Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
File: _o6FIymApj8NTfWwSRY-P9AvVLM.mft (raw, json)
Hash identifier: EZN7Ae5n2D9edaXbLEcqquB3zXLLWyu0WPH6crLIL6U=
Subject key identifier: 00:73:77:70:43:29:DB:84:AF:CD:47:61:78:A3:03:EC:66:2F:E3:C2
Authority key identifier: FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
Certificate issuer: /CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Certificate serial: 019D3752E22DE011B1A43EF03FC557ACE53B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
Manifest number: 0D07
Signing time: Sun 29 Mar 2026 02:01:11 +0000
Manifest this update: Sun 29 Mar 2026 02:01:11 +0000
Manifest next update: Mon 30 Mar 2026 02:01:11 +0000
Files and hashes: 1: _o6FIymApj8NTfWwSRY-P9AvVLM.crl (hash: XTCy9oP4PAs/pG1TkKx6uOz07gjYPzuRtgVXQhNfnfk=)
2: i8r_KcfZKeFV_hgBzyCFH1FvU2Q.roa (hash: q7K3PKVBwmAslABYzD36Nuj0tVHPXSk4xv3r0eaKenA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:e2:2d:e0:11:b1:a4:3e:f0:3f:c5:57:ac:e5:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Validity
Not Before: Mar 29 02:01:11 2026 GMT
Not After : Mar 30 02:01:11 2026 GMT
Subject: CN=007377704329db84afcd476178a303ec662fe3c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:31:a4:aa:2d:b1:47:63:73:b1:fb:11:fb:42:
6c:25:68:cb:2a:3e:31:42:49:69:9e:ff:e0:4e:51:
a6:b9:37:e4:49:a1:9a:58:85:a5:48:08:72:11:1c:
55:e7:3a:f3:da:65:1e:dd:cc:e7:ec:c4:80:6b:d0:
e9:59:c2:b7:7e:a0:62:af:c4:3f:a5:e2:d1:13:de:
86:21:74:83:34:e7:7f:e1:ef:3e:e6:3c:88:4f:d6:
4b:eb:00:88:98:52:bc:c2:e5:b4:40:b8:48:75:d8:
f4:86:3c:3d:72:32:09:ed:d4:bb:fd:ab:8a:8f:14:
06:14:84:20:92:41:94:c5:c4:03:43:8d:d2:b5:d0:
04:82:c6:d9:08:37:e9:96:34:12:ee:3d:cc:d3:6e:
05:6a:1a:6a:e1:be:e1:59:0d:6a:a6:1f:15:03:d2:
60:dd:43:80:d1:1e:9b:04:46:4f:8d:a1:42:f4:85:
44:23:c3:c1:a9:a9:c5:24:84:5b:af:53:ef:3f:0e:
2c:4d:5b:b0:d5:2c:06:0f:87:df:52:7b:b4:a3:2a:
22:dc:54:79:8a:f6:1c:c0:2d:76:12:f3:57:92:dc:
e0:77:67:00:0d:85:9e:5c:8c:6c:ca:d9:a1:59:06:
fb:98:4c:5e:6c:44:05:84:81:8d:17:9b:e9:c4:4e:
35:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:73:77:70:43:29:DB:84:AF:CD:47:61:78:A3:03:EC:66:2F:E3:C2
X509v3 Authority Key Identifier:
keyid:FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:51:ce:42:22:2f:3d:e8:e6:2e:3f:10:21:8f:5c:b6:f4:28:
b6:73:ea:12:ab:c3:09:7b:96:f6:7a:c1:8e:91:f4:ee:e7:04:
81:b1:8b:95:8b:dc:cf:a7:59:61:96:1c:84:ec:94:bc:dd:4e:
49:15:2a:8f:a3:09:aa:8e:25:76:7d:2d:b6:5b:f5:99:b2:04:
19:fb:64:7a:48:9b:65:cc:c5:df:42:4d:d9:3f:a3:11:96:eb:
06:a7:ab:7f:4f:3b:24:7f:28:4a:2a:5c:4c:2f:60:f5:07:cf:
7f:2a:b2:ae:07:c2:2c:8f:d1:45:5d:a2:5e:91:6a:63:8f:4b:
3b:0d:e2:1c:c3:73:fa:ca:50:6c:4a:fc:8a:ca:62:83:f5:9b:
82:0f:be:69:d1:da:36:0b:07:e1:97:6c:b9:02:f4:d2:aa:92:
77:83:17:25:d6:1b:79:ce:17:74:c0:68:03:38:b9:ca:db:e1:
2e:63:84:ca:87:5f:03:1c:ea:fb:11:61:da:c2:11:87:8e:d3:
8f:f1:16:4c:38:45:1d:1c:40:e2:fb:33:cc:2f:c7:17:d2:34:
a5:39:7a:92:8e:ad:60:14:17:11:cb:10:36:a9:db:10:67:18:
87:2d:ac:59:cf:b9:9e:59:b0:e3:56:a9:dc:28:c6:20:07:a8:
4f:51:be:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:32:35 2026 by rpki-client