=a3717ea54b95942fad81a943edb1c10f9df94afb
Certificate serial: 019EB7A11D17B74057013A25CDEDB8F07C91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3F-pUuVlC-tgalD7bHBD535Svs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft
Manifest number: 18DD
Signing time: Thu 11 Jun 2026 17:00:49 +0000
Manifest this update: Thu 11 Jun 2026 17:00:49 +0000
Manifest next update: Fri 12 Jun 2026 17:00:49 +0000
Files and hashes: 1: QR6JCvg_yJC5a7s73DyQnmCM4I0.roa (hash: s2aQJ0ionOhGA/bORwEZg/xbj2CgaA7Pt0VzSP4Fylw=)
2: o3F-pUuVlC-tgalD7bHBD535Svs.crl (hash: 4g+nE77MFpFN0emj/3UeLncmWM667Urf+Dn45i9vubE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o3F-pUuVlC-tgalD7bHBD535Svs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:a1:1d:17:b7:40:57:01:3a:25:cd:ed:b8:f0:7c:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3717ea54b95942fad81a943edb1c10f9df94afb
Validity
Not Before: Jun 11 17:00:49 2026 GMT
Not After : Jun 12 17:00:49 2026 GMT
Subject: CN=18e392c14779aa585750a58f353b38c428986be5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:69:aa:02:5c:c8:4a:ba:72:66:f2:55:8b:9a:
4b:b9:54:83:bf:52:06:bd:7a:9f:ea:23:d5:3a:aa:
cb:1b:a2:ac:2a:e6:52:81:54:5b:69:68:15:60:45:
1d:63:0f:38:35:fe:3b:36:52:e2:17:59:85:f4:0c:
6c:ac:d2:a6:80:ab:cb:f2:f7:09:0f:96:36:ff:8f:
44:25:fa:39:21:4d:8a:f7:9d:28:0a:b2:4e:8f:d2:
97:ae:79:c8:2f:52:c6:a9:57:9d:0c:01:19:27:2b:
1b:6b:82:f2:d4:8d:00:8b:0c:e9:94:cc:75:a8:15:
1b:29:40:00:0d:88:11:a1:2f:c0:7e:92:03:31:a4:
f4:43:e3:c8:27:8c:9e:e5:26:6d:74:17:0a:84:29:
12:d1:3b:d5:42:6a:ee:9d:5a:f3:b3:6d:4e:6f:c6:
84:0c:2b:28:62:cb:ed:ad:e5:a0:48:04:b8:16:d2:
f9:f0:ad:05:0c:d1:27:4f:d2:75:6e:b7:41:c5:bb:
da:88:eb:f5:2a:16:da:45:ef:77:b9:d6:41:6c:cd:
75:df:33:bf:cd:7f:0d:47:d2:5c:26:cd:84:c8:d0:
bc:f1:bc:4e:22:36:bc:df:dd:35:29:d2:7f:7d:77:
02:c1:b0:42:f0:a6:55:86:29:35:36:b1:91:5a:c4:
aa:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:E3:92:C1:47:79:AA:58:57:50:A5:8F:35:3B:38:C4:28:98:6B:E5
X509v3 Authority Key Identifier:
keyid:A3:71:7E:A5:4B:95:94:2F:AD:81:A9:43:ED:B1:C1:0F:9D:F9:4A:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3F-pUuVlC-tgalD7bHBD535Svs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:d1:ab:24:de:39:a8:c9:9e:1a:cf:58:c7:a0:23:6e:83:20:
8f:04:08:86:16:3d:d5:6c:e7:79:b4:52:d9:36:d7:14:a1:b1:
1c:c4:48:5a:95:46:41:ad:96:3a:fb:9a:9d:97:1e:53:79:90:
47:8e:1f:c7:8d:cd:26:bd:01:6a:ca:c4:48:7d:81:5b:f9:e3:
92:7c:47:de:25:32:ab:33:9c:de:55:10:c5:93:bf:4a:77:06:
a0:bc:d1:36:f5:43:81:e1:2e:70:8e:71:aa:65:8d:08:f7:e2:
5c:9e:37:6d:32:0b:31:a7:46:33:06:f9:cc:36:87:e8:12:f0:
94:13:06:d5:02:a8:6b:df:eb:74:f5:36:88:d3:2a:35:19:b4:
6c:fa:22:fa:ef:98:99:b5:ca:62:a6:5c:1d:79:b9:37:b1:06:
e3:e0:2b:5c:51:8d:69:0f:95:0e:bf:1e:46:36:19:94:91:44:
25:47:b9:c6:35:4e:e3:47:63:29:27:62:cd:c5:26:74:02:6a:
46:87:d3:3e:c3:53:e6:10:61:d7:26:28:55:a8:36:5d:3e:57:
59:c6:b0:c4:f2:47:0e:be:b5:70:00:f1:f1:f4:e1:12:7b:57:
0f:e7:da:15:c5:7b:f9:0d:f6:29:45:d7:6b:61:79:97:ec:72:
ec:d5:6a:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:16:40 2026 by rpki-client