Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
File: ao33d2sW0oLgTGluJYqk-fnOnJg.mft (raw, json)
Hash identifier: uTOLmypBabVl+GBzEglrF7HkWbFvhjKyD1+WhD+lPCQ=
Subject key identifier: 8E:A7:F0:85:64:3A:13:BB:5F:8D:DE:0F:35:1E:55:BE:51:3D:FA:EC
Authority key identifier: 6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
Certificate issuer: /CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Certificate serial: 019ED507916D91876FAD4168F892D9C8299E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
Manifest number: 0D56
Signing time: Wed 17 Jun 2026 10:01:43 +0000
Manifest this update: Wed 17 Jun 2026 10:01:43 +0000
Manifest next update: Thu 18 Jun 2026 10:01:43 +0000
Files and hashes: 1: GmFXXmDlxbUAsewZb2XP6yyDi4w.roa (hash: t86pSAuRTeL1p9o68CyCCsghXoQGwpFAgB1l7sjE7zs=)
2: ao33d2sW0oLgTGluJYqk-fnOnJg.crl (hash: kp9XEeZy45xx/xE2ecqr7dWVX5YIUNefrc3hiroZKjs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 08:33:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d5:07:91:6d:91:87:6f:ad:41:68:f8:92:d9:c8:29:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Validity
Not Before: Jun 17 10:01:43 2026 GMT
Not After : Jun 18 10:01:43 2026 GMT
Subject: CN=8ea7f085643a13bb5f8dde0f351e55be513dfaec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7b:e8:cb:e7:35:98:b7:0c:27:bb:c2:0b:e8:
cf:ec:19:7a:0e:0d:d6:59:6b:2a:b4:a5:0d:7b:69:
d8:ed:a5:16:c3:6c:ab:11:05:aa:dd:22:86:8b:b9:
09:75:29:af:e3:b1:ae:2a:2b:be:9f:48:bc:db:e5:
b5:4d:c0:a1:4c:bb:b3:8f:15:13:9b:fb:38:8a:c6:
2f:3f:e0:36:1c:44:e5:bc:d2:70:5b:2e:34:fa:65:
b4:5d:25:6c:bd:94:8b:46:26:80:1f:c3:7f:ad:b0:
6c:d9:22:5b:0d:1a:67:dc:6f:e3:bc:88:17:06:a3:
63:99:d4:ee:aa:e4:0f:45:ce:cf:89:63:6f:b3:fb:
24:b9:a2:e5:0d:4d:16:30:c0:e8:5e:68:3b:d1:75:
ee:fd:9e:52:dd:4b:45:79:ea:e8:88:58:47:7e:de:
23:b6:21:0a:85:0c:19:63:7b:3d:6a:33:87:c3:ca:
0b:fb:62:01:5d:94:bb:b7:d8:8c:0d:a9:77:72:3b:
ba:dc:88:00:84:77:ae:db:1d:b3:dd:b3:0c:b2:bb:
2f:df:d9:9d:27:75:02:69:60:b3:3e:66:53:a4:06:
92:84:45:29:d7:bb:1c:40:ca:86:98:b6:b6:68:3e:
47:4f:ca:c8:0e:00:0d:47:a9:f4:33:1f:6e:af:bf:
f3:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A7:F0:85:64:3A:13:BB:5F:8D:DE:0F:35:1E:55:BE:51:3D:FA:EC
X509v3 Authority Key Identifier:
keyid:6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:52:24:a9:38:6e:51:95:be:d5:d9:c2:14:ea:9e:5d:f5:61:
cd:3b:20:88:13:27:6b:90:8e:8d:93:18:1c:18:dc:43:1c:53:
2a:d0:b4:28:9e:5e:63:7e:39:39:b7:0e:b4:6b:25:50:27:89:
66:8e:d7:0c:fd:8a:29:dc:92:9f:f8:e3:24:cf:60:8b:12:55:
da:c6:e6:2f:c5:ef:76:45:8d:fb:83:ba:2b:d0:38:96:23:fe:
e5:d2:28:21:a4:54:d7:c3:89:14:13:c9:95:83:47:ff:f4:ba:
97:d0:a5:6a:3b:14:0c:c6:59:6e:86:fd:9d:73:b1:4f:0f:c2:
2d:11:09:e6:93:bd:14:fb:5b:d6:db:7f:c6:71:71:15:a3:35:
c6:0b:35:f3:e6:db:e1:52:57:73:82:1e:4c:cf:b0:41:d9:a0:
62:8b:96:33:63:9d:55:ec:a4:b3:f9:93:61:9e:41:ca:e0:fa:
10:24:57:ec:93:42:c5:d9:ef:91:c6:da:2b:11:d8:76:bd:78:
71:8d:f0:8a:ea:ae:f6:22:15:e0:5a:ed:d7:ac:e7:ac:a6:ca:
03:7e:1f:97:81:79:aa:6b:fa:17:24:3d:4b:5e:9c:34:56:c6:
2e:2f:af:2b:0c:eb:7f:b1:2b:67:02:1c:58:34:e3:6d:b0:35:
72:a5:f5:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 14:11:45 2026 by rpki-client