Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft
File: rkopxhOOLZPVSjYyi5TLH4o4Kms.mft (raw, json)
Hash identifier: onGi81eawph7EEAHXVw31c0xvAPtGSe6wVwrpXywY4A=
Subject key identifier: 8E:23:C7:7C:58:7E:CF:7A:07:BD:B3:73:A6:2E:E9:4C:47:72:74:6B
Authority key identifier: AE:4A:29:C6:13:8E:2D:93:D5:4A:36:32:8B:94:CB:1F:8A:38:2A:6B
Certificate issuer: /CN=ae4a29c6138e2d93d54a36328b94cb1f8a382a6b
Certificate serial: 019E3117518D5DDEB9C8E5067E6BA81E0EC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft
Manifest number: 0DCF
Signing time: Sat 16 May 2026 14:01:12 +0000
Manifest this update: Sat 16 May 2026 14:01:12 +0000
Manifest next update: Sun 17 May 2026 14:01:12 +0000
Files and hashes: 1: UvulvKNPlQ3DW7OFO84K_Dsu4xs.roa (hash: sbA5hsgIPFLxYaMguAK/fWfL4FZLjCI5T2S6fCZgzls=)
2: oAm1gK3PlSJ8uZpz6kuGG8_RDis.roa (hash: qyWcJhPl+RateZRWaHU5ZN6wmeIFgslBGIm52luDwjg=)
3: rkopxhOOLZPVSjYyi5TLH4o4Kms.crl (hash: kWUzJdNSpCCd4DF+oRs0phdGSqvxOB3Oy/idQ7qJS10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft
rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:51:8d:5d:de:b9:c8:e5:06:7e:6b:a8:1e:0e:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae4a29c6138e2d93d54a36328b94cb1f8a382a6b
Validity
Not Before: May 16 14:01:12 2026 GMT
Not After : May 17 14:01:12 2026 GMT
Subject: CN=8e23c77c587ecf7a07bdb373a62ee94c4772746b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bc:a8:f4:b0:ab:03:61:d5:b1:84:2e:38:67:
be:1b:48:d7:4f:51:74:77:18:ae:32:47:e3:0c:06:
6b:eb:85:93:be:9d:a3:58:89:00:38:78:2e:8b:13:
bf:09:63:8e:6e:d3:91:b3:8f:14:7f:26:ba:06:01:
44:f4:ad:47:ea:19:70:21:ae:b5:92:d4:aa:07:fa:
39:54:c2:44:68:aa:63:7d:3a:41:45:4f:a9:97:38:
bc:fc:82:c1:1d:ed:81:04:fb:45:9c:0d:db:f5:10:
49:a3:68:fa:f7:8a:14:d9:13:48:71:47:8a:0a:60:
70:0f:bd:aa:c7:dc:9c:73:1d:a9:56:9f:62:d3:23:
20:f2:99:e3:1a:ab:ea:71:fd:99:75:f9:6d:bb:29:
10:c8:b1:61:fc:83:0f:28:b3:4c:07:35:81:98:a6:
8f:65:30:16:2f:cc:ae:c5:93:33:71:e2:f7:75:b5:
dd:e5:af:64:2c:92:8a:1f:73:73:4b:1f:7b:b8:97:
0d:cc:68:78:19:0f:31:97:ff:7d:72:32:a5:89:6e:
b4:77:1d:4e:36:9b:7f:e9:75:b7:63:1a:f7:4f:06:
2a:bb:95:f7:3d:ab:21:f9:b8:d8:a5:5e:6c:12:24:
e9:3f:a8:5c:15:26:81:48:12:07:6d:c2:53:2c:81:
bb:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:23:C7:7C:58:7E:CF:7A:07:BD:B3:73:A6:2E:E9:4C:47:72:74:6B
X509v3 Authority Key Identifier:
keyid:AE:4A:29:C6:13:8E:2D:93:D5:4A:36:32:8B:94:CB:1F:8A:38:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:ce:22:54:64:dc:c2:d9:a7:cd:bb:cc:57:74:8a:5e:76:89:
16:e2:3a:48:a2:83:15:62:41:29:6d:68:19:63:ae:07:31:f1:
90:da:2d:c2:49:0d:57:e6:21:8d:de:63:71:4b:6a:3f:65:24:
60:cf:f8:0f:65:32:b4:43:ad:34:52:44:15:51:32:fc:1e:ea:
b0:f7:85:47:07:a4:18:d3:26:69:cc:56:84:53:87:2e:d3:59:
05:02:d5:50:fa:f3:39:dd:c1:6d:6a:01:d0:01:8e:e4:75:e7:
ae:22:bb:b7:93:d6:ce:2a:c0:55:3e:f7:08:71:c3:5c:05:a5:
85:52:16:bb:88:67:2a:27:cc:43:ef:f7:37:b8:4c:e2:d2:e1:
f0:7e:8d:45:e7:cd:cb:25:86:ae:c1:9d:9d:af:14:8b:ac:6b:
57:03:2a:33:65:31:73:33:d6:9a:cb:19:c9:d1:68:e0:28:be:
1d:02:78:32:23:64:0e:c8:d0:2c:a5:03:e4:ab:74:3c:5c:fa:
26:af:8f:39:51:74:da:33:56:5f:78:bb:25:f8:78:48:f8:2a:
25:be:4d:63:27:87:d5:dd:75:91:1a:3f:9f:b4:fd:3b:0c:56:
ab:98:bd:33:40:aa:b0:fb:26:b9:86:e1:6f:27:ed:58:50:9a:
0d:58:b8:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:22:45 2026 by rpki-client