Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
File: rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft (raw, json)
Hash identifier: Le1Enx7bh0TgHjNOg0GEuUMMLWBE9HxrRh+LrYZG460=
Subject key identifier: 12:5C:69:DA:5D:5A:18:7E:DC:8E:1C:70:84:8A:AA:5D:5F:ED:9E:DB
Authority key identifier: AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5
Certificate issuer: /CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5
Certificate serial: 019EC1B6A428CAD1C0B6ED8C56E779CB8D71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
Manifest number: 1965
Signing time: Sat 13 Jun 2026 16:00:32 +0000
Manifest this update: Sat 13 Jun 2026 16:00:32 +0000
Manifest next update: Sun 14 Jun 2026 16:00:32 +0000
Files and hashes: 1: QACcx3bmkYq5FVm71dmit53bn4Q.roa (hash: oQ/m7QfRfNheRWfUqid3dTy2xJX9VnnT62jOhchvHuk=)
2: gux-IxdkibcThQl39PWiMsakK0g.roa (hash: xADBPDkQYtVHScAVn2k1rTwtjm/TxC5Y/n4oo7GBk1E=)
3: jpvZw7M6HWfeaPP7BBGWUfnUPW8.roa (hash: m69AM/qWHvVH8vQjk7f2bA/DtDMk2TIVp7SRlmCI4co=)
4: rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl (hash: W1swF9BI67XoqXaqPDezMkhmoyu69T+r+KvNh1qD6H0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b6:a4:28:ca:d1:c0:b6:ed:8c:56:e7:79:cb:8d:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5
Validity
Not Before: Jun 13 16:00:32 2026 GMT
Not After : Jun 14 16:00:32 2026 GMT
Subject: CN=125c69da5d5a187edc8e1c70848aaa5d5fed9edb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e1:43:86:95:f2:46:ad:83:09:17:ac:ef:86:
a8:3f:ab:99:d1:c5:7d:93:2a:c7:ed:0d:b9:5c:3e:
e0:81:8b:b3:d8:28:09:94:c3:c4:51:a8:b2:a7:d9:
c5:f1:f1:33:37:65:91:77:bc:b0:3d:81:22:b9:06:
d8:be:dc:60:32:2f:8e:a6:8a:a1:e7:83:b3:91:51:
b7:2c:4d:69:24:f8:86:b3:57:99:1f:a2:dd:d0:fc:
aa:cd:9e:c7:69:94:5b:5c:95:e3:80:c6:00:bc:51:
6d:45:d3:7b:32:b7:62:8c:54:0d:9e:07:d1:73:ce:
fb:83:7d:72:a3:d7:27:4a:32:9c:01:eb:c4:9f:1a:
73:5d:f9:7e:c4:6b:10:eb:42:7a:36:c0:ee:fc:dd:
57:ed:ec:f0:0c:ca:00:58:2a:e9:b1:bf:66:56:29:
a9:ad:87:86:fc:42:91:ce:cb:d3:d9:6b:2d:39:c3:
8f:40:7a:77:8d:2d:77:83:12:72:d0:6c:4c:bd:6d:
8c:dc:70:ed:2b:7a:01:f6:a6:c1:16:65:8a:d1:a9:
3e:4a:22:ff:5b:b9:c8:6a:0c:25:80:72:97:45:c3:
24:5e:c6:a5:f7:9c:1a:93:7b:76:a1:cd:d3:2e:8b:
4b:35:05:86:fd:52:2d:f8:01:49:2e:dc:0d:ee:12:
8f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:5C:69:DA:5D:5A:18:7E:DC:8E:1C:70:84:8A:AA:5D:5F:ED:9E:DB
X509v3 Authority Key Identifier:
keyid:AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:57:00:5a:e7:52:a9:9c:ab:37:98:14:3a:70:58:64:b1:55:
79:fc:8c:f1:31:f7:c2:1c:ea:a1:64:26:c9:48:ec:8e:47:7a:
ac:4c:eb:ea:72:89:be:7a:fd:34:3f:83:fa:c6:94:d4:25:03:
54:63:21:35:fb:68:2b:2f:4a:72:61:2c:a7:d6:9a:39:a7:bb:
0c:ff:48:69:19:d2:2e:cb:28:73:79:91:eb:41:7e:46:9a:99:
d6:ca:61:b1:be:ae:1e:04:b5:b1:a6:22:be:77:ec:61:24:64:
e1:f7:f4:ca:1f:90:d0:be:32:cb:91:7b:d1:c8:54:58:39:66:
f4:23:ea:c2:c7:1e:76:af:48:11:a7:6e:6d:ee:3a:6a:9f:82:
0d:16:fc:2e:79:1e:ed:b9:72:91:28:cb:45:3e:84:df:e1:70:
48:15:8d:e2:0f:2f:e2:eb:73:3e:17:51:45:3a:1e:e3:76:29:
76:90:c2:ba:c5:7f:cf:92:a4:6c:31:5b:06:e6:cf:14:f2:fb:
42:50:58:8f:7e:27:1c:9b:30:71:b2:32:f9:69:6d:66:bd:ad:
6e:2e:c7:5a:80:4a:f5:c6:25:4e:7b:fa:08:47:bb:44:17:ee:
d1:a3:41:a9:cc:ad:5d:9c:bb:17:fc:66:23:df:ba:64:bb:54:
f5:4d:07:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 18:34:18 2026 by rpki-client