Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft
File: o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft (raw, json)
Hash identifier: NLGnlm6a1PRbCe6LmangNeddhEu+YPCqbqSTG4TR2QE=
Subject key identifier: 75:33:AF:0A:F8:19:6E:54:5A:CD:24:6A:93:AA:34:20:1C:CE:3A:C0
Authority key identifier: A3:66:19:42:7C:28:3F:A3:B2:BB:7B:45:CC:35:A5:12:86:39:89:61
Certificate issuer: /CN=a36619427c283fa3b2bb7b45cc35a51286398961
Certificate serial: 019EB921888D5F82A661365E2AAAD5F9826F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft
Manifest number: 020A
Signing time: Fri 12 Jun 2026 00:00:43 +0000
Manifest this update: Fri 12 Jun 2026 00:00:43 +0000
Manifest next update: Sat 13 Jun 2026 00:00:43 +0000
Files and hashes: 1: kFGche0sUMJjtQYWtRrXVgbIroM.roa (hash: 34UZsa7v3vzkYl287UK/ejNXOYJMH9D9QG1MuCDxpCg=)
2: o2YZQnwoP6Oyu3tFzDWlEoY5iWE.crl (hash: yUiD6hhAPJJrtS8TDGIycXbt/4x7LLDCbk9wpY3Tslw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:21:88:8d:5f:82:a6:61:36:5e:2a:aa:d5:f9:82:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a36619427c283fa3b2bb7b45cc35a51286398961
Validity
Not Before: Jun 12 00:00:43 2026 GMT
Not After : Jun 13 00:00:43 2026 GMT
Subject: CN=7533af0af8196e545acd246a93aa34201cce3ac0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:1c:1d:4b:c9:39:19:49:2a:0d:6f:17:5d:11:
e8:83:f6:c9:cb:ba:0f:2c:cc:ff:c0:4f:2d:7a:dd:
00:9c:fd:70:8c:87:bf:8c:eb:2c:1c:f8:ec:94:db:
fc:51:c0:f9:26:ba:e6:c6:8d:a4:e6:dc:91:e3:7c:
ea:5f:8f:fb:46:9f:40:b4:8c:da:b2:e3:d6:9c:a4:
9d:05:60:49:cd:57:d0:70:7c:58:68:ba:24:d4:b6:
1c:55:62:fb:6c:b1:bc:28:2d:69:41:4f:8c:67:78:
a6:25:86:27:1d:a0:cc:0b:44:57:4c:0c:22:dc:21:
90:72:3f:d8:86:4b:cf:8c:9d:bc:77:01:58:24:75:
1f:f6:1f:2c:4c:d9:a7:18:c6:a3:43:ca:42:5b:c2:
87:83:96:7e:cd:19:df:cd:68:7e:79:7a:d1:77:93:
8b:15:22:61:1c:18:bf:83:3e:70:94:78:2d:6e:b5:
f1:0d:ce:63:16:43:b5:be:e4:21:16:a5:14:ff:e9:
0b:1c:e8:c1:6d:62:bb:06:fd:e9:d1:54:21:7d:b0:
ef:99:6d:16:be:b0:fd:ec:aa:5f:6f:00:1e:a0:50:
56:b9:5a:57:3e:cc:a5:e2:f3:e2:11:6b:ea:5a:05:
b9:21:96:a2:d6:9f:c7:e6:98:4b:f0:d4:44:1e:67:
42:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:33:AF:0A:F8:19:6E:54:5A:CD:24:6A:93:AA:34:20:1C:CE:3A:C0
X509v3 Authority Key Identifier:
keyid:A3:66:19:42:7C:28:3F:A3:B2:BB:7B:45:CC:35:A5:12:86:39:89:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:39:49:e6:4f:0d:9a:da:aa:4d:c3:1c:5f:1d:82:cd:d0:1e:
be:38:82:fa:ab:bf:93:14:03:80:49:02:64:09:db:d3:3f:03:
f3:24:f9:48:92:df:fb:b7:76:3a:ec:4c:ea:c5:8c:f7:27:1c:
72:04:59:22:c0:d8:51:f8:ea:c3:7a:f1:bd:d7:f2:4c:64:98:
d3:e3:8b:60:e2:27:f8:bd:13:62:53:3f:35:4c:64:1c:25:4b:
5d:08:be:8b:f4:88:88:7c:f0:f9:aa:db:7d:b1:cb:14:77:82:
67:02:4d:9f:49:62:11:d9:8f:ec:6b:4e:f9:62:d3:b8:98:9d:
72:24:e4:37:16:76:ac:e9:4c:50:c2:3c:b2:8f:2a:b2:04:23:
4f:27:5b:db:2e:71:29:74:5d:09:5b:69:df:c3:ac:f1:77:ce:
5e:5d:97:f9:1d:d7:c1:f4:38:24:a4:b1:fb:fb:a8:4b:bd:3d:
31:40:9a:d9:e7:3c:51:a5:30:60:2a:5b:a3:33:38:b8:eb:e8:
81:7b:91:3a:0f:41:fa:b8:2b:15:c2:f1:4b:7b:04:d5:c4:1a:
70:b6:88:fc:d7:35:d2:c9:d7:3a:dc:14:a5:75:43:b3:98:4d:
45:32:3e:36:ea:7d:c2:3c:04:6f:4d:c1:7e:e0:e7:3c:fc:5c:
04:7c:3d:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 06:12:38 2026 by rpki-client