Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
File: 2O6Q00LYZepn8rDS-3TAOfg-Skg.mft (raw, json)
Hash identifier: OTEPwe8TZrFdXn+1yXMGn1lkwlCufLCjdpYAOa5HK/E=
Subject key identifier: FE:E9:6D:E0:B5:A2:AC:7F:2A:C6:7A:EE:FE:CE:79:C8:CA:96:63:C2
Authority key identifier: D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48
Certificate issuer: /CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48
Certificate serial: 019CAD5A620DA6644371A2D1EE481DE243EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
Manifest number: 056A
Signing time: Mon 02 Mar 2026 07:01:47 +0000
Manifest this update: Mon 02 Mar 2026 07:01:47 +0000
Manifest next update: Tue 03 Mar 2026 07:01:47 +0000
Files and hashes: 1: 2O6Q00LYZepn8rDS-3TAOfg-Skg.crl (hash: 1YRJgnmUYdA4o83mq0Lqhlh+hEkjzrxYUZcZJKK2sl8=)
2: OExalT86I2jE92WcpxOz8v2EM5M.roa (hash: 4ql4+dXrno2rRd9rLsGdlFCa1N0RlG63lEsTRJIQb8w=)
3: jkJ-dpXyGf9S_poPiFsD4kU6mb4.roa (hash: cQtWmc7dZO030WCUTKzMCSngnAwQZjveS+i9Nuw4lVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:5a:62:0d:a6:64:43:71:a2:d1:ee:48:1d:e2:43:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48
Validity
Not Before: Mar 2 07:01:47 2026 GMT
Not After : Mar 3 07:01:47 2026 GMT
Subject: CN=fee96de0b5a2ac7f2ac67aeefece79c8ca9663c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ef:a8:ab:87:c1:0f:cf:98:fa:e9:c7:61:3f:
a5:83:df:c0:21:31:48:01:fa:67:3b:f0:18:b7:b0:
e8:1c:d4:3b:cb:8d:99:6c:e9:76:2a:17:d4:8c:c5:
38:8f:d6:3c:5d:03:c2:c7:28:7b:3e:e2:b1:31:ca:
a3:c1:e5:ee:90:25:4a:31:a8:1b:b7:dc:cf:5d:df:
ca:98:22:47:42:0a:ec:da:96:c5:aa:db:3a:2d:1d:
fa:e8:5a:0e:75:55:7c:bc:52:5c:74:e5:34:c2:ac:
bd:ce:9f:f4:bb:21:d3:c0:d3:5a:bf:bf:59:3d:85:
ba:fb:54:ce:ac:bb:9f:02:e6:74:24:5d:e8:2d:96:
24:2c:50:3d:c0:fd:6e:28:46:1e:de:a5:82:00:10:
83:dc:ee:c6:85:e4:87:1e:f5:97:31:59:07:65:19:
3b:de:be:0c:b9:fd:bf:16:ed:ec:89:b2:f5:9f:b8:
0a:1a:01:76:89:6f:14:88:e0:ac:e1:43:cf:db:60:
8b:99:87:fb:ce:ac:8c:6e:83:79:41:0d:46:4f:74:
e9:2a:93:f3:44:01:ea:1b:7c:b2:22:ec:b1:06:fc:
e1:76:2c:35:20:88:ae:e0:af:49:c5:b9:08:d5:22:
af:eb:86:6b:b7:66:1c:27:af:e9:dd:ca:29:e3:5c:
3c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:E9:6D:E0:B5:A2:AC:7F:2A:C6:7A:EE:FE:CE:79:C8:CA:96:63:C2
X509v3 Authority Key Identifier:
keyid:D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e0:3b:e2:ee:e7:b9:25:f1:05:69:13:aa:d6:71:5f:7e:30:25:
4b:3a:57:4a:ba:9a:c4:3e:82:44:d8:7a:c3:6a:39:f4:0b:45:
4b:26:dc:0d:96:b5:2d:f0:9b:3c:ed:00:73:51:5b:9f:20:4e:
08:7d:0f:5c:a5:b2:ea:9c:2e:6c:f0:bc:19:e8:96:59:35:44:
4a:33:96:73:a8:bf:aa:79:de:a5:9d:a0:f4:b0:fe:34:a1:cd:
3b:37:34:14:e4:e2:cb:e9:aa:12:03:f7:cd:ac:37:3e:0e:63:
ce:fe:25:c6:ac:d8:2c:de:f4:02:10:0b:49:6c:9e:e5:f7:55:
2a:27:8e:84:df:f5:c2:00:f7:3d:7e:c3:ee:70:23:d6:f1:81:
df:9c:ab:1f:1e:50:1a:9c:00:59:b8:52:db:0f:e8:5b:9c:99:
da:5d:83:80:6d:e7:5e:d1:ba:e5:4c:97:c5:38:ff:90:8a:a5:
ab:68:fa:08:e8:a7:a0:5a:56:f4:2e:b2:2e:db:c0:cc:c6:4f:
e9:a6:0a:a1:33:e4:55:45:bb:5d:de:24:99:9a:0a:8d:8e:b2:
6e:74:dc:f7:f4:b0:f5:ec:b9:5a:c3:5d:f8:69:e6:32:45:0d:
ee:60:71:61:1a:d3:f7:7b:f4:44:49:da:2b:41:f6:d3:b7:f1:
66:a1:30:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:24:38 2026 by rpki-client