Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.mft
File: 0BqOdIpGO0lQg_dHaROSBdyzObY.mft (raw, json)
Hash identifier: Gawo/Pj04JhwOeeKazRSwYDmOqeFGTHa+Dld3sHA1go=
Subject key identifier: 92:EC:3F:67:C2:19:C2:E9:A5:30:03:EC:5C:13:A5:3C:1A:5D:A4:2A
Authority key identifier: D0:1A:8E:74:8A:46:3B:49:50:83:F7:47:69:13:92:05:DC:B3:39:B6
Certificate issuer: /CN=d01a8e748a463b495083f74769139205dcb339b6
Certificate serial: 019E1F10D0139899DC3A5983DBA1225161F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BqOdIpGO0lQg_dHaROSBdyzObY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.mft
Manifest number: 024A
Signing time: Wed 13 May 2026 02:00:55 +0000
Manifest this update: Wed 13 May 2026 02:00:55 +0000
Manifest next update: Thu 14 May 2026 02:00:55 +0000
Files and hashes: 1: 0BqOdIpGO0lQg_dHaROSBdyzObY.crl (hash: w3W8FBoNLbfAqatHKXENCQKcNpc+/oc46iZdFIcSxo4=)
2: 67yNIuDKXUtDVtgojpsh7omuexw.roa (hash: r3ainpcf/xaLFwsqpjAVbwM2zKjxaJVfsZCxDMXSgjQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0BqOdIpGO0lQg_dHaROSBdyzObY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:d0:13:98:99:dc:3a:59:83:db:a1:22:51:61:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d01a8e748a463b495083f74769139205dcb339b6
Validity
Not Before: May 13 02:00:55 2026 GMT
Not After : May 14 02:00:55 2026 GMT
Subject: CN=92ec3f67c219c2e9a53003ec5c13a53c1a5da42a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:80:d4:4f:a4:70:0a:f5:cb:c9:16:73:9d:fd:
cf:b1:ee:03:19:d5:8c:2a:7a:84:0d:39:dc:2b:82:
fd:0f:81:5f:b7:d0:49:51:65:76:5a:19:f4:b9:49:
a4:0b:26:73:4a:2f:bc:dd:9c:71:ea:1f:75:48:ea:
79:c8:fa:0f:dd:08:d6:df:1c:18:b0:d7:34:3e:49:
33:95:a4:71:50:5a:50:dd:88:93:e6:36:9f:99:00:
48:ca:94:1b:93:54:72:7b:57:f1:fd:e8:38:85:05:
0d:29:ae:db:4d:61:f6:e7:f5:c1:20:0c:f3:a9:c3:
10:ba:9e:be:5e:88:d8:8e:10:3f:c3:5b:29:43:89:
a5:86:81:a0:fa:30:22:98:cb:a3:62:7f:28:e4:64:
51:3a:22:ed:02:91:ff:fa:a1:d9:27:ad:16:9b:32:
68:7f:e7:ca:6d:dc:3c:1a:e1:7c:99:86:63:2b:0c:
d6:0f:4e:90:57:84:53:a4:49:fb:5e:bc:76:4c:b1:
01:0a:c5:0f:08:61:7c:6d:b5:51:8d:a4:bd:8b:54:
02:85:84:e8:3c:7f:b6:ff:cd:25:8c:77:0e:c6:f1:
4e:d6:2d:f9:83:97:63:c2:09:8a:6c:75:34:85:0a:
2b:ed:61:89:43:b5:0a:32:3e:82:f2:c9:aa:1a:da:
e4:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:EC:3F:67:C2:19:C2:E9:A5:30:03:EC:5C:13:A5:3C:1A:5D:A4:2A
X509v3 Authority Key Identifier:
keyid:D0:1A:8E:74:8A:46:3B:49:50:83:F7:47:69:13:92:05:DC:B3:39:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BqOdIpGO0lQg_dHaROSBdyzObY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:ff:7b:d1:89:f0:da:9e:17:b9:c3:05:e1:80:30:0e:f8:80:
b7:9a:eb:10:b6:db:a5:34:97:a8:6a:1b:10:63:8b:79:9e:0a:
53:4a:e1:98:49:ba:3a:42:ee:80:32:99:93:0f:59:79:04:07:
ff:e1:90:26:d7:88:7b:1a:3b:62:7f:a4:5f:69:5b:1b:51:cc:
70:43:1a:a9:a9:4e:0d:91:6c:03:76:f6:67:43:6e:db:0a:d1:
9d:4a:82:c9:0f:ff:69:68:5e:69:fd:99:20:39:83:ba:36:2e:
21:36:e6:4d:17:67:a6:8a:f7:b8:2f:cf:6f:41:0c:ad:31:b6:
50:c0:49:70:f5:c3:6f:bd:3c:5e:2a:03:dd:5e:dd:ad:5b:0d:
1e:d4:27:23:ea:41:02:e8:d0:8f:26:3e:03:f0:88:d6:d1:5b:
ad:92:7f:c4:14:14:50:75:be:71:d5:aa:cb:ef:a6:4a:ec:b7:
5d:bf:b9:7f:7d:a9:ea:d7:3c:5e:33:36:26:a5:ec:bc:3b:8c:
de:ef:d2:fb:c1:3a:15:33:df:5b:e9:2f:8e:42:99:99:45:16:
58:fb:c5:9b:1b:fa:af:25:90:78:c5:b7:fc:77:a3:26:98:50:
97:47:2c:81:2c:a0:a1:bd:bb:77:3b:5b:89:58:f4:31:87:97:
b4:bc:05:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:46:03 2026 by rpki-client