Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
File: O_-2BdzjBg37ZtzMqI632grHSvE.mft (raw, json)
Hash identifier: mmPXCxP0Ga0zzXXJzFGlB8b/W/j9uuDxDqNqEItxYsw=
Subject key identifier: 06:46:94:CD:57:52:2C:C7:30:C5:92:6A:8A:E9:74:3E:AF:A7:46:AA
Authority key identifier: 3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1
Certificate issuer: /CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1
Certificate serial: 019EB7A18928FEDE7C25CEED74B842C505B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
Manifest number: 0D55
Signing time: Thu 11 Jun 2026 17:01:17 +0000
Manifest this update: Thu 11 Jun 2026 17:01:17 +0000
Manifest next update: Fri 12 Jun 2026 17:01:17 +0000
Files and hashes: 1: 8qvgkfD_thQ4z_WLXGgGH3lh3Jo.roa (hash: lpIuAWveKCKeQMUzXLJXzixQ82Be/vxjOdAft2Y84BY=)
2: O_-2BdzjBg37ZtzMqI632grHSvE.crl (hash: aXqQswV9pjctI7pRtQSMOkHZXehiqebXNQx3/OW+yTY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:a1:89:28:fe:de:7c:25:ce:ed:74:b8:42:c5:05:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1
Validity
Not Before: Jun 11 17:01:17 2026 GMT
Not After : Jun 12 17:01:17 2026 GMT
Subject: CN=064694cd57522cc730c5926a8ae9743eafa746aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:56:86:23:d5:84:44:82:92:0d:ab:97:e7:50:
f5:17:67:26:3e:16:00:d2:50:8b:03:aa:a0:09:62:
4a:00:51:1b:42:24:39:12:11:b5:48:1f:57:25:0b:
66:dc:d3:ef:c8:41:83:e7:8f:48:72:be:da:8c:c0:
d8:9b:22:3f:a0:5f:87:aa:f6:f6:3a:b6:89:c1:3d:
55:d5:7a:4c:4d:89:64:21:48:1b:f2:96:3c:49:19:
8e:3e:0f:e0:c1:a0:71:3e:fe:7e:b5:82:a2:92:7d:
61:db:ee:d2:77:10:5d:b1:ef:70:bf:ec:ad:fd:b5:
94:4d:86:5d:f8:e0:10:64:3d:d7:b9:71:f0:bc:dd:
57:ae:c7:00:de:35:18:81:90:3b:c5:1c:54:2e:64:
ab:a3:e1:d4:6a:f6:88:dd:b7:91:f6:cf:a8:c8:5c:
38:11:80:e8:2e:32:d7:ae:7b:02:fa:75:1a:1c:40:
4d:4a:7a:17:b2:2a:a7:6d:3e:2b:af:16:3c:8e:85:
67:82:82:f6:db:77:b7:e5:fe:04:d3:0a:4e:88:7a:
65:87:e6:95:1a:b4:70:e1:72:cd:14:eb:93:f1:c8:
e8:8e:94:6b:66:9a:99:36:b1:48:14:3e:fe:08:05:
09:67:0d:3b:73:09:6a:80:86:7a:ea:59:48:53:b2:
5b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:46:94:CD:57:52:2C:C7:30:C5:92:6A:8A:E9:74:3E:AF:A7:46:AA
X509v3 Authority Key Identifier:
keyid:3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:6e:c6:12:92:8e:8b:74:40:87:79:7c:ae:b6:94:76:39:b3:
41:e2:f2:37:09:67:27:04:3b:84:dd:3b:ef:ab:af:10:4f:05:
67:59:b8:d2:dc:e8:69:09:75:bd:99:b1:a6:d5:eb:88:3b:da:
76:2c:22:a8:91:6c:ff:c4:c2:58:cc:bc:34:b4:96:87:24:59:
93:2f:4b:f9:b4:3e:75:5d:ee:7f:eb:89:d2:10:ea:d5:1f:cb:
a9:dc:ce:8d:a2:05:69:7c:9c:5e:e7:4c:e7:6f:9d:17:fa:8a:
bf:41:af:75:e8:38:c7:d5:17:0c:ee:15:6e:03:05:25:55:7a:
53:01:97:e7:03:0a:67:1b:d8:9b:a3:32:8a:d5:b7:f9:df:b4:
0e:0b:9b:0a:6e:40:33:94:25:c4:27:62:34:7d:31:40:43:82:
26:bb:57:52:b1:03:8c:cc:ea:e6:d5:bf:64:fc:3f:e8:72:3f:
c1:fe:db:a9:c2:bf:ed:4a:a2:42:35:a4:f9:26:6f:8d:d5:62:
77:ea:a3:08:f7:28:84:47:06:37:cf:6d:ec:4a:79:7c:8f:0c:
3d:40:37:51:7d:59:ad:c3:6c:aa:8a:db:ee:0e:4f:70:fb:96:
6c:0b:8d:56:75:d0:d7:b3:7e:1a:e7:e3:0e:3e:b6:c9:1b:63:
31:17:35:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 19:02:55 2026 by rpki-client