Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
File: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft (raw, json)
Hash identifier: I7rPrfwJJ1XCb9LqMFqtGasM1K/0RNO8zRyRZkBwsrE=
Subject key identifier: F2:41:8A:0E:28:0E:CD:9B:04:20:67:C4:C9:CA:54:76:0D:E0:5B:A7
Authority key identifier: D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
Certificate issuer: /CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Certificate serial: 019EBF913B471D6DED50B8D3EC966165FEEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
Manifest number: 1958
Signing time: Sat 13 Jun 2026 06:00:26 +0000
Manifest this update: Sat 13 Jun 2026 06:00:26 +0000
Manifest next update: Sun 14 Jun 2026 06:00:26 +0000
Files and hashes: 1: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl (hash: 5AELrmm39F3AXrUOr8Neim1dlpnQWWyn0KOwEC9mEV0=)
2: qB-yYmmoZAETKywXU4O90SMz9p4.roa (hash: zSfrh0GvpLorIoRjiLIdctGLnu0vrYxfcdrku/RI+Pw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:91:3b:47:1d:6d:ed:50:b8:d3:ec:96:61:65:fe:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Validity
Not Before: Jun 13 06:00:26 2026 GMT
Not After : Jun 14 06:00:26 2026 GMT
Subject: CN=f2418a0e280ecd9b042067c4c9ca54760de05ba7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8d:7b:eb:44:00:83:b3:b6:84:4a:f6:5c:83:
61:ae:42:a5:48:7b:ea:db:4a:7a:59:e6:9e:1f:71:
75:60:f8:d8:6a:7d:9f:cb:ca:9a:4b:51:99:4e:e0:
36:d3:30:01:28:75:32:59:8e:fd:b2:d4:71:6b:79:
8b:84:68:6a:a2:18:fb:29:9e:c0:97:a2:68:20:a2:
f8:75:68:24:bf:c9:d3:92:ab:d9:c6:e3:0b:18:e4:
b2:c0:14:7f:10:d6:eb:32:bf:0c:e4:ec:86:1d:18:
c8:d8:58:82:a7:0a:68:14:61:a7:5e:8a:a8:68:e0:
a7:a7:d3:5d:83:6b:c0:5e:97:a7:58:d2:ed:d8:31:
e1:44:a0:12:82:5e:6c:5b:38:85:ff:9e:d1:1d:70:
f5:d0:b1:c6:27:cd:b9:75:45:7a:07:06:b7:43:ec:
f6:f9:a0:de:bd:1e:14:a9:fb:45:ab:16:12:74:67:
a5:cc:5c:f1:cd:59:e1:f6:62:7a:b7:48:2f:7f:14:
d9:6e:14:e4:2a:12:df:a0:53:8b:c6:a8:87:b0:21:
1d:9b:36:49:01:79:7f:71:a0:36:2a:d0:c6:eb:a3:
06:2b:cb:4a:a7:b0:01:45:91:62:7a:65:48:6e:cb:
f8:eb:02:bd:a5:f1:d4:a1:35:11:cb:b0:36:25:a5:
b2:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:41:8A:0E:28:0E:CD:9B:04:20:67:C4:C9:CA:54:76:0D:E0:5B:A7
X509v3 Authority Key Identifier:
keyid:D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:85:53:26:99:fb:d1:03:c2:69:02:e9:6e:60:56:d8:b9:44:
25:21:3a:65:ab:b7:54:41:1e:0f:ad:27:3a:47:61:83:e0:1f:
5c:39:52:dc:1d:87:e4:32:18:68:df:39:ae:47:3e:bf:b6:0f:
08:70:96:fc:1e:53:c8:c1:8f:aa:64:dd:dd:37:25:2e:d9:95:
91:bb:4e:b0:36:e5:20:af:61:18:b6:90:d4:f7:ca:67:52:7b:
5a:0b:7b:64:b9:3f:65:80:72:5a:d8:7b:7c:de:e4:1e:4c:de:
9d:bb:c9:57:5f:fb:72:16:c6:57:31:1c:5e:d2:1d:5a:33:5f:
94:3a:70:6d:cd:ab:82:17:94:ba:0c:fd:76:ce:60:8b:95:2b:
84:15:2d:e2:ff:06:e9:09:40:d6:1e:2f:6e:e0:e6:59:37:51:
eb:b0:a1:21:13:98:b7:a2:e1:b5:6b:87:47:2b:4e:91:ae:8d:
da:2f:1e:5a:26:95:ff:c3:bd:fe:4a:94:e0:e8:27:90:85:13:
ea:86:bb:11:e7:69:24:6f:fd:56:01:6c:6e:92:15:16:11:88:
42:d3:8c:39:e4:f7:95:fe:14:70:f0:a4:75:5e:48:4b:9e:c1:
0e:20:38:8c:01:ec:87:04:53:3d:42:f0:9b:a6:b6:27:90:fb:
b2:55:87:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:34:10 2026 by rpki-client