Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft
File: oAy0uNVpR3USzleIW6aiiY-8LZU.mft (raw, json)
Hash identifier: lHIRSWCsaBp81nSj8owKR45IH6QS2/jggflN6y/dYTc=
Subject key identifier: EE:86:86:98:17:4F:4B:ED:80:AD:C5:A9:CA:B2:3B:6D:43:6F:F0:CC
Authority key identifier: A0:0C:B4:B8:D5:69:47:75:12:CE:57:88:5B:A6:A2:89:8F:BC:2D:95
Certificate issuer: /CN=a00cb4b8d569477512ce57885ba6a2898fbc2d95
Certificate serial: 019E1C0FCA369640B04BEDD186679BF51D69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oAy0uNVpR3USzleIW6aiiY-8LZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft
Manifest number: 140E
Signing time: Tue 12 May 2026 12:00:57 +0000
Manifest this update: Tue 12 May 2026 12:00:57 +0000
Manifest next update: Wed 13 May 2026 12:00:57 +0000
Files and hashes: 1: 6GbxDT6a6WV6sMU4TLzGDdlwYGg.asa (hash: IznoMM07vrX9zSwsytLqGEh6ipn7AIyTyq5l5KBrdbs=)
2: VN57OoPBsGwrpB2MMJuifcY0BKk.roa (hash: DcZvkcVJE9Z9uRMzY1z6mkbvBqMp9YTBuJgd294hlxc=)
3: oAy0uNVpR3USzleIW6aiiY-8LZU.crl (hash: eNelL9H9mvsfWz3b/HQHOlqTvn4egMCo6DuKTibZ50Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oAy0uNVpR3USzleIW6aiiY-8LZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 12:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:0f:ca:36:96:40:b0:4b:ed:d1:86:67:9b:f5:1d:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a00cb4b8d569477512ce57885ba6a2898fbc2d95
Validity
Not Before: May 12 12:00:57 2026 GMT
Not After : May 13 12:00:57 2026 GMT
Subject: CN=ee868698174f4bed80adc5a9cab23b6d436ff0cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6a:7a:38:b1:59:7e:40:d1:6b:0a:04:e6:c0:
cb:3c:d3:c8:07:68:16:bb:8f:72:af:67:32:63:c7:
21:ea:2e:4f:d1:e3:e9:6f:a0:5c:77:eb:68:5d:39:
b0:1a:62:8f:31:5e:9d:48:0a:0e:d0:ad:32:b4:14:
d1:ca:73:2f:26:71:22:83:e1:5c:98:8d:c9:f0:12:
a8:38:15:4e:d5:4e:cc:e5:fd:a8:37:c9:a7:ba:ea:
eb:03:51:4a:7e:7c:db:23:02:20:9f:d4:9c:dd:5e:
d0:3f:2d:c0:88:ea:16:20:df:f9:e1:73:ea:6b:a5:
4a:c9:81:17:50:8b:fe:7a:8d:4b:d9:b8:ef:7f:9d:
57:52:99:59:ea:e8:e3:49:8b:cb:59:99:39:a9:27:
ef:2f:6d:f9:ac:ea:da:32:9a:0d:68:40:d5:14:90:
e7:d5:18:23:f2:44:43:07:d7:02:b1:b9:fe:71:72:
ce:ac:a7:db:ab:bf:f5:00:53:7b:9a:0a:6a:60:31:
22:61:1e:68:06:49:41:18:a0:86:7d:00:b9:09:c6:
32:87:f0:62:ec:d1:26:0c:d2:80:28:96:a8:6e:9b:
4b:ef:61:15:ef:9f:4e:79:c0:7c:b8:77:37:e2:5d:
68:16:19:78:e7:20:cc:8d:c3:6d:b3:95:64:6a:a4:
e6:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:86:86:98:17:4F:4B:ED:80:AD:C5:A9:CA:B2:3B:6D:43:6F:F0:CC
X509v3 Authority Key Identifier:
keyid:A0:0C:B4:B8:D5:69:47:75:12:CE:57:88:5B:A6:A2:89:8F:BC:2D:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oAy0uNVpR3USzleIW6aiiY-8LZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:b8:2f:57:cf:72:94:59:df:22:15:fc:95:86:cd:39:a8:32:
61:e9:31:4e:47:85:12:38:5a:48:32:47:49:a8:26:f0:1b:46:
7c:ae:6e:ac:70:63:ad:12:93:b0:f1:ad:53:a2:f5:5d:94:68:
c4:f4:09:34:a4:74:ed:18:dc:3f:ee:70:41:de:39:07:00:5c:
32:0f:2d:a4:ce:30:c6:38:f9:cc:a0:49:7d:6c:01:00:3e:65:
39:4b:93:e9:79:b8:e7:a1:e8:83:f6:06:35:2c:1f:2a:88:e0:
ca:18:80:aa:88:06:41:d5:b9:1d:d5:89:10:70:58:32:44:76:
c6:80:7d:a0:4f:87:ed:44:cc:63:23:15:ec:2a:03:72:dd:73:
c5:77:85:37:a6:48:02:c9:3a:63:f5:d6:d1:de:a9:a0:90:07:
ee:23:41:1f:a8:27:7e:0d:b0:d4:48:58:bc:76:26:37:e0:80:
b7:cc:fb:57:63:c9:25:60:be:77:4a:b7:5c:0a:be:e7:59:f1:
38:0f:2c:cc:2a:16:4a:b7:df:db:fc:22:5c:c2:71:36:82:12:
75:18:1c:85:05:64:39:c6:3d:a7:67:18:13:b7:2f:14:dc:bd:
44:26:60:ab:9b:7a:20:ca:14:e8:14:2b:f7:3b:58:a3:b5:bb:
5b:f6:bf:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:23:32 2026 by rpki-client