Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
File: 0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft (raw, json)
Hash identifier: XMiZpZw0WMyHwZK7YkWs2sk5Lft8+2GPEbNUvJkCKPA=
Subject key identifier: 2C:7C:E8:6D:29:DF:9B:4B:5B:DC:94:2D:D3:50:FD:AD:2C:3A:07:0C
Authority key identifier: D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6
Certificate issuer: /CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6
Certificate serial: 019EBE4794D180AAF9CC1144FB4A1B79EDEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
Manifest number: 120C
Signing time: Sat 13 Jun 2026 00:00:22 +0000
Manifest this update: Sat 13 Jun 2026 00:00:22 +0000
Manifest next update: Sun 14 Jun 2026 00:00:22 +0000
Files and hashes: 1: 0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl (hash: 6Nv3geJU8IAr2kQyiq2vAtP/APkFQvInX1q0q+7hpXs=)
2: 9gVKfPDu8oaxgCYhsIHGv4QIfWU.roa (hash: fllRN8SucuRDRWnVjdcisQzmvofCxZ5K6VMo5ZRY8Z0=)
3: YOp__Ry-NGpngn9AjDGoHEbjeCg.roa (hash: ON5r8fZJQGVj6wPi39Ya/7ATYu3d/0MWZ+FMIC4DzPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 00:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:47:94:d1:80:aa:f9:cc:11:44:fb:4a:1b:79:ed:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6
Validity
Not Before: Jun 13 00:00:22 2026 GMT
Not After : Jun 14 00:00:22 2026 GMT
Subject: CN=2c7ce86d29df9b4b5bdc942dd350fdad2c3a070c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:98:06:11:b2:ad:4e:a3:1a:3d:ca:41:27:b1:
58:bc:0d:4a:19:70:35:4b:6b:4f:c7:93:16:fe:32:
06:5f:79:40:f5:56:d3:fd:f2:72:49:72:c2:9e:3f:
73:41:0e:76:b9:00:1f:d1:0d:f1:bc:00:32:57:9c:
95:bc:67:03:55:94:13:66:d2:88:53:0c:c8:7d:0c:
3c:a2:82:93:a2:2a:bc:8f:da:35:71:03:37:bf:e2:
7e:bb:fe:69:f5:e8:a6:88:92:2c:2a:36:e1:f0:b5:
2f:4c:0d:9a:e7:a5:9d:17:c6:b4:2e:9c:4a:d2:12:
a8:98:66:9c:1c:d4:51:21:a1:6d:38:f6:92:3b:6c:
30:7a:68:8f:10:d7:38:97:84:4e:9b:38:c6:93:17:
af:9d:1c:b0:5a:38:56:88:74:ce:4a:72:79:b2:15:
34:3d:e1:b4:b4:f4:f5:2a:a3:0c:d9:ab:1c:58:24:
20:95:d7:c2:1d:6d:62:f3:39:a4:0f:de:92:80:37:
d7:46:1b:b2:54:7c:aa:a1:a9:6f:9a:a8:d5:9b:d3:
fd:d8:55:96:86:81:67:aa:29:f1:08:29:65:f4:5c:
79:10:64:2e:1f:ef:be:d0:84:b2:4f:e1:96:c8:53:
de:1c:f2:2b:c5:32:1e:24:e4:b0:f4:69:a0:a4:68:
12:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:7C:E8:6D:29:DF:9B:4B:5B:DC:94:2D:D3:50:FD:AD:2C:3A:07:0C
X509v3 Authority Key Identifier:
keyid:D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:44:44:ab:55:1d:7d:d6:60:2b:14:3f:6d:63:f0:a4:02:b8:
0f:39:e6:ad:60:03:c8:18:2c:be:da:0f:be:7f:02:86:79:be:
70:e3:3f:1e:97:f0:33:09:9e:18:29:db:78:cd:ea:e7:17:54:
82:44:54:30:0c:7a:af:c1:f1:9c:1a:d1:d4:1e:1f:0f:08:91:
73:1d:67:46:af:a3:a2:34:f2:07:ff:e7:fa:0f:29:29:48:d3:
44:f1:3a:17:b4:c3:3a:fe:a0:13:a5:30:5d:fb:1d:3c:d7:5e:
98:ef:bd:18:ee:30:d8:65:ed:e1:cc:ad:4f:8f:76:98:db:07:
da:aa:47:4b:d7:e1:ea:28:48:0c:59:45:b9:d4:b2:14:e2:17:
ed:3c:53:c9:84:35:16:ce:d3:8e:55:3c:28:69:1d:2e:fd:97:
dc:fb:d0:de:06:a7:f4:7e:24:da:9e:c6:3f:d2:95:23:50:39:
16:25:19:4c:1a:89:46:3b:4c:d9:a9:8c:b0:76:18:ea:f2:87:
be:87:77:94:56:8d:b5:ba:ae:7c:04:ba:83:47:98:10:c3:98:
55:c7:6b:6e:c4:f8:51:80:dc:18:5f:c2:bf:22:3e:14:99:26:
45:59:94:b3:6b:91:e6:49:c4:6c:e8:eb:3d:38:9e:a4:25:f4:
45:ff:41:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:57:01 2026 by rpki-client