Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft
File: oN9_W2YYvaI8g77RG0QgQfH7RW0.mft (raw, json)
Hash identifier: x/cEr0CbK6/CNkpEM4vMem/b26hzoMNE5q9pJGtzBEQ=
Subject key identifier: 0E:C8:9B:06:49:BD:6A:93:2D:F9:83:16:C9:9F:85:B2:C3:2C:D5:C4
Authority key identifier: A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
Certificate issuer: /CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Certificate serial: 019DF201DF88F9185C664CA3CD576E61789B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft
Manifest number: 11B1
Signing time: Mon 04 May 2026 08:01:42 +0000
Manifest this update: Mon 04 May 2026 08:01:42 +0000
Manifest next update: Tue 05 May 2026 08:01:42 +0000
Files and hashes: 1: We9JlhRC7AnuKdXNeDiRVJR3cSQ.roa (hash: aCm3hVdiPu8wrcYehfXy6dGkmo0BNiZb3dnL5cg7bd0=)
2: dNqWn8LLbtUjse_iEIk0LyE_w9U.roa (hash: pyT41frLnr8b4Y4mOhVh340WexYxDekl72v7q/1e+g4=)
3: oN9_W2YYvaI8g77RG0QgQfH7RW0.crl (hash: H7V5ny+Kf5viySLeCjQra2MXhvv6O3hWPlG/jkbFb0c=)
4: ovUvt1pWliISM3HaoCAcadW0xKw.roa (hash: H639MxSrvwDoO2fDDqrmu0kQ4erJQr6FKFxoVbpwHPU=)
5: pzkAsevaRgjEYyiE9vP5vLFmiuQ.roa (hash: nO/grxvmKZkvhDphy8GQW/Icm/R4FkLHljLabsv3llQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 May 2026 08:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:f2:01:df:88:f9:18:5c:66:4c:a3:cd:57:6e:61:78:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Validity
Not Before: May 4 08:01:42 2026 GMT
Not After : May 5 08:01:42 2026 GMT
Subject: CN=0ec89b0649bd6a932df98316c99f85b2c32cd5c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:de:e9:e5:35:d5:b5:84:87:15:7a:8d:16:b8:
c3:99:e7:25:86:99:88:10:07:c9:f0:e7:32:c0:c6:
d8:a8:2f:35:e8:57:04:94:62:97:5d:c5:95:08:35:
bc:1d:b7:6e:52:eb:1e:c8:83:21:fe:43:75:d0:73:
56:4e:13:3f:cb:b8:95:b6:00:f4:6a:08:fd:95:80:
ea:38:1c:f3:b9:02:21:3f:97:21:b3:7a:41:7c:7b:
08:e5:8e:24:c6:a5:c4:84:60:a0:13:8e:48:cb:0d:
e3:da:0f:36:3c:ed:85:2f:57:2b:0a:3f:96:ea:f1:
fc:1c:12:c9:df:02:0f:15:66:2d:78:d3:db:0f:5f:
33:f6:11:c0:06:12:5a:15:15:6f:d9:fa:49:bd:6b:
3d:20:8c:54:3c:3a:ac:09:8e:24:8a:3e:11:b2:0c:
cb:dc:9e:61:16:e1:3c:78:a0:ee:44:9d:8d:01:4e:
ed:bd:7c:d8:ed:b1:d0:ad:85:3d:b4:d2:76:b6:d9:
89:ee:f0:01:5c:ff:00:78:da:09:4a:56:75:98:4f:
d9:fa:b7:1d:45:b8:00:5f:91:e8:ce:b9:aa:08:ba:
31:d2:5f:f8:21:6f:2e:d2:3e:06:f6:a9:c3:67:66:
96:14:79:64:61:f1:3d:ad:23:ea:43:be:7b:88:cb:
5e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:C8:9B:06:49:BD:6A:93:2D:F9:83:16:C9:9F:85:B2:C3:2C:D5:C4
X509v3 Authority Key Identifier:
keyid:A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:22:89:fd:66:c7:d0:ca:b2:1a:80:9a:d6:8e:4a:45:47:34:
09:97:7a:ac:7e:4d:d7:db:98:73:8a:55:76:0f:56:1e:9e:96:
75:c7:ed:57:67:16:c6:19:a7:e8:7f:fd:47:13:b8:2f:6c:ef:
a5:6f:01:c9:f8:a8:ca:a9:24:04:64:37:e9:96:2f:db:62:76:
5a:0d:e8:8b:18:b6:8e:87:d8:4d:5f:41:bb:9e:70:6a:01:89:
43:87:90:1e:a8:64:a6:3b:b2:2f:42:a9:ab:f9:00:37:4f:d2:
c6:dd:29:9e:db:a4:36:36:e0:7b:05:99:f2:3a:1a:a2:65:45:
bf:10:54:26:44:7e:ea:3e:f1:2d:6e:2c:46:5d:e1:8e:5c:f4:
25:9d:3a:3f:29:8f:f9:2e:43:6c:58:f6:25:a4:dd:b3:89:2f:
20:11:07:18:e5:a8:98:df:78:43:ac:09:45:7d:66:8c:90:0b:
28:71:8a:e9:87:8f:35:87:0d:b4:b6:9a:78:2f:1e:24:f6:4b:
1b:c5:77:d0:8c:e4:e8:91:72:69:54:03:f1:4a:7f:32:a4:47:
5e:79:c8:ec:51:26:8c:d7:e7:0f:9c:24:c8:6f:19:1e:73:8b:
13:0b:e0:b9:50:0b:c5:52:a3:bc:15:4f:b9:43:ad:a4:08:ae:
8e:15:e4:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 4 15:29:23 2026 by rpki-client