Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.mft
File: dOEz6h5A_BPgdOMncQpTRKlgtcA.mft (raw, json)
Hash identifier: rAjJr/63/Jz+vxAC4XeMig6edaKmiOUaZx7v9yzmGhg=
Subject key identifier: E0:EF:07:D9:1E:C2:35:77:1F:4D:C9:B1:5F:38:AF:B6:CF:C1:15:12
Authority key identifier: 74:E1:33:EA:1E:40:FC:13:E0:74:E3:27:71:0A:53:44:A9:60:B5:C0
Certificate issuer: /CN=74e133ea1e40fc13e074e327710a5344a960b5c0
Certificate serial: 019E1FB5640455375DE3287D34977204B235
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.mft
Manifest number: 0FB8
Signing time: Wed 13 May 2026 05:00:41 +0000
Manifest this update: Wed 13 May 2026 05:00:41 +0000
Manifest next update: Thu 14 May 2026 05:00:41 +0000
Files and hashes: 1: GeFTU20e0_cCp_QY1xvZa0HLe_o.roa (hash: /NINQkmS7FTdz7cltmoURNxtY32MfCkE77Bo3JP604M=)
2: Gj3q6BUrOlXkSFTxYL-qpFmf_vk.roa (hash: whp8DDz0dPW4+zkA02OHiJY2B4aYPpsEKoqbxk/AXoU=)
3: dOEz6h5A_BPgdOMncQpTRKlgtcA.crl (hash: g+lkX3jxR1LsGMgOKzBfBzZ+/8ftB8o7xl7V2kz1bXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:b5:64:04:55:37:5d:e3:28:7d:34:97:72:04:b2:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e133ea1e40fc13e074e327710a5344a960b5c0
Validity
Not Before: May 13 05:00:41 2026 GMT
Not After : May 14 05:00:41 2026 GMT
Subject: CN=e0ef07d91ec235771f4dc9b15f38afb6cfc11512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d3:84:62:22:a6:0c:fe:18:fc:a4:86:cf:5a:
33:3a:97:9b:c8:98:f8:e9:90:80:4a:76:bf:b1:7f:
25:12:96:f0:bf:3b:7b:9b:cd:00:9c:e6:bb:da:6b:
5f:7a:9f:07:5f:aa:f0:93:9d:e1:e2:08:5e:ac:52:
9f:e3:e1:7d:22:8c:eb:03:9f:76:08:c3:d0:e5:57:
35:c6:72:d9:03:36:9b:05:51:df:8b:83:bd:02:99:
f9:db:5b:0f:c5:1c:fb:02:70:7a:a0:a9:e8:dc:ec:
05:14:06:e0:f3:5b:fe:15:bb:b5:8e:e9:00:c3:be:
df:fd:92:e6:63:d2:78:f7:99:aa:9c:ad:24:2e:99:
6f:da:5a:27:3e:05:76:86:38:d2:11:85:d8:9f:fe:
fc:24:1b:cc:ce:f9:34:ff:91:47:94:78:fd:f6:fb:
10:12:3f:51:e3:8a:3b:96:fc:a9:8a:06:e5:11:b7:
1a:40:62:ef:5b:d6:94:f1:32:e0:55:0f:8a:e3:a2:
44:47:11:cb:37:09:50:56:24:d0:a6:35:5c:0a:2f:
0f:a0:f4:0c:f3:d5:e3:1d:1b:c3:9f:54:29:f3:f7:
4f:c0:f7:86:ae:45:8e:be:4d:ba:df:de:66:76:80:
d9:e5:4e:75:36:06:9b:a4:c3:32:66:bc:f7:c6:27:
af:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:EF:07:D9:1E:C2:35:77:1F:4D:C9:B1:5F:38:AF:B6:CF:C1:15:12
X509v3 Authority Key Identifier:
keyid:74:E1:33:EA:1E:40:FC:13:E0:74:E3:27:71:0A:53:44:A9:60:B5:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:14:5a:ff:24:0c:86:3c:f8:af:2d:6d:61:ad:73:a8:5e:67:
fb:f6:c9:99:a5:3b:11:76:10:6a:86:fe:31:74:ec:d5:9e:b2:
c8:29:9f:fc:eb:9b:03:bc:f6:c9:6f:22:bb:19:9d:a1:46:f3:
b6:10:94:69:dd:01:50:d3:12:4e:61:dc:b1:b9:a3:fe:3b:55:
63:ab:52:84:e1:8d:e6:e8:69:84:64:d4:d2:6f:02:a8:0d:01:
b6:9e:c8:fd:73:ba:fc:d6:e2:75:a6:83:1a:8a:cf:ed:57:db:
b3:fe:48:1d:01:c1:7e:39:4c:17:83:47:8f:07:1e:75:d8:9b:
94:e9:43:1f:9e:e9:44:85:e4:02:d9:99:cb:7d:42:e6:43:28:
81:6d:c1:c8:2a:d1:f9:0f:52:0c:94:a5:c3:0d:e2:a5:b9:2e:
2a:20:84:9b:d3:b9:40:53:c6:27:dd:3c:0b:cc:e4:6f:98:7d:
dd:69:fd:40:d9:bf:f1:f6:2f:a5:da:99:f1:32:75:4e:74:6e:
93:dd:32:54:1f:79:e7:cb:58:aa:fe:ae:1e:6a:db:92:09:07:
b8:54:36:c5:98:0b:9b:f6:49:88:b6:36:3a:e7:f6:d4:b8:f7:
1a:bc:c1:d9:61:78:5a:5a:38:be:a5:ea:41:17:9b:9b:59:6b:
d6:1e:54:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:43:34 2026 by rpki-client