Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.mft
File: 2OtznG09xxpiBsjzcSQm_1MqCv4.mft (raw, json)
Hash identifier: owqIiSXm0PR1bX+uZM7AuvE2QQ7HY4xH0Ym3gSiyr0Q=
Subject key identifier: 67:13:C0:FA:73:FB:EA:3B:E7:43:9E:6C:25:60:9C:C4:4B:84:4A:06
Authority key identifier: D8:EB:73:9C:6D:3D:C7:1A:62:06:C8:F3:71:24:26:FF:53:2A:0A:FE
Certificate issuer: /CN=d8eb739c6d3dc71a6206c8f3712426ff532a0afe
Certificate serial: 019EC225304B1FCAC3F826146800E95774A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2OtznG09xxpiBsjzcSQm_1MqCv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.mft
Manifest number: 02CB
Signing time: Sat 13 Jun 2026 18:01:17 +0000
Manifest this update: Sat 13 Jun 2026 18:01:17 +0000
Manifest next update: Sun 14 Jun 2026 18:01:17 +0000
Files and hashes: 1: 2OtznG09xxpiBsjzcSQm_1MqCv4.crl (hash: g24FEXzdZzt+xxw9sQBDp1anAW6iGvwrVD8DivdOSj0=)
2: R5Mpv-TpKjDBFOnu2VvpT48qfkY.roa (hash: 4BhY6rNGdaN8G7ZNz8xS2aBWkhA6dXSAvcpryese42E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2OtznG09xxpiBsjzcSQm_1MqCv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:25:30:4b:1f:ca:c3:f8:26:14:68:00:e9:57:74:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8eb739c6d3dc71a6206c8f3712426ff532a0afe
Validity
Not Before: Jun 13 18:01:17 2026 GMT
Not After : Jun 14 18:01:17 2026 GMT
Subject: CN=6713c0fa73fbea3be7439e6c25609cc44b844a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e3:6e:5b:f7:84:0e:56:d6:79:09:6c:97:52:
7b:42:c3:03:af:36:25:04:ab:f0:d9:16:0b:fa:1f:
5b:b0:7f:27:10:01:83:d8:57:a4:f5:11:dd:a8:c3:
17:30:6f:46:32:77:d5:5c:a8:d3:a9:7e:46:70:72:
78:ff:03:6b:90:52:21:93:c9:e6:da:0f:e6:03:b4:
20:d9:a3:9f:f7:18:b3:0a:17:8b:9a:d7:0c:95:50:
79:f2:5d:63:ea:ca:9d:d4:a7:73:02:e6:b2:ac:17:
53:71:0f:31:0b:9c:9a:cf:31:a6:7d:72:90:41:fd:
ff:ec:90:ee:01:d2:b7:db:aa:dd:c6:86:00:39:c9:
ae:e3:17:82:a0:f0:22:ca:2b:ff:c6:17:bf:bc:ab:
f0:64:ea:85:02:b3:53:00:1e:46:d5:19:4d:c0:a1:
d2:4a:1f:9f:ca:c4:8b:4e:eb:d6:5a:a9:40:53:74:
41:6b:4a:e1:5d:1f:db:ed:6e:8a:c6:7e:4e:0b:3e:
fb:e5:76:bf:82:7b:3d:29:79:d0:79:0f:0d:1e:49:
5e:90:9a:9a:93:3c:51:46:bf:87:af:d3:2c:4c:1c:
e8:01:63:51:dc:04:83:cc:98:59:8e:74:19:18:45:
8f:11:12:16:9a:cc:6f:48:5a:2a:69:ce:5d:e9:a6:
42:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:13:C0:FA:73:FB:EA:3B:E7:43:9E:6C:25:60:9C:C4:4B:84:4A:06
X509v3 Authority Key Identifier:
keyid:D8:EB:73:9C:6D:3D:C7:1A:62:06:C8:F3:71:24:26:FF:53:2A:0A:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2OtznG09xxpiBsjzcSQm_1MqCv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:73:9f:1b:7c:85:2c:0e:d2:8c:2e:e8:ad:6d:aa:56:fb:6a:
09:d0:f3:6f:c4:23:a1:2f:2e:b5:41:92:8b:2d:96:de:0c:2f:
71:d8:d3:f1:f6:a3:dd:da:51:b6:06:33:20:b9:a7:29:77:f2:
0c:2f:2a:c9:f8:e9:1d:c7:26:8e:62:8e:00:08:4b:2f:73:1f:
b6:a9:db:b1:2b:9b:60:51:cd:a4:90:9a:f0:20:0d:3c:50:e4:
75:e3:33:7c:87:cd:44:49:6c:47:dd:6a:df:5b:cf:25:1a:7b:
ef:c1:1d:1d:88:99:5b:88:15:a1:36:f8:a8:48:fb:bd:2a:c8:
e7:9d:d4:28:e9:99:29:71:9e:bf:39:b9:5a:43:2e:97:73:50:
cf:06:90:0c:71:9e:7a:18:d1:67:d3:68:14:f9:f8:ac:36:8c:
f4:b7:80:de:79:47:d9:8c:72:a9:96:d1:87:b0:73:4d:6d:24:
74:de:47:84:5a:f7:fe:72:27:85:fb:29:b1:b7:a1:5d:76:33:
70:a3:cd:43:a6:d3:4d:bf:e6:dc:24:1d:cf:f7:a5:25:63:a5:
3e:06:fc:21:05:74:d9:bc:26:2d:b0:a1:05:66:ff:27:1b:71:
96:1e:54:da:ac:cb:a2:d1:ca:b3:7c:de:4d:4d:62:5c:63:a8:
1d:17:f6:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 02:53:28 2026 by rpki-client