Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
File: oNxs0zNOAmkDIjc8O1BuQYT67H8.mft (raw, json)
Hash identifier: 0IDNksD7c5f3M8TpKnVREhK/c+v+CmzMOZ0pv54FpSM=
Subject key identifier: 69:09:45:F1:00:42:A1:81:B7:3E:A1:8A:CE:A8:C4:51:E0:46:B4:B4
Authority key identifier: A0:DC:6C:D3:33:4E:02:69:03:22:37:3C:3B:50:6E:41:84:FA:EC:7F
Certificate issuer: /CN=a0dc6cd3334e02690322373c3b506e4184faec7f
Certificate serial: 019D9B87F41FAEB4F2C6C0A96A8F09D14F73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNxs0zNOAmkDIjc8O1BuQYT67H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
Manifest number: 06EF
Signing time: Fri 17 Apr 2026 13:01:11 +0000
Manifest this update: Fri 17 Apr 2026 13:01:11 +0000
Manifest next update: Sat 18 Apr 2026 13:01:11 +0000
Files and hashes: 1: NyOZwRR31L4QERSunRsVBOO4EnI.roa (hash: JNaIlhx9XEnG7hI6SJPh01zqvkEjWomvOZdybUhEE4U=)
2: oNxs0zNOAmkDIjc8O1BuQYT67H8.crl (hash: LHNWaIXy36ZGsGFt2SuBktpClkd96HTtvV4x6x78zf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNxs0zNOAmkDIjc8O1BuQYT67H8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:f4:1f:ae:b4:f2:c6:c0:a9:6a:8f:09:d1:4f:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0dc6cd3334e02690322373c3b506e4184faec7f
Validity
Not Before: Apr 17 13:01:11 2026 GMT
Not After : Apr 18 13:01:11 2026 GMT
Subject: CN=690945f10042a181b73ea18acea8c451e046b4b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ab:cd:d6:71:fb:ba:38:5b:23:c3:21:fb:ea:
08:6e:39:01:c4:c4:ac:7f:0d:33:68:21:ee:26:28:
8b:2a:70:49:cf:88:f4:bf:80:6a:d3:5d:22:70:41:
8e:e0:9d:16:34:9a:0b:53:03:f0:9b:25:09:4b:ca:
92:c5:61:11:7b:c3:80:d3:86:c8:ea:30:dd:ef:71:
23:70:ac:61:c1:be:ab:83:45:6f:81:9b:88:cf:4d:
97:a2:c6:b1:3f:a1:8c:62:52:7d:6d:1f:d6:20:3e:
55:8f:44:b8:04:bb:4d:68:a9:37:ee:ae:bd:14:5b:
22:fd:20:96:67:73:0e:e9:ee:b1:80:75:64:1d:f0:
ed:3d:a6:65:79:5b:27:38:ac:63:fa:1c:a8:9c:57:
ae:d4:f8:19:24:61:0b:22:a0:53:a4:0f:f5:09:c8:
bc:9a:91:44:7d:84:39:d0:82:f1:f0:2d:40:30:55:
33:56:c3:4a:60:bd:05:8b:48:45:bb:69:ef:7c:b0:
ba:d9:8a:e6:2a:bc:3a:bb:74:58:ad:29:be:7e:57:
14:99:63:8d:fc:e6:a4:a7:79:da:ee:eb:4d:da:92:
1c:39:8f:c8:fe:64:f2:2f:5b:f2:ec:d4:f2:5a:dd:
07:dc:2a:5b:a2:e5:a3:73:d8:61:5d:94:22:30:ef:
68:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:09:45:F1:00:42:A1:81:B7:3E:A1:8A:CE:A8:C4:51:E0:46:B4:B4
X509v3 Authority Key Identifier:
keyid:A0:DC:6C:D3:33:4E:02:69:03:22:37:3C:3B:50:6E:41:84:FA:EC:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNxs0zNOAmkDIjc8O1BuQYT67H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:8f:22:68:75:62:38:8d:f4:1a:4e:4b:cd:eb:81:32:c6:32:
