Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
File: o8lj0aEdANOEre35u4blOEmpsYw.mft (raw, json)
Hash identifier: ZOOQpKyNQIFNCb5XJ9234mCqHUJ2v1uORnDtwr+zm3I=
Subject key identifier: 23:84:72:AE:FC:42:98:43:51:98:D3:C1:AF:F6:49:C7:DE:76:10:1C
Authority key identifier: A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C
Certificate issuer: /CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c
Certificate serial: 019EBF23F0E87893F229077029EF12FC7622
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
Manifest number: 195D
Signing time: Sat 13 Jun 2026 04:01:04 +0000
Manifest this update: Sat 13 Jun 2026 04:01:04 +0000
Manifest next update: Sun 14 Jun 2026 04:01:04 +0000
Files and hashes: 1: o8lj0aEdANOEre35u4blOEmpsYw.crl (hash: y1kuiyJrIGaoscMz5sJ5fL/Z2q8d5gX+9PIY72peI0M=)
2: sbWj3cDEvspo2pzFM90qmBN7XGY.roa (hash: ZCuFftw5Wl2QKtDaCFVmcabJrAkBRibR6g/1SyLs2gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 04:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:23:f0:e8:78:93:f2:29:07:70:29:ef:12:fc:76:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c
Validity
Not Before: Jun 13 04:01:04 2026 GMT
Not After : Jun 14 04:01:04 2026 GMT
Subject: CN=238472aefc4298435198d3c1aff649c7de76101c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2a:c2:e7:f6:0b:ef:26:11:cd:a7:37:f5:b4:
ff:46:6b:ae:73:7c:aa:c1:0e:dc:07:13:62:b3:8a:
60:96:30:3f:31:81:ed:53:59:b3:02:96:1d:52:ee:
d8:ba:72:8a:00:da:43:02:fa:da:8b:78:05:e2:73:
f3:15:7e:4f:d9:c8:92:58:a0:89:7f:2b:77:e6:42:
ca:38:8c:b3:5e:13:02:51:d0:d8:77:4e:ba:73:44:
1e:dd:6d:27:3b:48:c6:b0:5d:69:8f:0a:f8:4e:4b:
3a:16:22:2d:5e:87:4b:fa:e2:00:a4:f1:19:36:b1:
8b:0c:51:54:c7:d9:df:bc:25:75:33:1c:1b:15:9e:
aa:39:c7:94:c6:a1:f7:ca:95:bd:d2:77:53:d5:a7:
8a:a8:5a:0d:b9:c7:35:29:57:56:66:f4:56:5c:ff:
b8:43:bc:88:a9:18:ac:1f:ce:72:58:71:be:85:ed:
73:61:6a:f5:ba:14:cb:aa:b7:53:84:70:7d:9b:76:
d2:f8:32:ef:0a:be:4f:c8:85:cf:11:b3:af:74:a6:
80:20:b8:bc:13:06:88:9e:9d:59:8e:09:41:e5:b7:
dc:86:79:46:e8:4c:2f:9c:2e:e2:61:fb:ca:56:f9:
88:1f:26:7f:91:48:1d:e1:cc:61:6a:04:02:f3:23:
02:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:84:72:AE:FC:42:98:43:51:98:D3:C1:AF:F6:49:C7:DE:76:10:1C
X509v3 Authority Key Identifier:
keyid:A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:2d:a5:4a:e6:8a:0d:65:81:44:35:1b:b6:d8:30:f7:2f:e7:
e3:f4:5d:05:80:bd:25:b2:53:e8:60:75:ed:6c:cd:cb:29:ae:
b8:fd:f4:18:e8:38:c8:dc:05:13:07:8d:f3:5b:55:82:c9:db:
70:bb:ce:ef:90:ab:fe:9a:bc:14:72:69:c9:57:75:36:87:d6:
33:b0:f2:67:51:da:af:ee:a7:62:d9:f1:0e:1a:cb:24:db:47:
e9:29:97:c7:a0:ee:1a:4e:88:be:a4:e3:3c:5c:4d:a7:4d:45:
3a:6a:3c:46:44:c0:4d:4e:6a:03:78:a8:d5:a6:08:74:5a:e5:
46:58:b2:2e:e9:db:45:c1:34:1e:6c:cb:ec:8c:17:09:2e:14:
04:e4:83:fc:36:1e:d3:a4:f0:09:ef:f1:c8:9b:a3:19:81:2a:
bb:49:7c:69:aa:c3:63:27:d8:2a:ed:14:9f:f0:2e:cb:3f:81:
a5:55:c6:2d:eb:2c:74:36:ee:a7:55:16:3b:1a:29:d4:34:02:
35:ab:9a:9c:b9:e4:25:fb:0c:8c:19:3f:b7:f9:c8:39:0b:37:
2e:18:a9:2a:5d:2f:bf:50:86:80:bc:09:7a:80:22:3b:44:af:
29:a8:ce:50:6f:3d:9d:36:31:82:99:00:82:52:b0:be:30:fc:
fe:a1:21:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:21:29 2026 by rpki-client