Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
File: 2OnkD_n7tigNo26XLyDTElAMGFw.mft (raw, json)
Hash identifier: eHCJh8jfA8Xbfk0Z41LeP4Z4GIjk+E5pzH6HF2QBkeo=
Subject key identifier: A2:DE:A3:C5:AB:75:5F:82:E8:3C:B6:BC:08:2E:9D:6A:D9:BB:72:8B
Authority key identifier: D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C
Certificate issuer: /CN=d8e9e40ff9fbb6280da36e972f20d312500c185c
Certificate serial: 019D265F0F9E9A43E064BE894F00EC3F9C2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
Manifest number: 156E
Signing time: Wed 25 Mar 2026 19:00:57 +0000
Manifest this update: Wed 25 Mar 2026 19:00:57 +0000
Manifest next update: Thu 26 Mar 2026 19:00:57 +0000
Files and hashes: 1: 2OnkD_n7tigNo26XLyDTElAMGFw.crl (hash: vvC56EMq/XmDFdGW199tfuHuzkOe+cc91+ZY6NzbRKc=)
2: jZ_PcWcN6a-O2Z-3tx9t6lTT23M.roa (hash: EYrD0BtGRs4bNIFPrVTFK250phWOgkEv3oi3twZMLNA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:0f:9e:9a:43:e0:64:be:89:4f:00:ec:3f:9c:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8e9e40ff9fbb6280da36e972f20d312500c185c
Validity
Not Before: Mar 25 19:00:57 2026 GMT
Not After : Mar 26 19:00:57 2026 GMT
Subject: CN=a2dea3c5ab755f82e83cb6bc082e9d6ad9bb728b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e5:85:3d:43:01:01:9b:7f:62:7e:cd:7e:cb:
aa:85:d7:b3:07:d7:fa:9f:45:fe:c7:51:ca:57:c6:
a3:e6:e1:ef:ef:3c:db:aa:d1:8c:80:4f:7b:22:37:
86:52:c2:2a:af:6f:88:21:43:45:e3:d4:31:aa:a1:
59:df:29:18:41:7e:d3:5f:62:3e:02:57:25:14:11:
e2:1f:14:d9:b5:7e:72:ee:dd:8c:cf:fe:60:55:4e:
84:d0:8e:37:a3:a5:05:53:50:30:a4:06:83:1d:2c:
d6:93:75:88:aa:55:3e:d1:e0:e7:0e:2e:49:a9:2f:
98:19:04:db:b0:d0:d4:b1:8a:00:5b:53:4c:a4:e6:
53:b5:ea:a2:0c:79:c0:fe:e9:66:ff:cf:d6:77:01:
33:3a:d8:9e:01:26:99:b3:e5:8d:07:a0:a5:c4:85:
3b:6b:9e:85:b7:24:34:c9:3d:12:b5:f6:cd:d7:41:
bf:cb:c3:4d:70:6b:d8:9a:45:3e:a2:21:2c:de:ea:
88:c1:ab:6a:57:65:76:95:76:0f:18:99:f7:cb:ae:
74:c8:b7:87:3c:4d:2e:00:75:f5:73:db:19:5b:2c:
6f:a9:ea:40:9f:12:a8:89:05:5d:4b:17:ff:d5:d8:
2e:04:1b:8f:af:e1:3b:1d:1f:65:42:c4:02:51:ac:
bd:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:DE:A3:C5:AB:75:5F:82:E8:3C:B6:BC:08:2E:9D:6A:D9:BB:72:8B
X509v3 Authority Key Identifier:
keyid:D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:a6:27:66:ae:89:d8:16:72:b2:3c:4a:15:01:7a:11:8b:4c:
6a:85:58:c8:61:cb:13:66:d3:c2:83:e4:89:8f:b2:be:47:b6:
