Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
File: o2n7GRvuUc3HQUppYxl_hrvzE6s.mft (raw, json)
Hash identifier: wI/hWK+o7NqJa3pJVOJBc0xpXS1vp3xZT6tpfZSUEr0=
Subject key identifier: 23:08:E0:65:B6:49:D2:59:6F:12:35:38:6F:89:2D:D2:E7:8E:83:ED
Authority key identifier: A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
Certificate issuer: /CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Certificate serial: 019ED4CFFAA1713EF86D46CD9FE73AD5AA1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
Manifest number: 13C6
Signing time: Wed 17 Jun 2026 09:01:00 +0000
Manifest this update: Wed 17 Jun 2026 09:01:00 +0000
Manifest next update: Thu 18 Jun 2026 09:01:00 +0000
Files and hashes: 1: o2n7GRvuUc3HQUppYxl_hrvzE6s.crl (hash: 6ir6uQQbfCgCl8xWuy7v0cdrZVbH+wLPvUehqtJ/LlE=)
2: u-PjOq1WjK6PsqFBvXy59id7R_I.roa (hash: Pz8fOepb3H13pqdKO3L1FSkff2yUOqZGUk6QeB6m10U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 08:33:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d4:cf:fa:a1:71:3e:f8:6d:46:cd:9f:e7:3a:d5:aa:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Validity
Not Before: Jun 17 09:01:00 2026 GMT
Not After : Jun 18 09:01:00 2026 GMT
Subject: CN=2308e065b649d2596f1235386f892dd2e78e83ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bd:64:1e:1a:50:54:35:07:59:09:94:10:7d:
a8:12:de:89:12:b6:90:26:87:2c:ab:37:75:90:3f:
5c:0b:b2:be:d1:31:ee:d9:6c:c9:d9:c6:80:13:d3:
f3:8a:a2:49:99:55:00:a8:47:74:04:48:5c:0a:fd:
99:1b:e3:ba:f3:b9:65:f7:87:72:42:9c:06:fe:60:
82:aa:41:3f:ba:63:18:37:7c:79:24:29:3a:01:6d:
70:58:79:c2:a4:8f:e6:3d:85:a6:de:15:c5:6e:22:
4c:37:d7:63:9d:69:16:02:3c:12:c5:d5:f4:d0:e7:
a8:ca:42:ad:81:e1:d0:27:1d:78:e3:e3:a8:84:d0:
3c:7e:fc:ec:83:72:a6:44:b8:f6:2b:14:70:c5:f5:
58:0f:57:54:9c:d6:bb:68:60:7d:46:4b:bc:78:3c:
35:b8:1e:ef:81:d4:ed:4e:43:6e:d9:92:2c:6e:cc:
12:02:26:09:a5:23:68:71:64:17:10:a2:15:fb:9f:
03:fe:1f:0e:d6:99:3f:70:18:f0:03:45:f5:2f:17:
07:de:b7:32:b2:82:3e:9b:65:ed:e1:2b:3c:a0:0a:
0f:97:95:38:ed:35:b7:b8:af:89:fc:d1:65:d3:1c:
19:2a:5b:a7:f8:55:2d:d5:e0:d5:ec:83:ca:56:f2:
c3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:08:E0:65:B6:49:D2:59:6F:12:35:38:6F:89:2D:D2:E7:8E:83:ED
X509v3 Authority Key Identifier:
keyid:A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:2b:b3:9d:0a:08:28:3e:3a:77:bf:ee:c7:e0:d5:01:36:99:
fd:27:1c:45:00:89:58:8f:b8:7b:be:59:cd:02:6b:4d:e5:90:
00:d6:b8:1d:60:92:6f:47:9d:8f:40:00:2f:35:c6:1c:58:dd:
1e:21:8c:0d:d3:c8:81:74:22:0e:ff:80:74:24:39:17:e0:68:
97:f3:95:7a:fe:58:6f:dd:2f:6b:97:ae:92:0a:c0:ea:de:20:
c7:d2:79:fb:98:b2:cd:f4:59:f1:51:1a:74:17:57:8e:10:1f:
9b:72:e5:02:16:d9:46:a4:cd:f9:c6:8c:2e:80:c8:c1:72:fc:
7f:0a:6d:0e:a5:a2:ac:39:01:7f:85:e0:6c:da:82:31:e2:4f:
0d:c8:8d:a0:71:2c:ce:f2:83:ec:44:e3:db:40:54:ed:40:a3:
95:99:dc:fb:d4:fd:92:f8:c8:68:d2:96:8d:eb:e7:61:e0:56:
e1:44:ea:9b:cd:c9:0a:9f:75:09:42:8a:88:8a:b1:0d:d5:4b:
74:d5:d4:d4:9a:54:d7:7a:07:a4:d3:68:a0:86:4c:44:b8:d7:
67:d2:3b:39:62:2d:ee:92:39:a4:b9:9c:24:e9:7f:46:27:34:
8c:c7:5c:1b:94:65:5b:0a:13:ee:35:00:72:b5:f7:90:85:bf:
ab:ce:bd:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 14:35:44 2026 by rpki-client