Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
File: 2OnkD_n7tigNo26XLyDTElAMGFw.mft (raw, json)
Hash identifier: lp74OP9ag52bh1y890NiKQRhWfYO4GerPr5qsYuCGpc=
Subject key identifier: 0C:7A:7D:53:61:BA:30:FA:0E:E1:6E:66:68:F2:EE:9B:49:F6:01:FB
Authority key identifier: D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C
Certificate issuer: /CN=d8e9e40ff9fbb6280da36e972f20d312500c185c
Certificate serial: 019E30E012AA553F5B17DB0771B06A0448CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
Manifest number: 15F8
Signing time: Sat 16 May 2026 13:00:51 +0000
Manifest this update: Sat 16 May 2026 13:00:51 +0000
Manifest next update: Sun 17 May 2026 13:00:51 +0000
Files and hashes: 1: 2OnkD_n7tigNo26XLyDTElAMGFw.crl (hash: VLiVIVP4bLwjGPFSo8uDimtohCPfRpzzR/DTNa1YGM0=)
2: jZ_PcWcN6a-O2Z-3tx9t6lTT23M.roa (hash: EYrD0BtGRs4bNIFPrVTFK250phWOgkEv3oi3twZMLNA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:12:aa:55:3f:5b:17:db:07:71:b0:6a:04:48:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8e9e40ff9fbb6280da36e972f20d312500c185c
Validity
Not Before: May 16 13:00:51 2026 GMT
Not After : May 17 13:00:51 2026 GMT
Subject: CN=0c7a7d5361ba30fa0ee16e6668f2ee9b49f601fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:cf:0a:a3:fe:83:2d:fd:c4:71:f9:94:9a:3f:
98:b9:c8:8d:67:6a:76:ef:f8:04:a0:47:b6:14:53:
a4:5c:32:4d:28:60:56:4d:b3:94:6c:dd:82:34:68:
49:6b:5d:81:33:2a:78:62:2e:82:f8:0b:a3:09:a1:
2d:ec:71:05:49:e1:6d:1e:1d:9b:f7:54:0a:67:9f:
12:79:fe:fd:bb:9e:0f:ce:b6:ff:ef:2a:dd:70:8b:
a9:46:1a:8a:51:4a:10:e6:cf:a4:22:0b:5c:e1:7e:
25:26:34:dc:e0:4a:4a:b4:de:7f:e1:a6:34:03:4c:
6b:b9:e5:f6:c3:03:31:d4:bb:7b:d2:52:80:f4:57:
2c:c1:29:fa:d5:53:ba:19:5a:77:e0:32:a4:ed:5c:
24:fe:c2:49:6e:43:98:d3:62:84:f3:b5:4e:bc:2c:
f6:80:8b:59:1c:5d:11:41:17:c5:c0:d7:98:d6:12:
46:f6:8b:d6:2b:85:24:72:f0:aa:b2:97:ec:78:bc:
c4:80:42:9c:f2:f5:62:e4:31:fc:d5:3f:35:0f:29:
3e:79:c3:91:d5:ea:fc:aa:6b:3a:eb:f0:e9:f3:b1:
ee:05:b2:74:c6:c0:35:0e:23:9a:19:77:af:d0:20:
0e:df:ae:84:f4:bd:91:de:2f:74:4f:9a:0f:dc:6d:
9b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:7A:7D:53:61:BA:30:FA:0E:E1:6E:66:68:F2:EE:9B:49:F6:01:FB
X509v3 Authority Key Identifier:
keyid:D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:ee:72:88:1b:7b:93:b4:20:87:99:7e:3d:39:f2:65:53:cb:
a7:ba:0d:55:b6:65:21:7c:99:80:09:51:9a:da:d8:eb:a7:d8:
