Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
File: 2O6Q00LYZepn8rDS-3TAOfg-Skg.mft (raw, json)
Hash identifier: LeoM/GbnHs5SmpYvKRJjU5WIdjvoYsEccqQVX4OF6bo=
Subject key identifier: B6:3C:37:C8:D8:24:25:10:3F:DF:C4:42:DC:F7:4C:E7:6E:57:4F:B2
Authority key identifier: D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48
Certificate issuer: /CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48
Certificate serial: 019E3185B68573F3BFBF8058A3C380C0D33D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
Manifest number: 0633
Signing time: Sat 16 May 2026 16:01:47 +0000
Manifest this update: Sat 16 May 2026 16:01:47 +0000
Manifest next update: Sun 17 May 2026 16:01:47 +0000
Files and hashes: 1: 2O6Q00LYZepn8rDS-3TAOfg-Skg.crl (hash: FYvzKk9pgeGSJHxY+sllfZoGbIjJlk7/begP9awBujE=)
2: OExalT86I2jE92WcpxOz8v2EM5M.roa (hash: 4ql4+dXrno2rRd9rLsGdlFCa1N0RlG63lEsTRJIQb8w=)
3: jkJ-dpXyGf9S_poPiFsD4kU6mb4.roa (hash: cQtWmc7dZO030WCUTKzMCSngnAwQZjveS+i9Nuw4lVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:85:b6:85:73:f3:bf:bf:80:58:a3:c3:80:c0:d3:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48
Validity
Not Before: May 16 16:01:47 2026 GMT
Not After : May 17 16:01:47 2026 GMT
Subject: CN=b63c37c8d82425103fdfc442dcf74ce76e574fb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:72:b1:27:03:e9:99:71:50:9c:ea:b6:83:60:
dd:7b:65:a7:57:91:fa:cd:85:fc:43:91:23:bd:40:
84:61:cf:f7:f0:97:0a:ff:ee:b4:b2:89:e0:aa:82:
b5:57:4b:a3:f1:15:e2:b5:b4:b1:d5:05:cd:1b:0d:
87:88:32:fe:86:b2:1d:c1:00:9a:bc:6a:2b:8d:4a:
ff:07:75:21:16:10:a1:4d:47:07:0b:11:18:6d:c8:
84:49:8c:95:c8:12:c6:34:0c:df:5d:2b:ac:3e:3e:
13:1e:c6:28:65:24:97:10:b1:bb:f1:2a:b2:45:03:
60:19:7f:bd:25:d9:db:ab:64:85:95:cd:16:8b:88:
4d:a0:d8:1a:40:2b:bf:33:7f:08:5c:6c:1f:99:ef:
8c:2b:82:48:21:e2:77:a8:1c:e7:ff:15:a5:d7:5d:
04:a2:c9:0d:d9:f0:9a:d8:04:8e:0a:42:2d:ee:d2:
d9:0f:96:59:f6:18:a9:c1:fe:f5:88:9a:56:1f:00:
7e:ae:ed:9f:15:13:6f:b6:e2:7e:97:8e:f9:d2:ca:
fa:e8:f7:53:a8:04:4e:0c:c7:b1:ec:db:0d:56:7a:
06:b8:14:44:96:0d:8b:04:b1:1f:37:a9:b0:e5:5e:
5a:ef:da:8f:a8:95:a4:49:ea:38:a8:17:ef:1c:0f:
d5:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:3C:37:C8:D8:24:25:10:3F:DF:C4:42:DC:F7:4C:E7:6E:57:4F:B2
X509v3 Authority Key Identifier:
keyid:D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:6a:0c:3d:3e:a4:30:76:a5:62:ed:50:f0:f4:e4:5a:c0:c7:
f1:cc:65:46:c0:71:9b:69:7b:e7:e5:73:91:03:8c:32:88:dd:
c6:33:48:b8:29:74:46:22:7a:f6:69:c6:fc:5c:1b:ad:14:24:
47:a9:14:ff:c9:be:a7:e8:3e:77:2a:4a:65:26:eb:70:c0:34:
b3:99:6b:80:ab:a2:ab:43:29:f9:c1:94:51:f8:b1:d3:0e:9b:
cb:d8:55:70:e7:44:bb:a2:f5:f7:7e:38:8f:54:b9:bd:8a:f2:
b8:68:4b:d7:3d:36:4d:21:6c:d3:29:a3:e3:c5:70:7c:f2:b1:
84:88:d6:db:50:72:c2:7f:35:37:e2:98:0b:36:c2:3b:25:a1:
9a:c6:7c:36:16:4a:53:3b:7a:3d:41:57:e1:e8:16:15:9f:3a:
38:06:93:12:04:9c:8c:93:00:44:98:d0:cd:45:e5:65:aa:0d:
31:ec:45:19:58:29:82:15:2e:c2:51:05:5a:c4:9a:65:1e:18:
63:b8:25:48:7e:0d:88:f0:7b:1a:24:2a:2a:00:4d:08:f8:32:
56:f8:50:7c:59:09:82:82:3b:e0:05:a1:8c:2a:da:0c:2e:25:
21:dc:7c:99:41:0e:e7:70:db:dd:c6:94:b8:62:bc:14:ee:49:
b9:2e:79:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:21:34 2026 by rpki-client