Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.mft
File: 0KOFQs_bHubgdermsQHnu1sUxDY.mft (raw, json)
Hash identifier: 2u9zYkmvxnWgey+I5hsWsHiOIYCICRi0iX4opA8BNBI=
Subject key identifier: 67:81:70:23:53:71:F7:35:56:BF:11:DD:9D:DB:0E:4B:6F:4C:34:27
Authority key identifier: D0:A3:85:42:CF:DB:1E:E6:E0:75:EA:E6:B1:01:E7:BB:5B:14:C4:36
Certificate issuer: /CN=d0a38542cfdb1ee6e075eae6b101e7bb5b14c436
Certificate serial: 019E30E00AA6ECAEACF6E0C07EB04A43900C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KOFQs_bHubgdermsQHnu1sUxDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.mft
Manifest number: 15A8
Signing time: Sat 16 May 2026 13:00:49 +0000
Manifest this update: Sat 16 May 2026 13:00:49 +0000
Manifest next update: Sun 17 May 2026 13:00:49 +0000
Files and hashes: 1: 0KOFQs_bHubgdermsQHnu1sUxDY.crl (hash: L/dRD6Gc1MAuNoI6gCvr5mWdcPF+Pg32wVMQC3INd5o=)
2: DrZAtoY9Rywo8Ldr7YL_hDy1B6M.roa (hash: ZHyEZKVIvM9BzDhqQ2OC3fMsoZAiuL1oIVL6MnD4jI0=)
3: YFnsBz-ThBGqQauorb6rDcdXyRc.roa (hash: ofSsRHMM0MyWc7/I1MxyPNGPxwyZiKD6PRrjZ0gvq34=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KOFQs_bHubgdermsQHnu1sUxDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:0a:a6:ec:ae:ac:f6:e0:c0:7e:b0:4a:43:90:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a38542cfdb1ee6e075eae6b101e7bb5b14c436
Validity
Not Before: May 16 13:00:49 2026 GMT
Not After : May 17 13:00:49 2026 GMT
Subject: CN=678170235371f73556bf11dd9ddb0e4b6f4c3427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d1:b4:7a:d1:a8:b8:e6:e2:ce:bd:d2:d7:5c:
52:7f:83:d4:44:23:df:49:93:24:d5:b8:9d:9d:b8:
30:a3:b4:9f:56:79:5b:b1:d8:e9:01:5b:e8:7f:58:
5f:12:34:29:72:56:c7:3c:a4:6a:4f:a2:69:f3:82:
67:96:96:9f:1c:0e:ba:53:11:9c:bc:f4:d9:9b:1c:
56:92:20:0b:bf:eb:71:a2:7c:c9:c2:b4:e2:bf:13:
93:2e:3e:0a:82:5f:30:d5:1f:50:e8:6a:72:d1:d2:
fb:4c:ce:dc:dc:d4:bf:b3:67:89:2d:4c:c4:0c:ea:
cb:95:e7:1d:e4:32:d7:0f:27:9a:99:cc:74:df:f8:
67:92:c5:5b:8c:d6:1d:93:11:9b:65:ea:97:f3:51:
67:90:2c:e9:0c:6b:5e:e1:ae:b7:ad:57:0c:18:72:
13:e5:c4:f6:85:79:ee:96:d1:e9:73:c0:c3:a3:51:
76:7f:ac:f5:bb:f5:f0:3b:06:06:f9:96:6f:6a:00:
1f:31:81:fc:0b:08:e9:fe:1b:6a:7e:a6:96:9f:1c:
06:3a:f4:2d:35:c7:8b:cf:8b:2a:30:c6:97:a0:ca:
d1:3f:7e:88:bf:57:4c:20:de:2c:5d:4f:79:9a:27:
d9:75:dd:94:b7:71:27:ba:a2:cc:c4:c6:51:20:94:
35:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:81:70:23:53:71:F7:35:56:BF:11:DD:9D:DB:0E:4B:6F:4C:34:27
X509v3 Authority Key Identifier:
keyid:D0:A3:85:42:CF:DB:1E:E6:E0:75:EA:E6:B1:01:E7:BB:5B:14:C4:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KOFQs_bHubgdermsQHnu1sUxDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:61:10:06:5d:35:ed:2e:40:cc:b4:e8:e7:cc:5b:13:dc:f3:
ed:30:55:88:11:7f:da:08:72:a2:5a:bb:4c:ad:d1:f1:7c:fa:
0f:25:fb:05:02:ec:84:9c:55:18:83:b8:9b:ea:62:9e:17:5a:
98:21:42:e5:f1:4d:7a:59:34:66:19:32:6b:ae:db:cf:83:45:
f0:4f:63:69:92:f7:04:c2:ed:a9:aa:fb:9c:94:33:58:62:ba:
b7:2f:39:03:55:e8:1a:9c:f4:1c:84:c9:ca:21:b7:fb:1b:06:
5d:ef:9c:7b:18:f0:3d:2e:9c:78:90:b1:10:ff:74:30:6d:f4:
3a:82:41:4b:86:db:d9:a5:eb:d2:87:c9:36:5a:53:f6:cb:ca:
9a:0f:a5:ac:68:0d:d7:f1:3f:9c:01:53:52:99:64:5d:e5:38:
93:db:80:41:07:ea:b4:70:9e:ef:4f:f3:a4:90:f4:dc:1b:06:
10:7c:e2:4a:a2:9c:83:27:02:54:56:a8:21:75:72:f1:bb:12:
76:b3:54:f3:80:44:38:c7:82:5c:0f:57:d6:34:7d:6a:47:fc:
b0:ab:cb:54:7e:08:1c:e7:9e:17:21:d6:e4:cf:83:13:d1:ad:
23:33:ad:ef:08:a8:8f:54:20:cc:7d:67:63:bd:87:6a:35:e8:
ca:74:6a:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:38:23 2026 by rpki-client