Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
File: 0gXOrys2rZ_lGQaehrlONtLsS94.mft (raw, json)
Hash identifier: xqkAMQXcihCyO210NYncODtbE67J+vaLPhGQUiVs9hc=
Subject key identifier: E8:28:09:2A:79:2E:3C:38:1B:27:E6:52:35:57:15:E9:82:0C:03:40
Authority key identifier: D2:05:CE:AF:2B:36:AD:9F:E5:19:06:9E:86:B9:4E:36:D2:EC:4B:DE
Certificate issuer: /CN=d205ceaf2b36ad9fe519069e86b94e36d2ec4bde
Certificate serial: 019E209181C046DF6A97DBCAF008E052D909
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
Manifest number: 0C37
Signing time: Wed 13 May 2026 09:01:07 +0000
Manifest this update: Wed 13 May 2026 09:01:07 +0000
Manifest next update: Thu 14 May 2026 09:01:07 +0000
Files and hashes: 1: 0gXOrys2rZ_lGQaehrlONtLsS94.crl (hash: Zqvyrx5Aj3e0KeHpb4msHTBgGc4kZk7VAqmJzxCvoqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:81:c0:46:df:6a:97:db:ca:f0:08:e0:52:d9:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d205ceaf2b36ad9fe519069e86b94e36d2ec4bde
Validity
Not Before: May 13 09:01:07 2026 GMT
Not After : May 14 09:01:07 2026 GMT
Subject: CN=e828092a792e3c381b27e652355715e9820c0340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d8:6b:1e:1a:ee:c0:61:70:3e:c3:40:db:03:
88:2d:80:15:04:73:51:97:dd:f4:01:43:3f:ed:cf:
88:dd:44:df:c4:3b:9a:60:f8:8d:f7:23:b9:c5:24:
fc:b5:39:91:30:38:3f:06:0c:da:e3:7c:0d:09:95:
c9:b9:6d:35:82:c8:e4:9c:e0:c3:1d:06:bb:1c:bf:
3c:6e:8a:7f:52:85:e7:16:57:b4:fa:5d:fc:8d:40:
6b:fa:03:d7:44:db:c8:1d:c6:4d:5e:59:e0:c9:1b:
a0:b2:f1:d8:05:33:81:99:2d:43:2e:0e:98:ab:e8:
3d:d3:fe:f3:cb:17:28:07:9b:41:b5:e1:f6:96:2c:
2f:88:c1:02:f9:ad:78:67:86:97:15:ee:a3:9f:09:
6c:af:f2:8e:98:05:4a:d5:68:8b:45:fe:c6:88:73:
bd:da:45:56:18:9f:35:f5:e1:8b:1b:26:df:78:43:
ad:14:77:c8:0e:dc:34:60:48:66:aa:72:55:87:cc:
f8:77:08:6a:04:40:f5:59:9f:89:2c:72:d4:22:80:
87:f2:b4:81:08:52:36:17:2e:41:c7:10:81:16:8b:
a7:bb:05:d5:e8:f9:7a:3d:61:19:f3:55:55:47:78:
99:31:fb:1a:66:0a:ca:fa:8c:8f:c3:1e:9b:2d:d6:
88:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:28:09:2A:79:2E:3C:38:1B:27:E6:52:35:57:15:E9:82:0C:03:40
X509v3 Authority Key Identifier:
keyid:D2:05:CE:AF:2B:36:AD:9F:E5:19:06:9E:86:B9:4E:36:D2:EC:4B:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:d8:72:fa:b3:2e:bd:a5:9f:09:17:5a:fd:9e:00:14:d1:aa:
42:0e:4a:ab:0b:f2:96:d1:82:b4:74:c9:01:7e:ae:81:46:f6:
2f:56:21:de:fb:d8:de:2a:0f:59:44:f2:86:b1:27:db:10:6f:
3a:d6:19:7a:6e:82:9a:d2:75:73:5c:c1:fb:23:78:36:c0:76:
a1:6d:8c:72:46:42:22:6c:6a:57:36:cd:87:24:4a:9d:8f:00:
f2:f0:cd:80:d1:4d:57:68:f1:af:e7:f0:8a:a8:e6:a8:d4:c4:
6d:74:0f:b4:06:35:af:32:df:80:7d:b9:d0:a4:da:be:be:0d:
e1:cd:ac:06:5c:d0:10:fd:77:d6:12:ed:7a:6c:36:72:79:8f:
54:4e:da:a3:f7:8a:a4:0c:1d:24:3e:58:cf:d3:7b:5e:7b:7b:
2b:55:fc:11:30:38:cd:5d:37:27:7f:87:b1:06:c3:a5:71:8c:
13:31:3c:6d:be:39:de:0f:e1:a8:d5:d5:d7:80:0b:52:6b:1f:
c1:0e:f5:4e:31:cf:dd:86:a1:06:8c:23:d3:4b:54:08:22:32:
89:b4:af:0a:ee:56:90:82:84:b0:ad:fc:fd:76:f8:8a:e0:b1:
73:2c:ab:ee:5e:e2:14:ed:8b:a2:af:fd:cb:2b:43:9a:4b:07:
8d:99:8d:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:22:37 2026 by rpki-client