98:b2:6b:b0:ee:a9:27:bb:25:7e:b7:e8:db:5a:e6:87:35:3a:
b1:b8:30:8c:e1:9b:cf:89:4b:a5:40:a4:31:ed:1e:4a:09:40:
3d:d9:dc:4e:ff:82:07:c0:c1:30:0c:60:76:ab:ab:35:4b:f5:
21:a6:59:0a:ef:86:b2:af:ee:d0:d3:da:a6:c8:7f:94:40:fb:
a3:3d:b9:7e:06:cc:1a:87:55:08:db:64:1c:03:88:80:06:e5:
e8:5a:40:3c:80:b3:47:3e:00:d0:01:a2:f8:90:b9:01:44:43:
4b:01:54:28:95:a0:39:54:75:11:0f:0c:14:d2:b2:89:f7:8a:
19:cf:6c:47:2f:6a:f9:8b:b9:2c:9e:e1:fa:44:61:9a:2b:8e:
26:d3:0d:4d:66:8d:a0:0f:02:fe:a1:50:0c:e9:8b:60:72:78:
d2:06:99:23:2b:67:71:2c:96:c1:4c:25:06:aa:a5:5e:e9:1d:
ef:f2:02:24:e8:dd:3b:3a:db:21:02:57:4b:bc:1f:0d:40:b7:
78:ef:cd:43:50:79:85:fe:78:df:82:b3:ae:5c:ea:cf:2e:64:
6d:ee:9c:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mXw+emkPgZL6JTwDsP5wsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ZTllNDBmZjlmYmI2MjgwZGEzNmU5NzJmMjBkMzEyNTAw
YzE4NWMwHhcNMjYwMzI1MTkwMDU3WhcNMjYwMzI2MTkwMDU3WjAzMTEwLwYDVQQD
EyhhMmRlYTNjNWFiNzU1ZjgyZTgzY2I2YmMwODJlOWQ2YWQ5YmI3MjhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjuWFPUMBAZt/Yn7NfsuqhdezB9f6
n0X+x1HKV8aj5uHv7zzbqtGMgE97IjeGUsIqr2+IIUNF49QxqqFZ3ykYQX7TX2I+
AlclFBHiHxTZtX5y7t2Mz/5gVU6E0I43o6UFU1AwpAaDHSzWk3WIqlU+0eDnDi5J
qS+YGQTbsNDUsYoAW1NMpOZTteqiDHnA/ulm/8/WdwEzOtieASaZs+WNB6ClxIU7
a56FtyQ0yT0StfbN10G/y8NNcGvYmkU+oiEs3uqIwatqV2V2lXYPGJn3y650yLeH
PE0uAHX1c9sZWyxvqepAnxKoiQVdSxf/1dguBBuPr+E7HR9lQsQCUay9yQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKLeo8WrdV+C6Dy2vAgunWrZu3KLMB8GA1UdIwQY
MBaAFNjp5A/5+7YoDaNuly8g0xJQDBhcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMk9ua0Rfbjd0aWdObzI2WEx5RFRFbEFNR0Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS84NzM4YjktMmQwYS00ZWY2LWFmYWQt
MWFlNTA2ZWExNzYwLzEvMk9ua0Rfbjd0aWdObzI2WEx5RFRFbEFNR0Z3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS84NzM4YjktMmQwYS00ZWY2LWFmYWQtMWFlNTA2ZWExNzYw
LzEvMk9ua0Rfbjd0aWdObzI2WEx5RFRFbEFNR0Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGqYnZq6J
2BZysjxKFQF6EYtMaoVYyGHLE2bTwoPkiY+yvke2mLJrsO6pJ7slfrfo21rmhzU6
sbgwjOGbz4lLpUCkMe0eSglAPdncTv+CB8DBMAxgdqurNUv1IaZZCu+Gsq/u0NPa
psh/lED7oz25fgbMGodVCNtkHAOIgAbl6FpAPICzRz4A0AGi+JC5AURDSwFUKJWg
OVR1EQ8MFNKyifeKGc9sRy9q+Yu5LJ7h+kRhmiuOJtMNTWaNoA8C/qFQDOmLYHJ4
0gaZIytncSyWwUwlBqqlXukd7/ICJOjdOzrbIQJXS7wfDUC3eO/NQ1B5hf5434Kz
rlzqzy5kbe6caA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 05:05:20 2026 by rpki-client