Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
File: 0OhNbWqe7eaC7xtcePGz8KMxORE.mft (raw, json)
Hash identifier: OSORO3UX9QrnBEiLnMHNLLxB5+4Q9gTt1dsEbcFDkMU=
Subject key identifier: 04:DB:B9:E7:58:CC:6E:F8:B9:42:52:C5:2B:02:37:71:F0:A0:D0:92
Authority key identifier: D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
Certificate issuer: /CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Certificate serial: 019E1E6C4BB5A03A65DFAE9704307FB2F1B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
Manifest number: 0ADA
Signing time: Tue 12 May 2026 23:01:14 +0000
Manifest this update: Tue 12 May 2026 23:01:14 +0000
Manifest next update: Wed 13 May 2026 23:01:14 +0000
Files and hashes: 1: 0OhNbWqe7eaC7xtcePGz8KMxORE.crl (hash: 6rXoFT20x7xZ+kpM1zHYou15/hWZUAvfbV5zRIb/dqs=)
2: iG53FLKNGEtI7O_-qbJCuOHpkfY.roa (hash: btGtfmg9m2lBCFlLyRHCIrg7YepxRxneqBtZfQH7n/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:4b:b5:a0:3a:65:df:ae:97:04:30:7f:b2:f1:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Validity
Not Before: May 12 23:01:14 2026 GMT
Not After : May 13 23:01:14 2026 GMT
Subject: CN=04dbb9e758cc6ef8b94252c52b023771f0a0d092
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:9d:b3:7d:92:99:16:2d:87:78:13:85:35:fb:
54:a9:af:be:62:73:92:7e:b4:2e:1c:15:c9:9d:a2:
de:8f:2e:38:65:22:03:2d:b3:c1:09:d6:5a:db:21:
78:b4:f4:8f:7b:ef:a5:ed:7b:d2:63:ef:87:17:bb:
f3:60:db:8a:bd:8d:f8:91:a9:d8:0a:4c:ba:ce:b8:
79:fc:be:ad:64:d5:5a:5e:f6:41:1e:fd:f9:f7:2c:
6d:0e:d7:49:08:77:79:08:5e:0e:5b:33:9c:68:89:
a6:42:02:1c:32:95:07:17:43:db:a0:06:45:bd:b2:
34:e4:66:f6:14:3e:19:5a:ec:91:86:1d:c5:be:5b:
5b:4b:f0:cf:ea:2e:d9:65:e8:d3:e7:fb:a6:1f:a7:
32:58:fc:c8:22:a7:37:70:f0:b0:d1:f1:65:e6:1e:
c2:90:af:60:eb:34:ff:29:8a:3f:ce:40:c7:bc:a1:
6a:47:c4:73:0c:8c:28:3f:4e:23:3c:d3:44:32:fa:
73:a5:7d:4e:4f:0b:a8:18:9f:cf:5a:f6:0d:08:db:
b7:2d:72:a8:67:44:e5:d9:ab:85:a1:dc:fa:85:df:
81:0a:25:9a:2f:94:24:a9:3c:cd:de:c9:e1:f9:a8:
97:83:b4:93:cd:a6:0c:20:e9:9d:35:fc:99:ed:4a:
61:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:DB:B9:E7:58:CC:6E:F8:B9:42:52:C5:2B:02:37:71:F0:A0:D0:92
X509v3 Authority Key Identifier:
keyid:D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:bf:3b:b4:7a:3a:9a:5c:b2:7b:cd:8e:be:89:68:42:b1:be:
a6:9c:69:b8:25:71:53:4c:1d:cd:65:46:fa:d7:1e:e7:29:f2:
22:5a:9a:e6:94:8c:9f:39:5e:bc:1c:a6:20:67:cb:3d:89:a3:
f3:36:69:81:c2:1a:dd:2c:6c:b0:8a:93:38:50:fb:f4:70:69:
c2:bd:fd:da:94:51:58:2d:66:52:d5:6b:31:45:66:0d:9f:88:
8d:1b:05:89:b3:85:94:d1:2d:3b:2a:f9:cf:58:ea:62:fa:e3:
32:99:c4:5d:9e:b8:e6:4d:b5:d0:52:2f:77:69:43:7e:3d:9a:
9d:9b:f9:15:9b:4b:bf:67:4c:57:4c:fe:b5:37:66:5a:fe:fe:
5d:fc:b8:1e:3a:d1:a5:1b:1d:1b:c2:51:1f:64:f9:17:79:80:
ef:ff:da:a1:30:e3:c3:27:36:81:b4:1f:36:82:6c:e6:0e:b9:
ff:36:db:f4:75:39:10:a9:70:5a:1d:ae:3f:1b:28:bc:a4:8e:
59:f7:ac:e1:ab:ec:a8:b7:b4:11:3e:b9:1f:b8:1b:02:8d:9a:
59:e0:8f:74:05:f3:39:21:ea:dc:27:b2:6a:e4:20:53:3d:34:
69:c2:ac:65:4e:44:27:f8:36:ef:16:98:ad:7b:f8:bb:cd:e1:
d7:3b:a1:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:52:43 2026 by rpki-client