Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
File: o2n7GRvuUc3HQUppYxl_hrvzE6s.mft (raw, json)
Hash identifier: ShaFi7cpo0if/mXT/oGawoz9ZXGHGp3kGSIb89EpBnE=
Subject key identifier: B7:55:89:60:F7:CC:0A:F2:D9:DD:92:54:97:C9:EA:34:1C:EC:40:D3
Authority key identifier: A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
Certificate issuer: /CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Certificate serial: 019DA3AECFCCB1FC470CFE414FDAD337C06F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
Manifest number: 1328
Signing time: Sun 19 Apr 2026 03:00:35 +0000
Manifest this update: Sun 19 Apr 2026 03:00:35 +0000
Manifest next update: Mon 20 Apr 2026 03:00:35 +0000
Files and hashes: 1: o2n7GRvuUc3HQUppYxl_hrvzE6s.crl (hash: tSAuYEKna3hZvBHIKCEmFZ/C3WiuqenbcG67CDVXkcY=)
2: u-PjOq1WjK6PsqFBvXy59id7R_I.roa (hash: Pz8fOepb3H13pqdKO3L1FSkff2yUOqZGUk6QeB6m10U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:ae:cf:cc:b1:fc:47:0c:fe:41:4f:da:d3:37:c0:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Validity
Not Before: Apr 19 03:00:35 2026 GMT
Not After : Apr 20 03:00:35 2026 GMT
Subject: CN=b7558960f7cc0af2d9dd925497c9ea341cec40d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f4:94:47:c3:84:4d:b8:74:1f:d4:9f:d0:9e:
1d:9d:74:33:20:44:be:ff:c1:51:51:6d:fa:62:b8:
2f:5a:ba:ed:5e:af:b0:26:d3:38:30:bb:fe:c3:15:
25:36:70:ff:55:e2:06:6a:a2:7f:d3:50:d7:aa:6b:
d9:39:cf:b6:81:89:10:f5:ac:8b:d2:ec:cf:aa:d8:
3f:35:a0:99:1b:0d:3c:d7:d2:e1:ab:a3:40:97:12:
5f:fa:40:ae:86:49:05:e3:ec:30:67:4b:14:1f:99:
05:dc:ed:e4:14:ad:a7:69:75:4d:ca:d7:74:25:67:
d8:6b:4d:02:1a:50:89:38:81:c7:37:66:ba:5e:11:
98:7d:92:54:a2:ac:72:1d:d7:1d:9b:4f:e3:85:7b:
dd:cd:cb:e1:c8:a4:e0:b2:04:b0:99:0f:dd:07:10:
d0:51:d7:0f:fe:95:9b:69:f7:14:bf:40:51:fb:c9:
2b:03:08:a2:96:64:c5:75:e3:fc:e0:6c:f7:80:f0:
c2:ef:3f:7e:2b:63:0f:30:e7:a0:f5:5c:ef:8f:10:
7f:b4:4a:95:70:6e:59:8f:c0:31:c9:70:6a:ce:c3:
23:6a:e2:f1:68:53:7c:ee:92:85:3f:68:13:44:a7:
98:3b:58:b6:e7:50:b2:01:65:c6:a3:90:64:53:f3:
96:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:55:89:60:F7:CC:0A:F2:D9:DD:92:54:97:C9:EA:34:1C:EC:40:D3
X509v3 Authority Key Identifier:
keyid:A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:82:a6:37:a6:d8:8f:3d:50:51:9a:6b:90:fb:e3:46:e9:7c:
77:36:14:4c:f7:e2:d7:0d:c8:de:23:39:e1:45:12:d8:d5:84:
4d:24:20:fb:5a:3c:fe:73:f5:75:37:e3:6b:52:c7:52:03:36:
c6:45:41:f1:e7:48:1a:62:cb:02:f5:91:a1:e9:16:25:0d:6a:
4b:ae:c9:36:79:d1:73:81:6a:57:5d:e7:57:47:01:87:ef:8e:
4e:d6:73:da:8c:e4:ac:a4:b2:af:3e:0a:87:34:13:da:ef:92:
10:72:6f:92:5c:3c:03:32:c8:40:9b:34:1f:9f:71:c8:34:00:
7c:ce:0b:e9:39:2a:0f:c2:8e:23:71:7f:5b:87:25:95:67:b1:
11:c8:b9:1b:60:c2:9a:0b:1c:e0:dc:95:e1:92:99:30:99:89:
f4:d6:40:7e:64:32:82:42:c5:46:8e:23:60:15:f1:4d:6d:a1:
b5:a7:26:49:3e:89:8a:e6:f4:3e:3b:cd:9d:87:5e:2b:8d:e9:
7b:30:98:4c:cd:5f:c3:96:6a:e4:56:43:ae:14:4e:d6:06:69:
64:eb:1b:07:1a:b1:0b:cf:18:eb:dc:31:32:5e:79:6f:ea:81:
6f:63:8b:f5:3a:cf:9c:0d:9b:d1:ec:bd:ec:a9:05:81:ac:d9:
3c:1d:72:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:43:08 2026 by rpki-client