42:1a:bc:6e:73:d6:8f:53:af:ba:e3:eb:c3:a7:76:f7:99:da:
4a:da:58:ed:d0:1e:e8:34:ba:f5:f0:2f:11:9e:cb:4d:68:10:
c7:76:4f:7d:2a:18:21:19:58:73:68:4e:ae:e5:92:32:ee:14:
65:99:b8:fb:54:87:bb:af:37:01:06:f6:de:8e:ef:e0:16:58:
2d:d5:14:35:17:63:f0:84:df:ed:90:3e:67:88:96:59:3f:24:
9a:2c:81:25:70:6e:04:1f:1d:d1:a4:15:5b:f1:56:36:80:e8:
11:f0:9c:36:14:88:c5:2f:59:0f:9c:3c:e8:b9:8f:d3:c2:d6:
df:c3:41:9b:a8:f9:e4:84:69:4e:9e:d8:23:27:ac:37:b5:ff:
26:83:3d:99:a3:8f:03:f8:66:3d:64:e1:20:a9:17:84:ad:88:
7d:60:30:c5:8e:28:c9:5a:0d:53:40:1e:38:26:37:13:ac:7c:
53:40:ea:2b:ea:8b:c4:b6:97:08:73:2d:59:3d:93:93:82:97:
e2:d4:cd:09:37:d0:56:3b:ee:82:56:80:dc:72:d9:70:2f:13:
4c:4b:ef:01:3e:31:72:43:47:dc:8c:10:90:c5:74:f0:a3:90:
1c:4f:9d:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2bh/QfrrTyxsCpao8J0U9zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZGM2Y2QzMzM0ZTAyNjkwMzIyMzczYzNiNTA2ZTQxODRm
YWVjN2YwHhcNMjYwNDE3MTMwMTExWhcNMjYwNDE4MTMwMTExWjAzMTEwLwYDVQQD
Eyg2OTA5NDVmMTAwNDJhMTgxYjczZWExOGFjZWE4YzQ1MWUwNDZiNGI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAravN1nH7ujhbI8Mh++oIbjkBxMSs
fw0zaCHuJiiLKnBJz4j0v4Bq010icEGO4J0WNJoLUwPwmyUJS8qSxWERe8OA04bI
6jDd73EjcKxhwb6rg0VvgZuIz02XosaxP6GMYlJ9bR/WID5Vj0S4BLtNaKk37q69
FFsi/SCWZ3MO6e6xgHVkHfDtPaZleVsnOKxj+hyonFeu1PgZJGELIqBTpA/1Cci8
mpFEfYQ50ILx8C1AMFUzVsNKYL0Fi0hFu2nvfLC62YrmKrw6u3RYrSm+flcUmWON
/Oakp3na7utN2pIcOY/I/mTyL1vy7NTyWt0H3CpbouWjc9hhXZQiMO9oKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGkJRfEAQqGBtz6his6oxFHgRrS0MB8GA1UdIwQY
MBaAFKDcbNMzTgJpAyI3PDtQbkGE+ux/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb054czB6Tk9BbWtESWpjOE8xQnVRWVQ2N0g4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9jMDFmOTAtZDBmYS00OTc2LWIxYzAt
ZDFmZjc1YTdhMzVjLzEvb054czB6Tk9BbWtESWpjOE8xQnVRWVQ2N0g4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9jMDFmOTAtZDBmYS00OTc2LWIxYzAtZDFmZjc1YTdhMzVj
LzEvb054czB6Tk9BbWtESWpjOE8xQnVRWVQ2N0g4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfY8iaHVi
OI30Gk5LzeuBMsYyQhq8bnPWj1OvuuPrw6d295naStpY7dAe6DS69fAvEZ7LTWgQ
x3ZPfSoYIRlYc2hOruWSMu4UZZm4+1SHu683AQb23o7v4BZYLdUUNRdj8ITf7ZA+
Z4iWWT8kmiyBJXBuBB8d0aQVW/FWNoDoEfCcNhSIxS9ZD5w86LmP08LW38NBm6j5
5IRpTp7YIyesN7X/JoM9maOPA/hmPWThIKkXhK2IfWAwxY4oyVoNU0AeOCY3E6x8
U0DqK+qLxLaXCHMtWT2Tk4KX4tTNCTfQVjvuglaA3HLZcC8TTEvvAT4xckNH3IwQ
kMV08KOQHE+dzw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 15:20:21 2026 by rpki-client