Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
File: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft (raw, json)
Hash identifier: AQG2JGnyLw/COw7t+LAkOJbngwSoOOaGIQkzu9gnZYQ=
Subject key identifier: 31:EB:A2:C8:64:16:5E:4A:9F:EE:54:C9:89:80:38:EA:DA:3D:DD:B4
Authority key identifier: D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
Certificate issuer: /CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Certificate serial: 019EBDA302AC6764C86B241A88FD40807899
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
Manifest number: 1957
Signing time: Fri 12 Jun 2026 21:00:37 +0000
Manifest this update: Fri 12 Jun 2026 21:00:37 +0000
Manifest next update: Sat 13 Jun 2026 21:00:37 +0000
Files and hashes: 1: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl (hash: w4xb8b7T7ogfIP/Dx2FNScV1BcxEfa7TDbZODc/Tz/I=)
2: qB-yYmmoZAETKywXU4O90SMz9p4.roa (hash: zSfrh0GvpLorIoRjiLIdctGLnu0vrYxfcdrku/RI+Pw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 21:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bd:a3:02:ac:67:64:c8:6b:24:1a:88:fd:40:80:78:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Validity
Not Before: Jun 12 21:00:37 2026 GMT
Not After : Jun 13 21:00:37 2026 GMT
Subject: CN=31eba2c864165e4a9fee54c9898038eada3dddb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e2:e4:31:71:0d:db:0c:c3:39:fa:1c:8a:dd:
32:c4:12:ac:84:b5:d0:2d:20:48:b1:c3:a3:b4:e6:
23:15:f0:b5:3d:98:9b:54:a3:dd:de:47:59:17:60:
a8:b9:e3:d3:3a:0c:c5:96:ac:26:93:84:c1:f1:24:
03:c7:ad:2a:ed:dc:1a:38:1a:01:28:b8:9e:d3:41:
ca:6f:73:18:fb:6a:4e:67:ae:21:23:b6:11:aa:ff:
8a:09:55:4d:66:f9:c9:b0:45:1b:5e:35:01:d6:fc:
73:c8:4b:1b:b6:04:c1:b7:61:3d:d8:7c:68:68:de:
fd:4e:ea:8d:c1:69:34:58:b9:44:84:1d:07:01:b7:
c9:f3:58:86:2c:65:d9:d9:2b:fd:94:e7:bb:81:72:
96:c7:e2:96:7f:a0:ea:e1:7e:a7:45:f9:9c:4c:f6:
8f:22:cb:5f:25:81:b0:fb:71:aa:43:14:05:ac:27:
2c:fc:9f:fd:a5:9f:9e:a9:43:5f:fb:a3:e3:ef:5c:
b3:55:3f:c6:fc:a3:bb:42:5d:25:05:6a:d3:44:35:
dc:89:27:da:28:db:0e:f6:eb:43:b2:d1:4c:85:0d:
20:10:73:59:a6:3c:6c:94:d7:21:64:ce:9a:5f:dc:
31:10:bf:f6:c1:64:15:7f:a2:e5:cb:e4:51:5b:f7:
6c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:EB:A2:C8:64:16:5E:4A:9F:EE:54:C9:89:80:38:EA:DA:3D:DD:B4
X509v3 Authority Key Identifier:
keyid:D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:50:b9:3f:43:cb:46:d3:7b:1c:49:5a:c7:a8:ed:fc:48:b3:
d7:76:82:2c:55:af:86:76:4e:b0:40:75:0a:54:9f:42:bc:58:
fc:bd:89:94:e0:8e:98:39:2f:45:c3:30:3e:95:d5:2b:a7:a0:
39:b2:df:5d:72:9c:2a:6a:f4:2f:c8:35:6f:4b:4b:a8:41:d2:
e0:bb:e7:40:69:1f:16:aa:15:ca:02:00:ff:53:a0:b1:54:9d:
13:a2:2f:a5:c1:d7:de:fd:73:f0:cb:32:78:8c:da:48:98:cb:
6b:b9:08:0f:ba:39:02:04:ae:90:83:bd:f6:9f:18:48:86:08:
2a:9f:88:5b:41:ce:39:82:3f:0b:29:fb:d6:42:52:c8:e2:2c:
0a:d6:c6:0c:a9:bf:17:79:e5:9c:45:be:ac:9e:e5:5c:c9:7d:
2f:c9:05:c1:5a:46:e8:e9:33:1a:4d:0b:7c:d4:82:fd:f4:c0:
4a:cb:fb:6a:c9:34:7f:f9:96:3b:48:8c:14:ec:fa:96:cd:4c:
58:5e:ea:cb:21:0f:02:d3:5c:0e:7f:65:75:ea:01:93:c9:b4:
8e:e8:7f:c5:f7:04:54:a1:69:c1:a0:bd:40:ed:f8:99:c6:05:
ef:2e:5f:2f:b3:f3:e7:33:f3:fd:7e:f1:6d:55:50:14:d7:76:
42:af:24:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:24:05 2026 by rpki-client