Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
File: o3U2my1LsuLe3maGRTE-NE5vHMA.mft (raw, json)
Hash identifier: pIg+X6uXUCpryboZAlvFGstNXZSADn0Bgc3ja4Hn1Yc=
Subject key identifier: 7B:60:72:19:F6:B2:3C:F5:52:9B:B5:7B:1E:23:FB:F4:6C:B9:84:34
Authority key identifier: A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
Certificate issuer: /CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Certificate serial: 019E216D0B2F018BDC30020B94DD746B0AAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
Manifest number: 190C
Signing time: Wed 13 May 2026 13:00:54 +0000
Manifest this update: Wed 13 May 2026 13:00:54 +0000
Manifest next update: Thu 14 May 2026 13:00:54 +0000
Files and hashes: 1: cqrDqsllU4angXR7ZhiixighcHI.roa (hash: fhOWug7UyzusWzCmpcbK8cX3/PPspaEdcPiG9KdZ6F4=)
2: o3U2my1LsuLe3maGRTE-NE5vHMA.crl (hash: GASln3Fph4ir7gzNEzme/hRN0qi2Aj1N/4eTFakNyuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:6d:0b:2f:01:8b:dc:30:02:0b:94:dd:74:6b:0a:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Validity
Not Before: May 13 13:00:54 2026 GMT
Not After : May 14 13:00:54 2026 GMT
Subject: CN=7b607219f6b23cf5529bb57b1e23fbf46cb98434
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:83:a7:94:ad:e7:51:a5:02:07:33:74:e6:e0:
49:81:78:a9:1d:d1:56:52:09:c8:55:be:0f:d1:95:
50:2c:8d:ed:2e:23:fb:27:c0:98:97:5b:16:7b:7e:
0e:17:56:79:2d:0a:68:c4:34:e4:3b:1f:f8:86:cc:
2b:37:95:78:af:5f:1d:25:88:d8:ea:c2:17:d6:05:
86:89:0b:d6:1e:2b:d1:ed:2e:c7:09:47:78:20:59:
c9:b1:e1:92:8e:eb:c3:18:e8:e4:a1:e6:f4:74:55:
f5:04:7e:c8:94:21:2c:12:fc:9f:ae:05:f2:f0:eb:
08:b4:d1:42:5c:9e:47:dc:1f:ad:0e:dd:97:5c:50:
8b:04:64:5a:8b:68:30:74:1b:d5:52:a7:b6:0f:fd:
b0:bd:94:d1:13:5a:d1:ff:8e:91:3b:f5:00:ef:1f:
cd:83:7c:f8:da:11:2f:8a:3b:f2:9c:54:51:1c:78:
a3:74:c5:dc:38:c9:ef:66:f5:db:aa:e2:94:de:7b:
79:c1:4c:7c:61:30:49:ea:29:10:61:89:0f:13:93:
06:00:34:e2:08:e3:91:ee:1e:38:a7:77:b6:46:d1:
79:0e:fc:87:ff:d4:fc:54:08:78:a0:e5:19:8c:fe:
dc:9b:19:d5:f6:9a:82:49:45:3c:ff:da:09:e9:80:
fa:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:60:72:19:F6:B2:3C:F5:52:9B:B5:7B:1E:23:FB:F4:6C:B9:84:34
X509v3 Authority Key Identifier:
keyid:A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:fd:a2:98:f3:d4:d3:53:35:56:7f:43:12:91:9d:92:82:8f:
ad:ba:34:cd:26:8b:4d:e3:29:b9:ab:4f:a7:07:c2:6b:84:0b:
be:7f:13:13:28:10:61:f3:5e:56:cc:40:0a:62:3b:65:6a:4b:
dc:3b:84:05:51:bf:de:7c:52:47:75:45:22:5e:cb:76:6d:76:
e6:15:1e:93:f2:fa:9f:d7:33:e6:19:a4:9f:ac:9a:56:9f:11:
f4:16:1c:60:6e:a4:2d:39:20:48:40:2a:61:d0:02:b0:9a:89:
75:c3:51:62:97:e8:b0:ce:98:41:99:66:45:48:48:fd:1a:f5:
a0:ae:6f:bc:37:ef:56:2a:a7:c6:b4:b0:56:40:19:3f:83:08:
d6:0a:85:b1:98:47:46:4b:23:da:8d:d6:da:0f:0a:1c:62:c5:
e8:e9:8a:bd:f9:ad:99:b2:87:88:7e:51:b2:be:64:d7:3d:bd:
e5:ae:42:25:39:83:d9:af:22:c5:13:bc:65:06:32:1a:46:d5:
03:ee:fd:cb:69:56:76:97:2e:cf:6f:ce:52:fe:28:6a:5f:3a:
04:1a:5a:d4:00:1b:6b:92:d5:06:ec:1d:a7:c8:b3:fd:96:e5:
11:fa:9e:b9:cb:a1:2c:63:c5:6c:43:e0:03:c3:95:00:76:ad:
93:19:06:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:20:21 2026 by rpki-client