Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
File: 2O6Q00LYZepn8rDS-3TAOfg-Skg.mft (raw, json)
Hash identifier: A4Fr0C6H2gv0ba7o4P4UBn1CKDhSyGLrufEuZ2hu2oo=
Subject key identifier: D9:70:4B:30:67:0F:21:66:F2:E4:90:96:5A:B3:A0:E4:53:19:76:52
Authority key identifier: D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48
Certificate issuer: /CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48
Certificate serial: 019EBE7FC543B764FACE89673091046A9191
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
Manifest number: 067C
Signing time: Sat 13 Jun 2026 01:01:44 +0000
Manifest this update: Sat 13 Jun 2026 01:01:44 +0000
Manifest next update: Sun 14 Jun 2026 01:01:44 +0000
Files and hashes: 1: 2O6Q00LYZepn8rDS-3TAOfg-Skg.crl (hash: U1z1vhRaAVauWQp6VDlzJdUtjq7f+sNrm471zS51GsA=)
2: OExalT86I2jE92WcpxOz8v2EM5M.roa (hash: 4ql4+dXrno2rRd9rLsGdlFCa1N0RlG63lEsTRJIQb8w=)
3: jkJ-dpXyGf9S_poPiFsD4kU6mb4.roa (hash: cQtWmc7dZO030WCUTKzMCSngnAwQZjveS+i9Nuw4lVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:7f:c5:43:b7:64:fa:ce:89:67:30:91:04:6a:91:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48
Validity
Not Before: Jun 13 01:01:44 2026 GMT
Not After : Jun 14 01:01:44 2026 GMT
Subject: CN=d9704b30670f2166f2e490965ab3a0e453197652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4d:8b:99:23:73:20:cb:8d:47:cf:ea:d1:0d:
79:f0:30:05:f6:61:f7:d4:39:cd:a6:8f:5c:e1:74:
01:6e:38:71:1c:76:2f:3d:66:ac:02:a7:2e:bd:8c:
0d:c5:ee:a1:45:9c:cd:2f:04:ed:dd:9d:fd:a2:a4:
ae:fb:dd:e7:a9:2f:1b:2d:87:e3:92:c7:4b:e3:c3:
f5:15:e1:1b:5b:ee:c7:5e:5b:b1:4d:82:07:94:d9:
8c:02:a8:bf:0f:09:f4:80:78:bc:ff:c5:4d:f4:b8:
6f:94:41:4e:b8:13:e9:37:7d:83:7c:c0:6c:d5:da:
84:45:6e:55:c7:fb:2b:88:1d:73:fe:ef:d3:b0:88:
1d:55:83:0d:ca:84:37:a0:b2:8a:ab:24:ab:23:4a:
88:ea:c8:51:20:bd:86:b4:c6:b3:dd:43:db:2e:6f:
56:a5:7d:49:85:90:26:20:c3:74:66:4e:b5:26:78:
23:f9:c3:2d:6e:5b:b9:59:32:da:59:0b:43:cd:66:
07:d9:11:9c:76:05:20:a6:0c:fa:71:53:fc:9c:72:
94:ac:44:73:f2:11:f8:bf:e6:c9:71:0f:86:cb:b6:
9e:21:72:d1:f7:c7:37:a9:67:de:ee:bb:fd:b5:ca:
6e:84:36:e9:65:80:3d:32:14:9a:90:09:44:37:ec:
7d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:70:4B:30:67:0F:21:66:F2:E4:90:96:5A:B3:A0:E4:53:19:76:52
X509v3 Authority Key Identifier:
keyid:D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:92:bc:e6:bf:a6:99:d4:14:7c:54:b6:91:a1:95:81:34:9d:
9a:d0:44:99:a7:ad:a2:7a:b5:c0:24:a3:96:5e:59:b0:da:cd:
71:e9:f0:7f:a7:c0:1b:bc:3b:ac:e0:dd:f1:cd:24:d2:1c:51:
aa:eb:f0:93:82:60:cd:ca:3a:da:71:e1:49:89:bf:d1:81:6f:
f3:ea:8e:b6:21:da:84:5e:95:74:9a:d7:7a:6f:4c:35:35:04:
71:04:d8:48:ce:e0:e0:72:97:93:e4:fb:1e:b1:82:05:5b:17:
8e:32:67:59:84:b6:76:72:8a:09:aa:28:a4:39:b4:53:ee:92:
b7:88:f3:94:8b:78:11:5c:9f:13:81:f9:05:f6:70:8c:4e:76:
81:e4:74:f0:36:9a:ea:38:9d:bd:2a:02:62:a5:a6:64:30:ca:
af:27:44:ff:55:ea:cb:07:1d:4e:f4:6f:60:bb:46:80:14:4a:
5a:54:29:ef:d7:c5:3f:37:15:ad:3b:43:cf:87:1b:16:3d:16:
03:07:37:e4:46:6d:4d:46:b5:18:ca:d0:d1:d5:15:8e:b4:dc:
1c:c0:27:bb:38:e2:12:66:47:04:cd:bb:65:27:8f:dd:ed:6e:
20:0f:5c:33:d2:28:ba:72:fb:1d:74:09:9b:3c:2b:01:ce:ec:
f6:1c:36:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:34:32 2026 by rpki-client