Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
File: 2O6Q00LYZepn8rDS-3TAOfg-Skg.mft (raw, json)
Hash identifier: RtES1GZ78cv71FXKL3IxOwx27kYeFz6DvSymA1PqW3k=
Subject key identifier: 05:41:0E:B2:FA:72:DB:EF:41:52:3B:54:C3:32:73:E2:EB:92:E2:8C
Authority key identifier: D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48
Certificate issuer: /CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48
Certificate serial: 019E1C46DC679E5A52A2CC150E2F5C67F283
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
Manifest number: 0628
Signing time: Tue 12 May 2026 13:01:06 +0000
Manifest this update: Tue 12 May 2026 13:01:06 +0000
Manifest next update: Wed 13 May 2026 13:01:06 +0000
Files and hashes: 1: 2O6Q00LYZepn8rDS-3TAOfg-Skg.crl (hash: fIMTMx8n8smpnrJ3ltCcxGgH+ICjnGwu4/Ojm7jBAuU=)
2: OExalT86I2jE92WcpxOz8v2EM5M.roa (hash: 4ql4+dXrno2rRd9rLsGdlFCa1N0RlG63lEsTRJIQb8w=)
3: jkJ-dpXyGf9S_poPiFsD4kU6mb4.roa (hash: cQtWmc7dZO030WCUTKzMCSngnAwQZjveS+i9Nuw4lVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 13:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:46:dc:67:9e:5a:52:a2:cc:15:0e:2f:5c:67:f2:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48
Validity
Not Before: May 12 13:01:06 2026 GMT
Not After : May 13 13:01:06 2026 GMT
Subject: CN=05410eb2fa72dbef41523b54c33273e2eb92e28c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b1:0c:79:29:a5:fc:68:71:ed:2a:39:0e:cc:
33:04:83:34:8c:02:a6:a3:45:65:35:3c:7f:82:78:
17:80:79:8c:e4:87:01:9d:8b:17:86:dc:50:1c:33:
22:bf:43:15:66:78:cc:64:69:99:a8:3f:4c:d8:26:
dd:e5:f6:48:93:a4:b0:46:cf:42:8e:47:41:c3:5a:
47:36:b8:bd:09:58:8e:6e:13:ba:36:69:7f:e5:f9:
c1:b6:82:9d:ba:40:da:e0:83:2c:23:61:b4:ae:37:
63:96:7e:59:9b:4f:af:63:d3:ef:46:a7:de:28:90:
0b:e6:14:e5:fa:8a:4c:be:d8:d1:98:a6:6f:42:5a:
cb:eb:74:08:bf:61:f2:52:bc:b3:c1:22:29:6a:10:
8b:31:78:5d:99:f1:70:fc:8a:9e:99:fb:76:88:41:
21:15:98:48:50:8a:3d:c8:ae:cf:97:e6:79:0e:81:
13:be:2f:a0:22:08:8c:0a:a2:79:79:dd:28:2a:56:
43:65:3d:e5:92:9f:93:24:70:4d:5a:99:74:82:9f:
ab:fd:32:23:81:b8:2b:ee:fe:ff:e2:f9:4f:f3:bd:
36:2d:c0:b1:77:be:7b:38:dc:70:9b:d1:17:94:c1:
7f:5b:f5:ee:c0:2c:7b:03:c6:9e:cc:89:63:54:a2:
92:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:41:0E:B2:FA:72:DB:EF:41:52:3B:54:C3:32:73:E2:EB:92:E2:8C
X509v3 Authority Key Identifier:
keyid:D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:e1:d4:fc:73:a1:90:de:9a:7d:99:39:7c:1c:6f:39:53:65:
0f:16:aa:07:a5:2b:98:6c:4a:55:1f:9b:73:d2:f2:70:70:fc:
92:b0:9a:0c:0e:c7:95:a7:07:1b:a2:2b:46:f4:0b:3f:b4:3a:
2c:2e:9e:5d:82:c5:ed:68:05:d9:91:04:ff:d1:f9:ce:3a:9a:
d1:7b:b9:11:a2:4f:8a:d8:4d:b0:09:74:88:ce:7e:ab:89:3a:
31:aa:a3:d6:ee:cf:71:c7:34:36:63:24:1e:b5:a5:2b:de:9f:
9d:37:64:81:b6:07:70:a4:db:aa:8c:2f:3e:0f:05:63:21:03:
95:5e:54:a8:fa:79:b6:df:6d:da:24:7e:e4:b4:b7:4d:0d:03:
4f:f4:65:40:cd:65:c7:74:39:ed:dc:cf:5a:bf:fc:a3:18:7b:
81:71:3f:c5:e4:8e:97:58:19:0d:3c:d3:4a:1d:96:4b:ab:e0:
7e:f2:b3:5e:d3:8a:a4:92:93:e1:05:4e:8b:b7:d6:c4:61:9d:
68:d0:03:f6:57:54:38:84:6d:fa:7c:23:48:c5:68:f9:79:84:
90:34:e6:eb:0d:f6:ee:3a:bb:a6:19:e5:84:f5:e2:33:21:ab:
2c:47:48:b8:a2:d1:f5:e0:d4:a1:7e:33:cf:ed:76:31:2d:59:
32:d3:ed:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:34:42 2026 by rpki-client