Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.mft
File: o-zqyBJVNKV5R5YtsokD-tesOvk.mft (raw, json)
Hash identifier: UjwChTzNLRi+k0SLRErWLI07CZNEgUFzTU1pTpw0ywA=
Subject key identifier: 22:8C:08:F9:C1:1D:36:48:BD:A4:6A:AB:90:E3:A0:2E:13:54:FB:22
Authority key identifier: A3:EC:EA:C8:12:55:34:A5:79:47:96:2D:B2:89:03:FA:D7:AC:3A:F9
Certificate issuer: /CN=a3eceac8125534a57947962db28903fad7ac3af9
Certificate serial: 019E1FED1B43FC8A3804A5B855E2631219AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o-zqyBJVNKV5R5YtsokD-tesOvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.mft
Manifest number: 1886
Signing time: Wed 13 May 2026 06:01:33 +0000
Manifest this update: Wed 13 May 2026 06:01:33 +0000
Manifest next update: Thu 14 May 2026 06:01:33 +0000
Files and hashes: 1: 2MsPFamPffku1ttx9gaJe1ffa6Y.roa (hash: DHSbfM3R76vdNxci0L/Qjop0BLeabp3SpJ5q1Jd300M=)
2: o-zqyBJVNKV5R5YtsokD-tesOvk.crl (hash: Jwy9QSQWP7IcMyxVmesJBWqbHgVj5c77yvQi5pPBPoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/o-zqyBJVNKV5R5YtsokD-tesOvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ed:1b:43:fc:8a:38:04:a5:b8:55:e2:63:12:19:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3eceac8125534a57947962db28903fad7ac3af9
Validity
Not Before: May 13 06:01:33 2026 GMT
Not After : May 14 06:01:33 2026 GMT
Subject: CN=228c08f9c11d3648bda46aab90e3a02e1354fb22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:89:a8:f8:45:e7:07:87:24:23:ac:64:e0:4b:
ab:5d:a2:61:2d:82:65:3d:89:a2:be:a5:5b:72:0b:
45:f7:2b:9c:74:06:da:10:54:61:9a:32:65:a0:c3:
5d:78:be:93:2a:de:6f:f9:88:ad:38:53:c2:92:26:
e2:fc:0a:1a:3a:65:e2:bc:16:c7:d9:01:86:7a:25:
21:5b:db:07:67:4f:3b:69:5e:50:ef:b1:f4:77:35:
1e:6c:ef:17:83:be:6e:63:f8:fe:b5:24:6c:9c:94:
38:b7:c1:88:72:70:58:9a:26:01:c2:c8:a1:ac:c4:
03:c9:65:6f:72:96:9a:b2:34:94:d7:5e:f1:63:0b:
13:65:35:8f:02:4d:16:44:61:a5:78:d4:88:5d:fd:
18:c9:28:76:86:5f:2f:2e:a8:bc:ea:dc:8f:b4:5c:
59:40:19:71:06:70:28:9f:c3:af:f3:33:0c:7b:08:
7d:62:05:7a:00:04:3c:9f:80:f4:ea:99:3a:85:13:
d3:08:0e:62:b8:f4:dc:22:fc:24:2c:19:c7:af:6e:
f5:fd:4c:ba:07:3a:a3:98:12:37:88:45:fa:bc:2e:
41:74:f9:08:f1:b2:df:73:97:8a:94:f6:7b:cc:4b:
8b:f9:32:4c:2a:aa:9b:05:76:9a:a3:75:03:2f:c2:
b9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:8C:08:F9:C1:1D:36:48:BD:A4:6A:AB:90:E3:A0:2E:13:54:FB:22
X509v3 Authority Key Identifier:
keyid:A3:EC:EA:C8:12:55:34:A5:79:47:96:2D:B2:89:03:FA:D7:AC:3A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o-zqyBJVNKV5R5YtsokD-tesOvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:db:40:b3:05:02:91:da:9b:f9:cf:f7:f6:bf:31:a5:1e:9e:
a4:26:a3:4c:4d:bc:96:29:c9:47:be:f3:e9:4b:69:cd:69:d3:
33:13:b6:6f:43:5b:cb:59:c3:00:96:65:a6:7b:6c:95:ac:e8:
f2:ab:2b:37:74:e0:1b:42:cb:4d:12:4e:bf:46:a8:ed:40:75:
f4:b0:05:ac:21:60:de:b7:c7:73:cc:b5:b7:a6:b3:19:92:2c:
d9:8c:c9:8b:ae:40:63:6e:a2:d7:71:02:11:8b:c7:db:52:81:
82:00:2e:b4:8f:1a:55:b1:3b:b2:17:fd:eb:a7:a1:0c:e7:97:
ec:bb:07:fb:40:29:db:a6:ce:22:26:bf:4e:3c:f6:a7:46:96:
3f:51:f3:2f:a7:62:4e:7a:fb:04:b0:3c:24:c4:05:9d:ee:11:
2d:a6:8f:95:18:4c:8e:cd:57:ce:20:d5:29:db:9d:2f:a5:bb:
5e:ca:f5:35:f0:c3:b5:af:8e:05:62:58:12:e4:42:3f:67:99:
c2:c3:9f:ed:a4:2a:15:84:2b:24:f8:3c:3f:8c:10:72:2d:6d:
31:1b:83:be:24:c5:68:bc:08:1b:21:4e:ae:81:0d:5d:cc:4a:
bb:e8:ab:a4:42:6d:19:8b:e4:5b:6c:7c:be:47:2a:cf:c4:60:
f7:66:1e:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 16:02:54 2026 by rpki-client