Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
File: 8uOrazEY4L3g5kiOa-1slpQeDoQ.mft (raw, json)
Hash identifier: dDQT2jZZPnhJvFXK4B1XI7Yf8hFsLjq1qjmdA78LV5E=
Subject key identifier: D1:ED:C1:45:82:E7:E3:4D:2D:E3:FA:F9:90:9B:A2:08:AC:B1:3B:9E
Authority key identifier: F2:E3:AB:6B:31:18:E0:BD:E0:E6:48:8E:6B:ED:6C:96:94:1E:0E:84
Certificate issuer: /CN=f2e3ab6b3118e0bde0e6488e6bed6c96941e0e84
Certificate serial: 019EBFFEE4C93C384B93484E52B6ABE85F63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
Manifest number: 0DF0
Signing time: Sat 13 Jun 2026 08:00:13 +0000
Manifest this update: Sat 13 Jun 2026 08:00:13 +0000
Manifest next update: Sun 14 Jun 2026 08:00:13 +0000
Files and hashes: 1: 8X-vY96aKKHfj_txGbHwT7KRdWc.roa (hash: 0WIWIIW0b9953A6VR0CU69w8OMoDd9V6tcRbkVExZv4=)
2: 8uOrazEY4L3g5kiOa-1slpQeDoQ.crl (hash: awoNIbb3pzl66CvvAn7s0wxfxazuhpZqNPaPDICWM28=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:fe:e4:c9:3c:38:4b:93:48:4e:52:b6:ab:e8:5f:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2e3ab6b3118e0bde0e6488e6bed6c96941e0e84
Validity
Not Before: Jun 13 08:00:13 2026 GMT
Not After : Jun 14 08:00:13 2026 GMT
Subject: CN=d1edc14582e7e34d2de3faf9909ba208acb13b9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2f:80:d6:27:1a:da:8c:f6:a8:98:a7:d8:2d:
c6:6d:59:a9:bd:2e:6b:37:37:55:1f:4a:fb:8e:11:
40:98:d6:1c:85:c1:72:05:cd:57:77:d1:31:da:28:
94:a2:56:6e:a8:45:e6:75:d8:fc:bb:b8:da:7a:8f:
57:12:19:d9:23:bb:79:11:23:24:1a:cb:78:e8:5d:
1b:2a:97:0b:39:a3:d7:ff:6c:a0:a9:33:9c:c8:d1:
98:ea:d7:39:40:97:12:4e:91:7e:19:8f:f6:99:b3:
67:2c:f5:bf:65:ce:da:7f:e5:73:7d:36:de:03:ab:
cb:e1:5d:be:3d:27:97:11:44:de:8f:06:a5:a6:c3:
d6:76:e8:24:52:8a:3b:8e:87:3d:8e:a2:1a:52:e4:
da:23:b6:f4:5e:fd:4f:9d:81:04:16:69:3c:60:e8:
18:76:41:df:d1:3b:54:d0:10:5e:c8:1f:7e:7d:cb:
9a:c5:81:89:52:12:36:39:8c:81:f7:52:78:d5:62:
56:b8:ca:f9:0c:b8:61:5e:e0:36:40:4f:2f:5a:ee:
b9:a2:60:aa:fd:be:85:ef:e6:57:99:2f:5b:11:4c:
06:83:dd:21:e9:ff:fc:04:a5:11:d2:0d:79:b2:f7:
9e:25:ce:7e:73:a5:c6:fa:fa:dd:c7:10:5c:73:07:
03:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:ED:C1:45:82:E7:E3:4D:2D:E3:FA:F9:90:9B:A2:08:AC:B1:3B:9E
X509v3 Authority Key Identifier:
keyid:F2:E3:AB:6B:31:18:E0:BD:E0:E6:48:8E:6B:ED:6C:96:94:1E:0E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:7a:ac:a5:ca:9c:90:da:aa:66:6a:1b:cf:15:f2:62:98:8c:
53:3f:f5:17:72:6f:0a:3e:7d:36:8d:4d:6b:90:6e:d3:00:e6:
47:ee:f4:de:c4:cd:18:66:6f:b5:64:6b:b7:19:18:a3:ee:e0:
ca:86:f7:65:cb:59:cf:c4:da:f4:6a:b0:92:05:b5:df:fc:72:
69:1b:fc:db:86:b0:a9:80:95:13:27:fb:d3:28:2c:18:3b:00:
90:c0:1d:b2:63:22:fb:a2:4d:01:09:3f:12:0f:3a:09:59:ca:
82:c1:16:8c:98:ac:90:7d:62:d5:6a:ca:a5:a3:3e:23:39:68:
7c:02:14:63:58:3d:e7:a2:e8:33:14:f8:49:b7:29:70:b5:88:
be:88:2d:bf:09:62:db:b8:9e:d1:4c:84:60:7a:7c:61:46:97:
fb:69:42:ae:17:7d:38:f7:d0:68:25:79:b2:f7:ea:7c:ef:f2:
56:a2:d0:2d:a2:ae:b1:7a:76:46:bf:e7:5a:0c:42:a8:9d:24:
ab:2e:f3:9a:65:73:af:7a:3e:76:f0:34:5e:27:a3:5d:c6:e1:
06:1c:08:f4:a8:3d:bb:05:ad:81:f5:d9:a3:04:80:8f:fa:8f:
e1:4c:0e:27:73:d1:67:18:a7:2c:01:ae:74:30:a0:3d:50:e2:
b3:41:51:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 14:54:57 2026 by rpki-client