Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.mft
File: o52_aHirAKRS-LB_iQ06s0g3Yns.mft (raw, json)
Hash identifier: gBtBkjr+KxRWAkUBRqW2yDHyKjf4JZr+oDO23XqXEjM=
Subject key identifier: 39:00:E0:B0:1A:BA:75:11:84:B8:5E:7C:7B:28:94:8D:A8:17:D0:3F
Authority key identifier: A3:9D:BF:68:78:AB:00:A4:52:F8:B0:7F:89:0D:3A:B3:48:37:62:7B
Certificate issuer: /CN=a39dbf6878ab00a452f8b07f890d3ab34837627b
Certificate serial: 019EC0DB82C825622A2E1C5B1A6E9DD4D9E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o52_aHirAKRS-LB_iQ06s0g3Yns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.mft
Manifest number: 081E
Signing time: Sat 13 Jun 2026 12:01:11 +0000
Manifest this update: Sat 13 Jun 2026 12:01:11 +0000
Manifest next update: Sun 14 Jun 2026 12:01:11 +0000
Files and hashes: 1: irICw9k54gxIc6MwAFiIdqi5VAM.roa (hash: cVexCvCqPHrx0mmIhLbiS62tGFKhVl04e+CAM0DmAGQ=)
2: o52_aHirAKRS-LB_iQ06s0g3Yns.crl (hash: Nad5As28pd/8mX361qgNRaymItTEDqV3meSFhoxAuQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.mft
rsync://rpki.ripe.net/repository/DEFAULT/o52_aHirAKRS-LB_iQ06s0g3Yns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:db:82:c8:25:62:2a:2e:1c:5b:1a:6e:9d:d4:d9:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a39dbf6878ab00a452f8b07f890d3ab34837627b
Validity
Not Before: Jun 13 12:01:11 2026 GMT
Not After : Jun 14 12:01:11 2026 GMT
Subject: CN=3900e0b01aba751184b85e7c7b28948da817d03f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:85:81:c9:f4:34:ea:7d:33:8c:12:65:cf:c2:
cf:0a:08:08:fb:b7:1e:22:8d:99:da:30:a2:5f:01:
3c:bd:d5:58:71:5c:0c:f4:70:a7:05:95:76:c8:a2:
34:cb:f8:0b:9c:30:c7:0b:8f:8b:dd:68:ba:69:52:
fc:11:3f:69:04:88:c8:20:76:1b:ec:c2:7b:63:9d:
bc:f5:8c:04:21:60:64:20:80:e4:ea:0b:b5:77:98:
b9:7e:73:b1:34:69:84:65:7e:a8:1a:5e:82:08:4e:
4e:dd:e0:ef:6d:60:eb:fa:92:cb:b7:9d:16:dd:f6:
54:29:b4:e9:c2:22:a3:f6:b0:3f:08:a6:86:bb:07:
f5:6e:d8:0f:30:11:04:81:4b:0d:02:9d:aa:ca:c2:
1e:24:a0:ca:92:63:79:43:e9:c8:b5:ae:a3:a2:a2:
36:3e:a2:d1:83:48:48:d2:e8:05:2e:b0:ab:f3:41:
c6:ee:18:8b:ef:3f:16:8e:fd:5a:90:4d:a2:de:0f:
e7:a5:30:c6:a6:c2:8d:2f:48:be:99:32:5f:ea:c3:
26:e0:b2:40:05:38:d0:68:fe:fb:fd:b7:86:41:63:
00:c4:14:dc:87:41:38:f3:0b:03:9c:bf:87:15:b8:
de:81:60:0e:46:da:98:23:7c:e1:c0:a1:c6:7b:4b:
40:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:00:E0:B0:1A:BA:75:11:84:B8:5E:7C:7B:28:94:8D:A8:17:D0:3F
X509v3 Authority Key Identifier:
keyid:A3:9D:BF:68:78:AB:00:A4:52:F8:B0:7F:89:0D:3A:B3:48:37:62:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o52_aHirAKRS-LB_iQ06s0g3Yns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:c5:9f:a1:12:2a:df:da:0d:d0:95:78:ab:fc:2a:b2:31:8c:
a7:1d:34:93:f0:4d:cb:d5:31:17:d3:93:a7:18:dd:57:42:17:
c8:63:b0:19:cb:f8:57:51:e5:37:68:e2:66:08:24:69:2e:d0:
6b:67:77:52:1e:c5:7b:fe:8f:91:99:02:e8:94:54:6f:75:d1:
93:41:46:36:59:57:8d:5f:79:6f:e2:cc:03:1f:dc:03:f3:be:
a9:4d:0e:ac:a6:a5:c8:c9:83:43:5b:de:b6:f4:b0:22:46:a9:
28:6d:83:ee:0c:5b:42:ef:9c:d2:ee:83:59:74:51:30:cd:21:
66:d3:6d:c6:7a:8e:f2:0b:09:f5:83:06:a4:e4:a1:c1:74:a8:
87:4f:9a:14:e9:47:21:74:ec:19:f3:d8:cf:8d:89:2e:a6:62:
d4:9e:0d:6f:a4:72:b5:8a:59:38:d4:19:c3:b4:8f:45:55:78:
20:93:37:33:a5:68:cb:9a:63:e3:71:50:13:97:7a:63:61:d9:
20:45:96:c4:be:a8:49:0b:0e:e5:89:95:2e:be:27:0f:2a:e0:
ae:8d:e7:24:20:b4:3b:37:eb:85:f3:09:f4:27:b2:ef:e2:89:
6e:0d:84:27:55:c4:57:4d:5b:2c:0e:1d:6d:37:69:e3:7a:9f:
52:50:b7:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 18:32:58 2026 by rpki-client