cf:44:16:dc:86:bb:15:f7:47:f2:15:fb:44:46:b9:58:d1:a2:
f8:be:c2:b9:4e:fe:1c:d1:dc:c4:33:14:01:d6:19:1c:da:5f:
45:72:b8:e6:81:68:c4:03:e3:fe:c5:0f:08:c0:4d:ee:ac:4c:
b3:4f:a7:ab:2e:bb:6f:b4:4e:7b:ea:da:53:15:62:c9:45:44:
c2:a5:af:6a:46:33:3a:1d:47:3b:fc:7f:89:7d:bd:2c:ad:ff:
50:1b:9b:c6:b6:5a:0c:d3:36:a0:e9:7d:47:b7:96:69:d7:ef:
95:a6:8e:0f:53:2b:0e:e1:06:93:86:1c:3e:e2:09:b2:91:8e:
ca:47:2a:eb:ab:4a:66:74:bc:1b:67:89:1b:cd:9a:87:c1:12:
e1:23:d2:c1:0e:87:03:d5:1d:ca:7d:ce:67:e9:c9:ec:8c:de:
7d:a8:53:07:c8:0e:c9:55:07:68:09:4f:e1:b5:26:3d:12:f5:
97:db:c2:52:6e:21:7b:ec:ee:6f:ae:3d:9a:3d:7f:4b:75:03:
32:a8:23:17:96:75:f8:c4:e4:cd:ec:ef:db:c4:39:b2:ce:9c:
1d:82:80:e2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4w4BKqVT9bF9sHcbBqBEjLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ZTllNDBmZjlmYmI2MjgwZGEzNmU5NzJmMjBkMzEyNTAw
YzE4NWMwHhcNMjYwNTE2MTMwMDUxWhcNMjYwNTE3MTMwMDUxWjAzMTEwLwYDVQQD
EygwYzdhN2Q1MzYxYmEzMGZhMGVlMTZlNjY2OGYyZWU5YjQ5ZjYwMWZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1M8Ko/6DLf3EcfmUmj+YuciNZ2p2
7/gEoEe2FFOkXDJNKGBWTbOUbN2CNGhJa12BMyp4Yi6C+AujCaEt7HEFSeFtHh2b
91QKZ58Sef79u54Pzrb/7yrdcIupRhqKUUoQ5s+kIgtc4X4lJjTc4EpKtN5/4aY0
A0xrueX2wwMx1Lt70lKA9FcswSn61VO6GVp34DKk7Vwk/sJJbkOY02KE87VOvCz2
gItZHF0RQRfFwNeY1hJG9ovWK4UkcvCqspfseLzEgEKc8vVi5DH81T81Dyk+ecOR
1er8qms66/Dp87HuBbJ0xsA1DiOaGXev0CAO366E9L2R3i90T5oP3G2b6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAx6fVNhujD6DuFuZmjy7ptJ9gH7MB8GA1UdIwQY
MBaAFNjp5A/5+7YoDaNuly8g0xJQDBhcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMk9ua0Rfbjd0aWdObzI2WEx5RFRFbEFNR0Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS84NzM4YjktMmQwYS00ZWY2LWFmYWQt
MWFlNTA2ZWExNzYwLzEvMk9ua0Rfbjd0aWdObzI2WEx5RFRFbEFNR0Z3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS84NzM4YjktMmQwYS00ZWY2LWFmYWQtMWFlNTA2ZWExNzYw
LzEvMk9ua0Rfbjd0aWdObzI2WEx5RFRFbEFNR0Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUu5yiBt7
k7Qgh5l+PTnyZVPLp7oNVbZlIXyZgAlRmtrY66fYz0QW3Ia7FfdH8hX7REa5WNGi
+L7CuU7+HNHcxDMUAdYZHNpfRXK45oFoxAPj/sUPCMBN7qxMs0+nqy67b7ROe+ra
UxViyUVEwqWvakYzOh1HO/x/iX29LK3/UBubxrZaDNM2oOl9R7eWadfvlaaOD1Mr
DuEGk4YcPuIJspGOykcq66tKZnS8G2eJG82ah8ES4SPSwQ6HA9Udyn3OZ+nJ7Ize
fahTB8gOyVUHaAlP4bUmPRL1l9vCUm4he+zub649mj1/S3UDMqgjF5Z1+MTkzezv
28Q5ss6cHYKA4g==
-----END CERTIFICATE-----
Generated at Sat May 16 19:31:01 2026 by rpki-client