Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
File: oNxs0zNOAmkDIjc8O1BuQYT67H8.mft (raw, json)
Hash identifier: CJlqQodB8x/wIbSgOjTdBtCiIIjhInIos/JgJjLIwyw=
Subject key identifier: E9:31:CA:0F:EA:4D:F2:26:E2:66:59:08:93:A0:F0:E7:BC:A5:4B:4C
Authority key identifier: A0:DC:6C:D3:33:4E:02:69:03:22:37:3C:3B:50:6E:41:84:FA:EC:7F
Certificate issuer: /CN=a0dc6cd3334e02690322373c3b506e4184faec7f
Certificate serial: 019EC111AD853C20F2B220873AD662166F17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNxs0zNOAmkDIjc8O1BuQYT67H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
Manifest number: 0787
Signing time: Sat 13 Jun 2026 13:00:21 +0000
Manifest this update: Sat 13 Jun 2026 13:00:21 +0000
Manifest next update: Sun 14 Jun 2026 13:00:21 +0000
Files and hashes: 1: NyOZwRR31L4QERSunRsVBOO4EnI.roa (hash: JNaIlhx9XEnG7hI6SJPh01zqvkEjWomvOZdybUhEE4U=)
2: oNxs0zNOAmkDIjc8O1BuQYT67H8.crl (hash: V7mDou4lZGSejtHWm6LmX/Q9CGuXuhiiW9remsOZlM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNxs0zNOAmkDIjc8O1BuQYT67H8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 13:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:11:ad:85:3c:20:f2:b2:20:87:3a:d6:62:16:6f:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0dc6cd3334e02690322373c3b506e4184faec7f
Validity
Not Before: Jun 13 13:00:21 2026 GMT
Not After : Jun 14 13:00:21 2026 GMT
Subject: CN=e931ca0fea4df226e266590893a0f0e7bca54b4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fb:01:ec:b5:ec:38:f9:bc:1e:08:79:0c:8c:
3b:45:9d:8f:04:88:54:26:83:0c:9d:68:22:ce:27:
17:92:05:6b:29:7c:20:8b:70:c9:59:a7:da:ff:a7:
ef:25:16:95:1a:9a:54:85:ff:92:8a:f6:7f:cf:fb:
b2:0d:1d:e5:34:41:c2:91:fc:ca:26:9b:a4:b5:bf:
42:5c:38:78:58:d1:11:85:7f:ba:62:33:9f:81:39:
dd:e9:fd:f7:fd:26:83:c7:d4:08:f7:7c:2e:6f:12:
48:47:9f:19:92:52:fc:ca:79:48:0b:5d:58:97:84:
ad:59:06:d3:94:4e:0c:2a:0d:ea:eb:cf:16:a2:c9:
e5:d0:62:ed:d3:98:c5:83:6c:dd:08:2a:67:e4:9f:
08:99:40:72:99:c8:c2:a4:e8:19:ea:9e:08:d2:8c:
a1:86:d3:bb:6a:0f:e0:55:4f:bb:31:c4:8c:e7:6c:
70:6d:e2:6b:db:f5:59:f9:db:70:c0:b6:dd:8d:67:
9f:4c:e4:db:49:e1:f3:fe:12:23:20:c1:e0:19:6b:
3a:4b:4b:40:b4:12:be:02:1f:41:3b:58:71:e5:7c:
e2:b6:2a:d4:83:73:8f:48:f6:db:be:21:1e:89:8e:
8d:59:e9:c8:00:5d:16:72:8d:cb:42:14:29:a6:b9:
67:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:31:CA:0F:EA:4D:F2:26:E2:66:59:08:93:A0:F0:E7:BC:A5:4B:4C
X509v3 Authority Key Identifier:
keyid:A0:DC:6C:D3:33:4E:02:69:03:22:37:3C:3B:50:6E:41:84:FA:EC:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNxs0zNOAmkDIjc8O1BuQYT67H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:c8:ee:98:ec:47:d7:aa:e9:f6:1c:e8:d8:e9:a7:bb:41:31:
84:37:41:75:40:1f:55:f4:36:37:f7:58:e6:32:61:20:a6:65:
fe:d0:e5:7c:73:e9:97:17:ae:1c:37:25:d0:16:40:3c:ed:28:
91:e8:3f:35:78:5f:90:8f:30:b6:40:21:19:4d:92:9e:2d:f2:
58:fe:b5:9a:be:35:c0:23:04:eb:51:3f:40:29:db:0b:81:16:
5e:32:6e:58:8f:bd:93:a2:3e:37:0e:9a:01:53:ff:72:21:9b:
9d:3f:0f:cb:6a:3d:ee:b0:22:19:bf:f2:83:34:48:a1:e3:de:
36:db:69:b9:ee:9c:05:ce:12:89:0c:11:38:f5:36:12:9d:2c:
ff:78:b3:49:43:0d:fa:41:e0:93:7e:29:8f:8c:60:d3:b8:99:
df:26:0c:a2:40:75:81:ef:26:87:60:c0:fa:99:bb:6f:b7:6d:
cc:e2:a9:45:6e:fd:d8:85:ed:59:b9:8b:a6:7b:2a:6f:49:7d:
7f:9f:d3:95:ac:9e:f5:76:15:bb:37:92:1d:70:04:fe:09:1d:
ab:c9:93:76:f5:d8:db:79:1b:33:ce:0b:a3:b2:6b:32:2c:6c:
f0:89:61:86:c1:0d:66:cf:98:2a:15:c9:32:c2:25:f4:d2:53:
ce:3b:c5:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 22:46:12 2026 by rpki-client