Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
File: DkOg3wWaUlGkALWh8TIboA0xINI.mft (raw, json)
Hash identifier: QrV7T5Ql4DHO7od3/Q7b20p80x+HGmkNdZQc91XO9ZM=
Subject key identifier: 7E:D0:F9:26:54:00:FE:59:13:42:EF:D1:A4:FF:0A:CD:06:95:9A:6B
Authority key identifier: 0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
Certificate issuer: /CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Certificate serial: 019EBE483676C8A0AF0074848942EBCD6F5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
Manifest number: 195B
Signing time: Sat 13 Jun 2026 00:01:04 +0000
Manifest this update: Sat 13 Jun 2026 00:01:04 +0000
Manifest next update: Sun 14 Jun 2026 00:01:04 +0000
Files and hashes: 1: 4dMXi4_OZ1hIYb5lfSEix8dXAV4.roa (hash: pso0l4AjjbTbnTQh+xQFS2oQ9IVZGMVy1LttU/eMjhU=)
2: DkOg3wWaUlGkALWh8TIboA0xINI.crl (hash: DxmGHD6b2Xud5rBLy8fTadXDXdaQyVgXXpMM5Z4pSos=)
3: X5rHphgjA2Ovs-Yct52WJKfW_k8.roa (hash: fS9NXooFPX4VLQ4SoiMsokXMu0rmiVlmUkYsHNO+cLI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 00:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:48:36:76:c8:a0:af:00:74:84:89:42:eb:cd:6f:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Validity
Not Before: Jun 13 00:01:04 2026 GMT
Not After : Jun 14 00:01:04 2026 GMT
Subject: CN=7ed0f9265400fe591342efd1a4ff0acd06959a6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0d:32:dc:01:0e:66:20:d0:6b:fd:68:c0:3e:
e1:b3:bd:11:8f:b8:8e:22:15:9b:98:ae:70:6a:e0:
e8:0f:09:50:c6:ac:fd:93:cb:4b:db:dc:7f:5b:a1:
4f:43:d3:8a:4d:6d:83:5f:43:dc:a6:bc:71:6d:ec:
0b:ca:b4:2f:8d:72:12:d8:da:e2:2e:7d:fd:ea:27:
01:7c:b8:05:6f:70:7e:13:b6:36:bf:2a:45:c1:d1:
fe:52:73:6d:d8:e8:46:7a:5f:23:df:ff:06:1f:8f:
a7:42:c1:cd:93:ad:6a:9f:99:1e:92:8e:10:e5:86:
74:a3:4a:ae:22:0e:6f:84:6d:69:be:7f:9a:39:c7:
8d:56:e7:a4:c3:0f:27:44:54:f7:5b:1c:c4:1c:22:
f8:2f:8c:ef:de:83:85:b5:a1:2d:bc:71:f6:1e:e5:
fe:ce:1b:ad:6b:8b:cb:c5:ce:ae:4c:10:43:0d:d0:
6f:96:99:90:a8:39:2c:89:85:8b:fa:8e:ad:a5:54:
7c:9d:5f:45:79:2b:bf:c4:3d:5e:51:c4:b3:5f:68:
cf:96:57:cb:91:a7:7f:a2:98:1b:18:a0:12:64:35:
35:5e:9f:ed:d0:8a:d6:a9:4d:fd:94:e0:61:40:9e:
f6:d2:91:e2:82:da:5d:b1:c7:73:a4:ec:cb:bc:e7:
1b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:D0:F9:26:54:00:FE:59:13:42:EF:D1:A4:FF:0A:CD:06:95:9A:6B
X509v3 Authority Key Identifier:
keyid:0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:2e:c3:a7:ae:40:e2:d1:78:a0:73:09:6c:37:98:8f:1a:04:
a4:79:66:af:a9:5c:5a:bb:78:f6:aa:d3:1e:44:22:0a:d7:22:
b0:3c:3f:84:eb:ae:71:e2:fc:be:a0:44:d6:05:f7:8a:97:4e:
dc:24:2c:34:c6:7c:01:8f:08:af:25:e0:5e:6e:fd:b4:dd:2d:
e5:36:09:9b:90:c6:b9:7e:16:18:76:dc:54:be:bf:df:5a:f9:
3c:ef:79:81:e4:3c:61:24:b6:4c:82:63:02:82:87:3a:73:18:
4e:8a:5d:77:24:44:7b:d2:53:46:81:44:8a:f0:0b:f1:4b:00:
f4:94:86:76:04:9c:93:ee:8d:69:4f:79:f3:99:4d:e2:ca:68:
96:12:08:f5:14:1b:4b:0a:e5:c2:39:03:54:78:7e:be:1e:22:
0d:82:2e:f2:ad:39:1c:5a:8b:04:1a:50:e3:6a:e6:97:f1:f9:
a6:7b:b3:65:be:e6:33:24:b5:15:dc:a5:71:b6:f4:54:bf:d6:
b7:0d:37:bc:0e:6b:18:aa:71:55:ab:7f:6c:99:fb:3a:0e:96:
1a:a7:fc:fd:66:d3:01:ce:7e:17:f0:a5:8a:60:2b:e4:0f:55:
0b:2c:09:cd:0e:bf:8f:34:4a:be:b1:9b:59:5f:5f:3d:e4:ca:
d6:90:64:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:13:13 2026 by rpki-client