Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft
File: ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft (raw, json)
Hash identifier: 6gJLvV74Vmh6r1rnMwKVcVY7/B2QBC+pLIrWnPmRmzs=
Subject key identifier: 92:2E:E5:A2:9E:6D:05:A8:3F:54:26:8D:C0:48:72:16:A1:DB:CB:98
Authority key identifier: A2:0C:C6:71:54:B4:03:14:5D:13:94:69:88:61:27:AB:62:9E:B9:28
Certificate issuer: /CN=a20cc67154b403145d139469886127ab629eb928
Certificate serial: 019EC2926D8E47DBEBAD5795E3AE2579D053
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogzGcVS0AxRdE5RpiGEnq2KeuSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft
Manifest number: 13CF
Signing time: Sat 13 Jun 2026 20:00:36 +0000
Manifest this update: Sat 13 Jun 2026 20:00:36 +0000
Manifest next update: Sun 14 Jun 2026 20:00:36 +0000
Files and hashes: 1: IBksnf3WkTvoF5rkP1mUy15812I.roa (hash: HD4RkTmAf3uLEci/QM2BCfZRy1s1DoklxIvLjDBwxb4=)
2: NdOYrmb6RnvhyXZ1Skocw4HNEj4.roa (hash: i19fewp2gqVX7ORfnbVNxiNhHz8sRGSZyn7wRBbQZfc=)
3: ogzGcVS0AxRdE5RpiGEnq2KeuSg.crl (hash: m9DyLDFdQjc4H6QP0PGx/OxEjSUwUnZuGiS0Z7sXNes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ogzGcVS0AxRdE5RpiGEnq2KeuSg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 20:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:92:6d:8e:47:db:eb:ad:57:95:e3:ae:25:79:d0:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a20cc67154b403145d139469886127ab629eb928
Validity
Not Before: Jun 13 20:00:36 2026 GMT
Not After : Jun 14 20:00:36 2026 GMT
Subject: CN=922ee5a29e6d05a83f54268dc0487216a1dbcb98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:88:b6:cc:9f:36:7f:06:35:ed:a6:64:75:59:
c6:b4:45:71:e1:23:7c:c8:f0:75:0b:df:8d:e7:e9:
e9:86:a1:15:fd:c1:c9:7d:91:90:9e:d9:bb:57:28:
2f:fd:56:c5:13:2c:02:53:8a:52:b9:9b:93:e5:35:
10:15:e3:71:0b:59:cc:48:ed:5c:70:e4:2a:ab:86:
20:3d:2f:9b:4c:e4:7b:86:6a:36:9d:d3:b3:74:8c:
b8:db:f4:d9:9b:79:8b:cc:79:eb:80:35:71:3a:f8:
f2:9f:b9:17:8c:15:3a:ce:db:cc:fe:32:29:e5:3b:
91:1e:50:c3:df:cc:13:80:45:70:13:da:f4:d1:2a:
76:d5:30:f5:71:7b:9b:44:28:5a:58:f1:7d:7c:fc:
2d:8f:50:3d:6d:d7:0d:de:98:20:34:82:8b:58:30:
6e:62:92:de:ba:1c:5a:0e:6d:97:a8:42:c7:99:74:
70:c8:5a:f3:91:d0:28:d1:d1:00:13:25:18:c6:3c:
40:e2:fc:1f:8d:a7:84:9d:47:19:f1:57:8f:f4:6f:
e7:19:75:7c:2f:d1:79:25:98:29:51:eb:00:b3:fd:
07:81:67:31:43:c8:1e:f0:ec:6f:a4:bf:01:b0:4a:
4b:e8:bc:a2:9b:12:ff:09:e7:d5:ff:92:e7:fb:07:
99:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:2E:E5:A2:9E:6D:05:A8:3F:54:26:8D:C0:48:72:16:A1:DB:CB:98
X509v3 Authority Key Identifier:
keyid:A2:0C:C6:71:54:B4:03:14:5D:13:94:69:88:61:27:AB:62:9E:B9:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogzGcVS0AxRdE5RpiGEnq2KeuSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:8a:7d:24:78:2f:d6:19:f2:95:b2:e8:5d:4a:69:78:f8:1f:
74:59:91:80:fc:8a:76:e2:df:47:66:0f:a5:39:4f:e3:67:f2:
c9:4f:d3:28:df:f5:eb:7c:69:66:d5:d3:0b:4a:8e:13:3c:2c:
ba:0d:1c:6f:86:ec:cf:83:98:77:ac:24:39:56:3a:7a:0f:4f:
2b:06:a7:ba:cf:da:5c:e2:af:99:03:d7:b2:98:e5:71:a8:cd:
ea:9d:a1:7a:14:b5:e0:ba:c3:88:cd:b4:4f:21:4c:5b:c1:01:
5e:42:5c:eb:ea:66:a1:12:24:5d:52:06:ed:c2:14:94:1e:53:
46:98:8f:ce:e6:d3:53:29:1f:90:50:12:c0:74:16:8f:64:dd:
45:cc:12:23:47:21:62:f0:ce:18:19:fa:d8:c3:5d:73:1f:61:
bf:f0:bd:a2:95:34:35:92:41:e8:c1:ea:9e:50:f5:dc:21:93:
cb:db:e8:7a:ee:33:69:30:21:44:ba:82:d0:ed:cd:40:5c:78:
c1:a6:43:a9:6a:63:98:6b:40:fb:fe:d8:51:e3:a1:db:29:1b:
bf:77:8d:3d:3b:11:53:d6:e9:6e:e9:64:0a:a4:c8:d6:7e:71:
67:b4:fe:c3:50:80:4e:0b:c1:c4:49:ba:5e:22:d2:a2:05:d5:
a5:17:ea:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 07:09:32 2026 by rpki-client