Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.mft
File: 6OcnETayGhWK70CdMOLGAB1bDak.mft (raw, json)
Hash identifier: vRNsCdRJSYS8CYnextlKk/Ix0qxSfukKDzludWJQRX8=
Subject key identifier: 77:1A:2A:33:E3:0A:08:97:86:20:D3:C7:9A:3D:7E:1E:22:90:6E:FC
Authority key identifier: E8:E7:27:11:36:B2:1A:15:8A:EF:40:9D:30:E2:C6:00:1D:5B:0D:A9
Certificate issuer: /CN=e8e7271136b21a158aef409d30e2c6001d5b0da9
Certificate serial: 019E303B81721BC52C4D288EA45989FB5098
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6OcnETayGhWK70CdMOLGAB1bDak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.mft
Manifest number: 1266
Signing time: Sat 16 May 2026 10:01:06 +0000
Manifest this update: Sat 16 May 2026 10:01:06 +0000
Manifest next update: Sun 17 May 2026 10:01:06 +0000
Files and hashes: 1: 6OcnETayGhWK70CdMOLGAB1bDak.crl (hash: AIevkPZUjoKnbyf5gRbWUS+s5azfM53FwxVX6gz3YJM=)
2: BgOBkzwZiai7TWETAvn_IWE9YOQ.roa (hash: eYdWajw2NgiVsKV9NY6WqUM6UWy1PFC1+5llbrmRKeE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.mft
rsync://rpki.ripe.net/repository/DEFAULT/6OcnETayGhWK70CdMOLGAB1bDak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 10:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:81:72:1b:c5:2c:4d:28:8e:a4:59:89:fb:50:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8e7271136b21a158aef409d30e2c6001d5b0da9
Validity
Not Before: May 16 10:01:06 2026 GMT
Not After : May 17 10:01:06 2026 GMT
Subject: CN=771a2a33e30a08978620d3c79a3d7e1e22906efc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bc:50:2a:ef:cf:93:7f:6f:8e:c7:5e:69:41:
ee:51:33:7b:e6:2f:ca:ff:ab:cb:12:02:2c:4a:a2:
26:b2:d1:36:35:09:a8:28:00:fa:1d:92:a2:73:30:
a5:61:c6:39:77:43:7b:a2:6e:55:a6:59:b7:61:cf:
8e:c6:f0:a6:b4:5f:1e:e9:8a:64:39:13:93:3e:ee:
30:02:b0:f0:a9:6a:c9:74:33:04:d7:fc:ae:89:28:
e5:0c:d1:75:2e:23:04:c4:11:3e:a9:ce:0f:8e:6c:
cc:ab:a6:02:8d:da:3a:da:99:b6:06:cb:c4:30:69:
a0:09:3e:3b:07:c6:a5:bf:4b:9a:02:20:d7:0b:d8:
fc:af:dc:2b:6b:8a:36:27:ec:b2:23:c0:cb:01:cf:
df:0e:f0:0c:b4:5b:15:2a:17:9e:69:14:15:15:04:
94:b0:a1:f7:84:9f:d9:71:e4:24:fd:da:af:95:64:
b2:a7:55:98:4c:a6:a0:64:72:19:fd:33:db:f4:1e:
f7:f5:61:5f:50:61:f2:fe:1d:59:b3:7f:d8:af:a2:
6e:f2:61:73:5b:d3:df:1d:4e:c4:56:88:6a:2d:06:
cf:a4:c2:a8:da:8c:66:5b:7b:f0:f1:a5:2f:5c:9f:
e5:8a:e0:b4:46:7c:07:17:16:e6:ee:a8:bb:90:b8:
54:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:1A:2A:33:E3:0A:08:97:86:20:D3:C7:9A:3D:7E:1E:22:90:6E:FC
X509v3 Authority Key Identifier:
keyid:E8:E7:27:11:36:B2:1A:15:8A:EF:40:9D:30:E2:C6:00:1D:5B:0D:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6OcnETayGhWK70CdMOLGAB1bDak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:c6:4b:56:18:66:5a:6b:5c:98:96:b5:a7:9c:bc:51:5f:91:
d8:1c:bc:e6:89:80:29:b0:d1:4d:0b:9d:26:ce:63:a1:58:28:
70:7b:5f:96:34:89:7c:d5:b6:b1:a5:c1:e2:54:56:ff:dc:d7:
d0:bd:92:a3:1f:02:48:0f:27:63:41:d7:b9:ee:7c:fa:b1:12:
f3:15:5f:21:8c:f5:c4:a2:8a:e9:54:88:9c:56:05:4c:25:d7:
c8:88:c9:16:74:e9:dc:98:fe:e7:33:cb:eb:2b:da:fa:3b:e1:
1b:fc:63:56:e9:cc:04:58:cd:3a:7f:e6:58:e8:24:c2:ce:74:
16:19:77:62:45:e4:14:92:69:f5:34:c2:d6:2c:32:2e:eb:3b:
95:9c:4e:44:d7:91:62:22:63:e9:e6:ff:f5:f9:c4:12:25:8b:
09:5c:77:5e:d8:6b:00:e3:5a:00:85:7e:bd:95:5d:65:ed:34:
56:e8:3f:90:29:f1:13:b1:f3:96:ca:72:e7:b1:c7:17:3e:83:
11:83:4a:85:de:20:ec:64:a7:2c:46:04:ed:16:61:b0:b2:2d:
21:50:94:dd:fb:bc:c8:6b:81:3e:ce:57:f9:65:7f:27:dc:f3:
4e:79:e7:98:92:e2:f4:2b:d7:bc:cd:29:8d:ee:49:2f:6f:7b:
72:af:78:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 19:29:39 2026 by rpki-client