Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
File: ao33d2sW0oLgTGluJYqk-fnOnJg.mft (raw, json)
Hash identifier: GoDSMGUx+nVdF4497HGs/gKc1+yt/jWdAihffDJ/kP8=
Subject key identifier: F2:00:10:2D:96:FE:EE:47:BD:86:1E:7D:E6:17:95:FA:46:69:F1:DA
Authority key identifier: 6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
Certificate issuer: /CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Certificate serial: 019E216CCF74820ED564982EBA515EA1663F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
Manifest number: 0CF9
Signing time: Wed 13 May 2026 13:00:39 +0000
Manifest this update: Wed 13 May 2026 13:00:39 +0000
Manifest next update: Thu 14 May 2026 13:00:39 +0000
Files and hashes: 1: GmFXXmDlxbUAsewZb2XP6yyDi4w.roa (hash: t86pSAuRTeL1p9o68CyCCsghXoQGwpFAgB1l7sjE7zs=)
2: ao33d2sW0oLgTGluJYqk-fnOnJg.crl (hash: XGvaY96wq7VwQlXr+0AY68cd/nXhAbn6ZhX5hSqRFn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:6c:cf:74:82:0e:d5:64:98:2e:ba:51:5e:a1:66:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Validity
Not Before: May 13 13:00:39 2026 GMT
Not After : May 14 13:00:39 2026 GMT
Subject: CN=f200102d96feee47bd861e7de61795fa4669f1da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5c:e4:c3:20:4b:79:de:00:25:84:01:50:67:
37:8f:db:3d:15:b8:34:a4:7a:69:67:93:7f:e4:8b:
f3:08:eb:19:38:8d:a5:85:45:06:e8:d0:8c:ad:e4:
77:ef:15:68:ed:9a:cb:5b:d0:f1:33:17:1b:ac:e2:
bc:b3:97:3b:74:91:e8:ca:1b:00:98:ee:a1:25:48:
d1:bf:e1:9a:a2:4d:a8:7e:9a:0c:40:77:41:fa:ea:
03:83:5b:86:b2:d0:ac:51:8c:d6:e7:76:25:12:8a:
36:2f:5a:ae:3a:2d:aa:e4:b2:a9:32:77:ba:75:44:
89:e1:a4:c6:77:f3:9b:7a:a2:5b:11:31:a3:1a:ee:
64:22:a9:a1:fd:29:6b:bf:fd:88:13:df:32:6f:75:
05:b9:43:ae:44:5b:28:38:c7:15:c1:f9:77:5c:4d:
6e:88:f9:91:f5:e8:a7:13:d3:a7:7a:16:e0:5c:5b:
4a:b9:eb:e8:2c:0c:33:08:3e:9e:ee:aa:ec:e4:07:
db:49:e3:66:4e:ae:df:d1:38:ae:19:c5:6a:51:71:
04:51:c2:c2:a1:99:1b:d3:ac:d5:fc:bf:a4:92:1b:
29:8f:83:4d:02:f6:55:2e:66:ab:e1:6d:c6:81:a2:
c9:f2:d3:47:bd:50:96:c0:f1:e0:f1:a6:e5:c2:05:
f7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:00:10:2D:96:FE:EE:47:BD:86:1E:7D:E6:17:95:FA:46:69:F1:DA
X509v3 Authority Key Identifier:
keyid:6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:84:0a:cd:90:e5:9a:da:4f:5f:ae:7b:b9:5b:fc:46:22:aa:
1d:9d:6e:c8:36:25:24:8d:1e:17:31:c5:35:ea:01:8c:8c:ac:
32:70:ed:9d:49:fd:c9:b5:26:5d:37:9f:79:04:5f:2c:db:fe:
63:c9:26:58:61:de:52:c1:85:b5:41:3d:ef:86:8f:97:88:07:
37:e6:c3:ad:fa:33:5d:a2:1d:46:41:90:cc:83:5e:be:90:dc:
14:88:7d:91:67:5e:e4:58:72:76:49:14:fe:d8:ac:45:82:c4:
f6:67:61:3e:46:3f:bf:0d:4d:42:f2:a7:90:60:37:52:c3:02:
80:f6:e6:20:fe:86:f3:df:ee:f6:de:ad:ff:32:fd:60:b0:27:
75:13:36:fc:f6:a7:19:ea:98:21:f5:a9:2a:dc:21:ad:ee:8c:
32:ee:c4:eb:36:df:6d:40:82:ef:50:e4:63:64:7f:a9:8f:a1:
45:21:02:ef:93:c2:cf:37:76:91:32:a0:78:cc:c0:69:ef:dc:
83:ba:58:70:c7:10:d6:79:f0:7b:56:a6:96:75:37:f9:fe:cc:
bf:73:53:04:1a:e9:b9:af:f0:1a:35:d0:04:37:d2:d7:34:42:
e6:f3:04:d9:0e:c2:e0:7f:0e:64:fd:58:1b:cc:1b:08:85:fb:
71:54:4d:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 16:21:34 2026 by rpki-client