Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
File: o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft (raw, json)
Hash identifier: dXDNRV/XPb4YSkNgY4Hs7/nbTLt4pADun7kOyYf/jkw=
Subject key identifier: 66:0B:5E:66:21:A6:21:3A:8D:3E:01:4C:6D:C0:19:FC:E1:74:ED:DD
Authority key identifier: A3:A8:2E:E9:AA:11:06:ED:72:0D:63:C3:84:4E:66:64:40:E3:44:38
Certificate issuer: /CN=a3a82ee9aa1106ed720d63c3844e666440e34438
Certificate serial: 019DE031C9075E13DD444B3F0130ADC94373
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
Manifest number: 0E1B
Signing time: Thu 30 Apr 2026 21:00:52 +0000
Manifest this update: Thu 30 Apr 2026 21:00:52 +0000
Manifest next update: Fri 01 May 2026 21:00:52 +0000
Files and hashes: 1: LkRlWvjojGp88ImWjfx2Z3qaOy4.roa (hash: kB89kqUtMQKcyA7jSVcONA2ZKYzA7LpbjPMFFP5OhVw=)
2: o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl (hash: fNgmLGCOXC9Aywd5UnrxfUzC0/YUfo9SrbWXJPtKPKM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 May 2026 18:20:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:e0:31:c9:07:5e:13:dd:44:4b:3f:01:30:ad:c9:43:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3a82ee9aa1106ed720d63c3844e666440e34438
Validity
Not Before: Apr 30 21:00:52 2026 GMT
Not After : May 1 21:00:52 2026 GMT
Subject: CN=660b5e6621a6213a8d3e014c6dc019fce174eddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e1:c3:af:d2:be:0b:72:49:4e:48:eb:6a:69:
97:56:65:d0:5d:8a:92:29:d3:6c:34:5c:4c:88:e6:
91:03:de:6d:42:81:2f:7a:be:8f:1f:8b:95:89:11:
03:10:e2:7e:86:93:2c:1b:cc:1b:10:3c:32:0c:f9:
15:05:28:66:e6:bf:e2:6d:ac:dc:c5:da:1f:1e:79:
81:8f:45:d1:21:3b:66:e1:1a:81:e8:0f:f3:ac:18:
3b:18:bf:5e:24:72:68:5f:e3:db:7e:7c:56:ff:92:
d6:58:0a:08:a6:e1:00:98:6d:27:47:26:76:d8:3d:
eb:8f:7b:4c:6d:b6:7a:1d:74:10:3f:fb:b6:b1:86:
34:d5:e4:f3:88:ec:c6:36:16:0e:53:78:86:10:b4:
bd:21:3a:bb:d0:a9:cf:c8:66:18:61:ae:90:bb:79:
94:aa:c7:67:35:75:e6:a1:e4:6e:e5:be:a7:ee:12:
e3:5b:d9:9c:70:6b:06:db:d2:a7:38:00:25:7f:a8:
a3:b3:e9:8f:16:b0:04:ae:14:84:ce:61:99:6e:a6:
bb:8c:d4:fd:10:47:c6:24:cb:d8:1d:c1:d1:5f:35:
5e:fb:1a:8d:ac:c8:50:78:ad:cd:c6:5e:06:fd:6a:
f9:3d:4e:a9:27:b7:c6:d6:c9:d3:15:73:ba:15:fa:
ee:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:0B:5E:66:21:A6:21:3A:8D:3E:01:4C:6D:C0:19:FC:E1:74:ED:DD
X509v3 Authority Key Identifier:
keyid:A3:A8:2E:E9:AA:11:06:ED:72:0D:63:C3:84:4E:66:64:40:E3:44:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:99:d4:77:a4:9b:c5:6f:3e:2e:e4:5c:01:c5:9e:5a:aa:40:
da:2d:ed:d8:a9:a3:f4:c9:8d:1b:d7:18:fc:a4:d9:92:70:28:
12:97:cc:ea:4d:76:d7:a1:7e:68:43:c9:99:cc:15:27:b7:ff:
82:58:b1:ac:3a:c1:b1:fb:7e:bd:52:cf:3e:da:76:55:0f:c6:
d7:8f:89:b4:7e:36:56:e6:aa:c7:46:83:27:b8:39:95:20:d2:
3f:42:0c:5c:0e:79:db:91:f8:7e:19:17:ab:2e:28:e3:6a:1e:
98:7a:86:00:c9:99:a8:4d:d4:11:da:b2:38:38:fb:d9:aa:5a:
84:64:47:af:7d:34:76:07:83:7c:f9:ff:ba:7c:de:b4:86:04:
d3:8b:47:47:c5:08:a6:bf:d9:28:f6:8b:e0:23:4c:ad:f3:de:
26:cc:c5:2a:9f:95:4f:24:78:20:43:8b:85:49:7f:b0:89:00:
32:77:96:38:85:39:66:97:5f:41:0e:49:db:07:f9:6e:c0:2d:
c2:2e:4a:e0:67:47:c4:8f:c9:cf:25:c9:8b:8f:22:6d:53:7d:
f7:0f:c6:2f:74:68:8e:1b:c1:61:38:ab:ee:ff:f8:22:7c:dc:
ef:3f:20:af:bb:eb:2c:a5:5d:69:90:a4:91:c7:7f:3f:53:9d:
de:5e:e2:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 1 03:41:45 2026 by rpki-client