Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
File: O9_XYE36DriuIOkPzxMDk7ioVko.mft (raw, json)
Hash identifier: r/drdGtFRnAcdVKlRiViMyH+PiT0B9Sxoi8PFJXBJhk=
Subject key identifier: D2:1C:73:66:1D:0C:3D:55:FA:06:63:C1:5F:D8:B3:24:3B:D5:D0:38
Authority key identifier: 3B:DF:D7:60:4D:FA:0E:B8:AE:20:E9:0F:CF:13:03:93:B8:A8:56:4A
Certificate issuer: /CN=3bdfd7604dfa0eb8ae20e90fcf130393b8a8564a
Certificate serial: 019EC3DCADE02047727C5226EB8CC12347E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
Manifest number: 195D
Signing time: Sun 14 Jun 2026 02:01:19 +0000
Manifest this update: Sun 14 Jun 2026 02:01:19 +0000
Manifest next update: Mon 15 Jun 2026 02:01:19 +0000
Files and hashes: 1: O9_XYE36DriuIOkPzxMDk7ioVko.crl (hash: 8hxN34rVKwXKxzxsxZTZfvaVXkWfZAv4dXqixCLe0Yc=)
2: TDJw8c2ugNuZzTvDh-dhjlcAHEQ.roa (hash: i8ViOgSKUgk23gc5KboIyTVKvb8lTiASE07Nhp1UbTE=)
3: eDEH9r-GFBtMBjke1VQXvLsrWKE.roa (hash: xMVUiZA7B/Awy4elxHeVBURXwGMWCha5Jw3Ih7vZadE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 02:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:dc:ad:e0:20:47:72:7c:52:26:eb:8c:c1:23:47:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bdfd7604dfa0eb8ae20e90fcf130393b8a8564a
Validity
Not Before: Jun 14 02:01:19 2026 GMT
Not After : Jun 15 02:01:19 2026 GMT
Subject: CN=d21c73661d0c3d55fa0663c15fd8b3243bd5d038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:00:bf:2d:b3:8d:05:c9:8d:a9:41:26:82:32:
79:cb:b0:f2:ed:b0:13:94:d9:63:70:6d:c6:bc:52:
c4:a0:5d:8d:54:84:29:92:b2:09:55:17:d8:40:24:
94:53:9f:21:8d:55:a2:d9:bd:1d:26:bb:e2:cb:ab:
5a:78:b6:f5:78:55:83:11:ea:e5:1a:fe:d9:cd:31:
ff:b2:16:7e:94:c6:45:54:46:14:9f:91:50:b8:34:
0e:51:70:a9:05:ee:b4:18:0b:2d:23:9a:d8:ec:f9:
e1:80:10:d3:aa:b7:f4:09:6e:d0:9e:2c:29:e7:95:
2c:9f:23:60:8d:13:ee:6f:4c:ab:39:47:85:7b:e2:
f4:ec:f7:3e:f1:ad:4d:2b:9d:24:ba:c4:04:14:c4:
2c:ca:d4:53:e0:56:28:9c:54:ba:e6:79:d0:a3:08:
e4:b0:ea:71:b6:1b:90:d8:e1:49:ef:4e:07:51:2a:
6d:b5:11:6b:06:eb:1e:c7:3d:03:7c:81:a4:2e:ae:
d8:24:79:7f:57:06:f7:b9:fb:dc:3d:64:4c:b0:f3:
49:71:01:68:dc:68:c1:e9:2f:6f:9c:c4:dc:4b:af:
5f:2f:96:7a:75:6e:90:eb:57:60:0a:a0:d7:ad:05:
4b:ea:da:08:59:40:a2:68:6d:db:de:e1:2a:23:eb:
7c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:1C:73:66:1D:0C:3D:55:FA:06:63:C1:5F:D8:B3:24:3B:D5:D0:38
X509v3 Authority Key Identifier:
keyid:3B:DF:D7:60:4D:FA:0E:B8:AE:20:E9:0F:CF:13:03:93:B8:A8:56:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:a2:41:e8:c9:f6:7b:25:d5:b6:40:27:86:df:7d:2f:21:43:
40:53:7c:d9:5a:f3:28:a9:d7:b9:09:1c:88:9d:f9:5e:30:dd:
0a:3e:cd:3f:33:f6:69:b9:7a:1c:15:80:52:9e:e1:2e:ee:4d:
f2:65:74:6e:03:dd:16:ed:2a:3c:e4:b6:eb:c1:e9:25:a2:75:
b6:7a:ec:eb:8d:bf:03:fe:ec:d2:60:d5:68:39:cb:10:0a:81:
61:40:60:6f:a2:b1:2b:08:92:86:09:4b:34:49:4b:27:e4:0a:
0e:4c:ca:28:9d:8a:ef:d9:a2:28:df:d0:e2:1b:36:00:a6:e5:
9e:92:fb:fc:b5:66:bd:34:5f:40:c0:e5:32:2f:10:f4:de:17:
3b:4d:7a:6d:87:2a:28:55:90:43:19:b7:89:1d:ce:97:81:48:
f2:2f:03:96:96:7c:cd:3c:69:bd:a7:81:a0:c7:da:63:f7:7f:
d5:43:d0:92:1f:52:3d:9b:c1:85:60:18:59:34:01:fa:d9:c6:
a7:1d:35:1a:cb:10:9e:d3:2f:f7:ac:90:2d:d6:64:65:b4:68:
67:7e:41:9f:f6:66:70:96:20:48:75:b3:5e:0c:09:7d:ca:e7:
df:3c:5f:0a:aa:54:aa:d2:f2:18:ad:1b:56:a0:94:20:e7:c3:
88:ee:c5:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 12:08:25 2026 by rpki-client