Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
File: sO8ZvLI6LwTFhqwTEakbx8oql2U.mft (raw, json)
Hash identifier: 5EuAq4wT1B7geSsnYSGy4WC0vM5gbYv/sFrjlk5dxCA=
Subject key identifier: BD:C3:E3:84:DF:A7:87:D2:65:64:79:0E:CF:09:77:BD:BE:E3:D2:E0
Authority key identifier: B0:EF:19:BC:B2:3A:2F:04:C5:86:AC:13:11:A9:1B:C7:CA:2A:97:65
Certificate issuer: /CN=b0ef19bcb23a2f04c586ac1311a91bc7ca2a9765
Certificate serial: 019EC111B41EB3227DA1633DD6F5CFC33EF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
Manifest number: 0D4D
Signing time: Sat 13 Jun 2026 13:00:23 +0000
Manifest this update: Sat 13 Jun 2026 13:00:23 +0000
Manifest next update: Sun 14 Jun 2026 13:00:23 +0000
Files and hashes: 1: OG9V497FCoHNGnPc_DbNqTEvF0Q.roa (hash: KoQeTtNBbhDRzvLnCdWBbN4ahOwIByARYlxscPU0UV4=)
2: sO8ZvLI6LwTFhqwTEakbx8oql2U.crl (hash: KupLJOOWMLENbEjkjPp8CAYtrqAO0xFNnAkTeeAS0mU=)
3: wA59sXSCzQX_lnDI9OMnkp5P6yQ.roa (hash: 3unU8/VgG8FeuLF+n9dZ02OE5LTcBxSZEPgG5bjCfR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:11:b4:1e:b3:22:7d:a1:63:3d:d6:f5:cf:c3:3e:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0ef19bcb23a2f04c586ac1311a91bc7ca2a9765
Validity
Not Before: Jun 13 13:00:23 2026 GMT
Not After : Jun 14 13:00:23 2026 GMT
Subject: CN=bdc3e384dfa787d26564790ecf0977bdbee3d2e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:82:aa:83:d2:c7:a9:d2:81:57:ab:ec:bd:d4:
93:56:5f:be:f0:c2:67:9f:e6:63:00:9e:97:f3:a3:
ac:7f:00:4a:46:81:4d:88:03:04:c0:57:db:00:d4:
ee:16:9a:f5:eb:9e:9f:1f:25:07:7f:38:9a:15:ce:
bb:f0:c2:51:95:6d:81:9b:cf:57:12:1e:2f:c3:1d:
98:d1:3d:ae:d8:c1:4c:bb:8d:88:89:ff:78:6d:cb:
b5:65:60:de:75:34:0e:1d:e3:76:69:96:9b:cb:79:
77:bc:5f:87:c5:23:b3:ed:7b:57:ef:9a:81:e0:13:
93:47:ef:0b:78:1f:4d:dc:c4:89:10:1f:ff:c3:5d:
6f:bb:af:89:d2:fd:03:da:9c:cc:e4:30:76:81:cf:
da:51:8e:0f:af:59:f7:12:12:fa:91:b3:02:f9:3d:
39:80:9f:54:55:e2:93:18:93:c7:ad:be:29:23:86:
87:1c:65:c2:fc:14:3c:e6:9f:2b:8a:5d:d8:db:b6:
f4:1f:c4:3e:2a:d8:60:5a:f4:69:d3:90:5d:0f:60:
f6:7b:53:a2:c3:15:bf:a5:a9:21:d7:da:be:38:49:
a4:71:1f:c1:11:87:0a:c7:c0:73:96:92:d6:bf:32:
4e:08:c5:de:68:f3:7c:22:64:c1:7a:45:23:63:49:
e8:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:C3:E3:84:DF:A7:87:D2:65:64:79:0E:CF:09:77:BD:BE:E3:D2:E0
X509v3 Authority Key Identifier:
keyid:B0:EF:19:BC:B2:3A:2F:04:C5:86:AC:13:11:A9:1B:C7:CA:2A:97:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:ac:8c:4f:0e:ea:05:09:5f:69:25:89:d8:9b:22:0e:6b:e9:
b1:69:41:be:31:11:7c:66:24:15:6e:f8:fc:20:6c:62:f1:21:
d2:fe:bf:c8:d6:f6:9e:68:9e:7b:4d:c2:45:ec:5e:9c:10:f9:
32:6c:31:5a:86:4a:2f:01:89:e2:31:be:ef:ed:7e:aa:65:16:
db:55:ec:e3:4a:d7:79:e8:49:82:59:c8:be:aa:ec:29:fb:d9:
4f:18:18:5e:0a:bb:5a:83:ef:fc:45:d9:89:f0:85:1e:f0:f0:
fd:ff:36:8f:76:bf:4c:ee:85:b5:26:e2:62:17:bd:aa:95:15:
1c:82:c3:4d:6b:01:24:cd:7c:de:34:9e:42:b7:87:3e:5e:e7:
d4:15:44:1e:46:f5:91:94:9d:a9:e8:73:90:d2:5e:1e:69:13:
84:9d:a8:0f:a9:51:c7:38:b3:83:3a:6b:86:ff:74:6e:ce:b0:
c9:62:c6:9d:97:a8:b2:08:e7:d4:b3:33:0e:78:b8:94:93:f0:
0f:91:4f:a0:32:7b:ab:0f:b1:78:2d:7b:7d:09:c9:02:f5:19:
5d:89:0d:5d:22:51:1e:ee:57:c6:1a:c9:cd:56:67:39:ba:2d:
31:ca:bb:18:03:1b:c8:7a:15:19:6c:47:fc:d9:87:14:af:c0:
8f:7a:6d:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:59:58 2026 by rpki-client