Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
File: 2OnkD_n7tigNo26XLyDTElAMGFw.mft (raw, json)
Hash identifier: 2+uu318rb6P2vhUHCmBAa9qz07/4IrNRLCGOXdKM3hY=
Subject key identifier: E8:E1:58:C6:32:2F:D7:7E:9A:14:97:68:A3:FC:65:16:0C:8A:F1:78
Authority key identifier: D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C
Certificate issuer: /CN=d8e9e40ff9fbb6280da36e972f20d312500c185c
Certificate serial: 019E1D908225FABC349FD94911ABE08BA46B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
Manifest number: 15EE
Signing time: Tue 12 May 2026 19:01:10 +0000
Manifest this update: Tue 12 May 2026 19:01:10 +0000
Manifest next update: Wed 13 May 2026 19:01:10 +0000
Files and hashes: 1: 2OnkD_n7tigNo26XLyDTElAMGFw.crl (hash: n/gIFML8/XW7zbwxXU2NejnzdHBLD6XrtpnR6CrXqBY=)
2: jZ_PcWcN6a-O2Z-3tx9t6lTT23M.roa (hash: EYrD0BtGRs4bNIFPrVTFK250phWOgkEv3oi3twZMLNA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:82:25:fa:bc:34:9f:d9:49:11:ab:e0:8b:a4:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8e9e40ff9fbb6280da36e972f20d312500c185c
Validity
Not Before: May 12 19:01:10 2026 GMT
Not After : May 13 19:01:10 2026 GMT
Subject: CN=e8e158c6322fd77e9a149768a3fc65160c8af178
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a1:8b:e2:60:f5:0b:62:d8:8d:86:48:d6:73:
7f:d1:05:e6:b2:82:53:1d:00:17:86:bf:0a:4e:48:
c5:1a:12:05:a2:12:76:61:5a:10:2b:44:81:be:50:
47:7c:17:80:25:f8:dc:23:92:95:c3:8d:58:f1:37:
a6:d7:4e:cc:7e:f1:32:cb:53:9a:78:f1:47:d3:6c:
c8:66:42:1b:5f:84:bd:7f:64:4c:3d:27:7e:d3:e1:
04:5c:b6:56:1d:4b:56:50:33:b3:bd:91:2a:1b:bf:
67:d6:16:94:a3:86:6d:ff:06:b5:52:ec:43:07:2e:
8b:cb:c4:8c:0c:c4:7e:ee:7e:15:f6:dc:c6:ad:c7:
97:24:27:c3:65:cc:30:26:2c:25:89:05:19:1d:fd:
29:bb:2e:8b:e5:ac:12:86:a8:e3:af:32:dc:2e:3c:
fa:5e:c2:0c:41:88:a2:c3:4b:66:94:e5:77:c1:e0:
1c:fe:e1:ea:bf:8c:bc:d1:f7:14:45:ee:3a:f9:bc:
e2:38:2f:d2:4d:59:98:f0:16:51:29:b2:33:fd:c2:
4e:79:d6:04:e8:98:41:fd:87:0f:68:d5:0d:38:8f:
c1:0e:0a:ea:9c:27:37:1e:cf:17:eb:f4:9a:12:ed:
60:9b:d4:05:8a:04:81:04:27:6b:73:0b:4b:33:e6:
5a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:E1:58:C6:32:2F:D7:7E:9A:14:97:68:A3:FC:65:16:0C:8A:F1:78
X509v3 Authority Key Identifier:
keyid:D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:e5:04:5f:2f:d3:b3:47:e2:b5:7f:aa:e2:e2:1b:b7:ef:cb:
29:46:03:ad:f6:0a:2e:3a:bf:6b:69:45:6d:72:b2:91:e0:c6:
1f:14:a6:6c:74:e6:2a:c3:1d:ed:70:25:85:f2:6a:4c:65:19:
21:4d:28:9e:dc:d3:0d:25:41:55:df:06:54:ba:f7:18:1b:40:
cf:27:68:e9:0c:ac:21:64:23:6c:1a:ce:e0:7a:8d:e3:31:b7:
a1:06:e0:4f:fc:f7:0e:29:52:be:b4:92:bd:5d:80:e9:d7:d0:
9f:d1:97:1d:9a:d9:91:d2:8d:17:40:d7:cd:47:cd:13:3d:bb:
62:ea:02:81:59:f9:4d:25:74:0c:75:e5:08:c3:34:af:cb:3d:
af:48:ae:72:8f:5d:c7:fc:52:44:fd:ae:90:4c:17:40:5c:9e:
ab:ae:86:96:19:84:92:1f:1c:71:32:fc:ca:65:03:e8:7d:49:
b8:58:fa:19:5e:c7:21:b8:57:0f:02:14:ac:49:ff:cf:ec:39:
ca:bf:37:09:8e:e9:b5:ea:c5:07:df:b2:d8:69:9b:57:7e:ac:
ad:0a:30:52:4d:4a:f1:e1:8a:e3:d5:84:83:b2:67:23:06:73:
5f:75:00:d4:1c:3e:e5:49:85:d3:90:73:9b:9d:f4:66:63:dc:
00:4e:21:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:33:08 2026 by rpki-client