Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
File: oZ_WM6TT0hDez321fRIrZIuY7SU.mft (raw, json)
Hash identifier: xmFR7EN/44hclVtNG4SD3+tZz9remyM/qMmTP2yzfbs=
Subject key identifier: C3:9F:05:66:86:C9:44:36:97:A3:BB:D8:EC:AF:D1:04:49:53:C3:B5
Authority key identifier: A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
Certificate issuer: /CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Certificate serial: 019F054E8C948F759DEC0ED91232FAFE71EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
Manifest number: 0588
Signing time: Fri 26 Jun 2026 19:01:01 +0000
Manifest this update: Fri 26 Jun 2026 19:01:01 +0000
Manifest next update: Sat 27 Jun 2026 19:01:01 +0000
Files and hashes: 1: oZ_WM6TT0hDez321fRIrZIuY7SU.crl (hash: PTXOKTagByDhaG7k1kwamQFZAITW3fxooAI66cE0aFE=)
2: xE-BgKSVBYFhggPNmKsU1prxN0g.roa (hash: YpkmYJyHUw54oWyFNUMkFF7WgnbU7Uo2+GiNtKKeUKY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 27 Jun 2026 15:38:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:05:4e:8c:94:8f:75:9d:ec:0e:d9:12:32:fa:fe:71:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19fd633a4d3d210decf7db57d122b648b98ed25
Validity
Not Before: Jun 26 19:01:01 2026 GMT
Not After : Jun 27 19:01:01 2026 GMT
Subject: CN=c39f056686c9443697a3bbd8ecafd1044953c3b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b0:d4:5d:e9:45:58:15:e4:ea:99:a0:72:b9:
d3:3b:f1:83:d0:06:bd:56:c9:ee:96:e7:93:2f:b6:
e7:23:cd:3c:5c:e0:1c:52:75:ef:71:c3:bd:60:3a:
c2:e0:37:58:f1:d6:75:14:8a:60:d5:c6:20:d8:2c:
06:8f:bf:5a:c7:58:71:d4:c7:44:69:83:6d:a5:c2:
73:8b:c8:46:a4:32:cf:62:d4:98:1c:74:80:32:ce:
31:ff:3d:4b:91:32:b2:c4:b8:69:5c:30:34:50:75:
8e:a4:93:1b:8a:3f:71:c9:9d:7f:5c:48:b7:38:a3:
eb:d6:4c:aa:50:87:d7:c3:f0:2f:1f:b5:ca:a6:8b:
b8:e6:e6:3d:41:94:63:94:a9:8f:26:4f:06:ca:06:
1e:f3:74:75:e7:4c:d1:77:f3:56:3b:71:1d:b6:59:
58:08:45:3c:0d:4b:ee:96:ce:d0:27:1a:7d:79:48:
94:24:a1:ae:04:04:c0:c9:6d:0b:4e:ff:3c:e8:cb:
95:41:2b:46:7d:71:3e:bd:1a:73:ff:62:91:d9:cc:
b0:9b:0d:0b:13:53:84:bd:8e:ef:b5:4b:f1:c2:6d:
73:d2:30:1f:c8:91:17:9d:2f:7c:83:89:0d:92:de:
77:0e:b0:c2:d8:8f:42:6d:27:2f:ae:7a:72:ac:e1:
39:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:9F:05:66:86:C9:44:36:97:A3:BB:D8:EC:AF:D1:04:49:53:C3:B5
X509v3 Authority Key Identifier:
keyid:A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:1a:76:9b:26:ab:fa:a5:df:85:3d:1e:40:64:f8:79:ab:6b:
52:a7:c1:27:9b:91:c1:1c:4e:a7:cf:bf:5e:d2:3c:40:15:e3:
2f:9f:15:30:fb:29:67:33:49:e1:d3:ec:fa:60:6b:af:4b:57:
02:64:72:41:18:d8:31:48:13:5f:bf:7b:e4:b4:44:00:5d:ba:
3f:89:e0:4d:d2:f4:53:b0:1e:dd:d0:86:ce:57:89:54:db:9f:
e0:e8:d1:62:44:de:f6:9e:7a:21:1e:11:ac:3f:f7:7c:57:74:
ab:50:4a:5b:4d:fb:5d:32:22:62:ec:01:ea:39:f5:d0:8e:1d:
b0:9d:9a:13:2b:35:08:9a:97:1f:3c:1f:84:11:86:86:ab:ca:
d1:25:40:14:2c:3d:a4:45:92:5f:f8:a4:6a:ba:af:14:15:0b:
a5:44:46:db:bf:97:82:be:a1:5d:19:fe:7c:12:e9:f6:fc:df:
18:d3:8f:43:ab:41:f8:85:94:c6:40:a3:bf:e0:4a:ab:ca:28:
73:d5:1a:cb:57:31:05:77:c3:fd:a0:f5:62:0f:74:07:5f:0b:
cd:d3:cd:1a:fc:d9:fa:0d:4f:be:18:44:9a:ab:3f:5e:7a:f1:
25:56:4e:8c:e0:88:39:37:90:6a:ae:9d:4a:9d:0c:cc:55:5a:
0e:13:33:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 26 23:53:09 2026 by rpki-client