Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
File: oCN2bGLetRKXFVcI7MtCHIsEeAo.mft (raw, json)
Hash identifier: on7Yz902GD/C6CH0Y6BR9WN11FXUYjt8XoQLcIaYPxM=
Subject key identifier: CA:A4:2F:AF:34:C2:C0:A2:3D:C4:70:05:CA:07:6D:E5:47:43:71:07
Authority key identifier: A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
Certificate issuer: /CN=a023766c62deb51297155708eccb421c8b04780a
Certificate serial: 019EC3DC6E6E198490B664717C4D55410BDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
Manifest number: 16AE
Signing time: Sun 14 Jun 2026 02:01:03 +0000
Manifest this update: Sun 14 Jun 2026 02:01:03 +0000
Manifest next update: Mon 15 Jun 2026 02:01:03 +0000
Files and hashes: 1: g0-HGh4bznaFgiFX5KCpF3Q8z70.roa (hash: kuqsXcay0qN76iKLs/AKqPrHvwfsG46t73MVLxZfYe0=)
2: oCN2bGLetRKXFVcI7MtCHIsEeAo.crl (hash: bkLkG8SLMnW9jgDQ44oAxnuOdhAugmQH6YURQHWgxxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 02:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:dc:6e:6e:19:84:90:b6:64:71:7c:4d:55:41:0b:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a023766c62deb51297155708eccb421c8b04780a
Validity
Not Before: Jun 14 02:01:03 2026 GMT
Not After : Jun 15 02:01:03 2026 GMT
Subject: CN=caa42faf34c2c0a23dc47005ca076de547437107
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:73:8b:c0:ec:75:1a:a6:53:55:6f:cf:cd:5a:
17:52:98:95:1f:87:0a:a0:e5:81:40:16:14:c6:38:
e5:06:c5:87:08:f5:fd:dc:0d:eb:b2:74:a7:f2:49:
ca:18:ed:e2:42:27:0c:57:f0:5b:42:79:a8:26:84:
c0:5d:7d:8c:6a:a7:aa:1d:7c:a7:ef:05:99:e8:9d:
99:d8:c7:b5:b5:d6:74:77:34:cb:dc:98:1a:04:bc:
d2:97:67:a8:43:ba:1f:a4:20:3d:75:fd:2a:e7:97:
10:a2:3a:60:87:94:db:97:1f:c6:ca:88:3f:7e:a3:
97:70:ce:64:0a:34:da:09:a3:5e:e7:2b:f1:df:e5:
24:48:aa:b6:7c:fb:e9:30:a7:66:a1:13:14:aa:26:
ac:a0:7a:bf:ba:6e:34:1b:38:06:7b:84:f9:5d:d4:
fd:c0:12:65:5b:1a:da:30:d2:7c:7e:6c:75:44:0f:
68:a4:f7:ac:fa:89:3a:8e:1f:4b:cc:35:4f:c0:83:
50:15:75:52:aa:7f:6c:b5:40:5a:c6:79:95:3c:50:
79:0d:2f:6d:8f:b8:5a:c3:6c:89:84:fd:03:57:d9:
f5:47:fb:73:2c:8a:79:47:58:30:b8:c1:a8:3a:80:
67:33:8f:6a:a6:31:89:c7:ee:bf:58:e3:22:d1:fb:
9a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:A4:2F:AF:34:C2:C0:A2:3D:C4:70:05:CA:07:6D:E5:47:43:71:07
X509v3 Authority Key Identifier:
keyid:A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:a2:f2:50:95:d2:ed:9b:2e:b1:61:d0:d5:c7:9d:23:2f:34:
3f:65:3a:96:6e:1d:e3:34:c6:5f:69:8a:c0:d8:44:be:ba:db:
eb:45:26:e8:41:59:82:6e:39:07:f1:c9:82:4c:7d:28:59:b3:
9a:b7:51:44:36:3f:a1:e0:7c:a9:c5:79:82:28:8e:f9:ee:3a:
be:3c:00:20:45:fb:64:41:ab:17:1a:1f:c0:9a:0b:e2:6e:a6:
bd:66:2d:3a:1a:a2:fa:22:8e:1a:cf:e2:61:d4:3e:78:7f:36:
80:56:59:f9:96:42:19:d4:0a:39:48:45:bb:5c:8e:9c:ef:24:
34:9f:d1:50:e2:b2:f0:7e:23:d0:fc:48:f9:62:79:ac:70:e0:
e7:38:de:bc:8e:5b:79:23:38:a0:1c:8c:f7:a9:b6:eb:a6:8d:
31:a3:13:86:5f:4c:ea:92:47:a7:af:46:d8:33:e7:ec:d3:7d:
55:50:93:e9:a6:bb:49:f0:60:7d:e6:0e:56:bc:7c:60:a1:a7:
c4:4a:54:40:45:f0:b9:16:ec:71:b6:d2:c5:62:a0:60:3e:8e:
b9:48:c0:0c:86:b3:dd:81:a3:41:97:7f:53:56:dd:c9:ca:d3:
60:7b:fa:ea:d1:44:60:7f:f5:27:de:6c:93:9a:dd:4b:33:1e:
67:3f:e2:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 08:36:10 2026 by rpki-client