Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft
File: o8-bZGUWkotdBsKoGestvA_pkgo.mft (raw, json)
Hash identifier: e9xu1FipT7Wf1fWZ3hDJhcHljRgrJDM70mP1uCyMYxA=
Subject key identifier: D6:5A:F8:03:0A:AA:CA:73:A5:32:CA:F9:A5:09:C9:79:AE:4A:63:B3
Authority key identifier: A3:CF:9B:64:65:16:92:8B:5D:06:C2:A8:19:EB:2D:BC:0F:E9:92:0A
Certificate issuer: /CN=a3cf9b646516928b5d06c2a819eb2dbc0fe9920a
Certificate serial: 019E202416C15083E2FF3F229B89629578CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8-bZGUWkotdBsKoGestvA_pkgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft
Manifest number: 035B
Signing time: Wed 13 May 2026 07:01:36 +0000
Manifest this update: Wed 13 May 2026 07:01:36 +0000
Manifest next update: Thu 14 May 2026 07:01:36 +0000
Files and hashes: 1: 699-AVQHq9A-mOz16n5eWo61zOY.roa (hash: qmU7lIRPt6s/fJ1Asi4/dDcElLOynVYiN3n5hO5Ttcc=)
2: kp_i2pjZWCStZ6J6pQgyDWR7Sqg.roa (hash: LLIB6t+pAw1QpuEvAEpebhxvws4LvkK/fY8SsOFrje8=)
3: o8-bZGUWkotdBsKoGestvA_pkgo.crl (hash: xG2qeH06YXZUb7Do1Fzh/c1jr2PFbnDIDp2D2vS9A6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8-bZGUWkotdBsKoGestvA_pkgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:24:16:c1:50:83:e2:ff:3f:22:9b:89:62:95:78:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3cf9b646516928b5d06c2a819eb2dbc0fe9920a
Validity
Not Before: May 13 07:01:36 2026 GMT
Not After : May 14 07:01:36 2026 GMT
Subject: CN=d65af8030aaaca73a532caf9a509c979ae4a63b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ab:ee:69:b8:e2:c0:d9:6f:0d:f1:53:74:39:
66:76:ef:a8:93:1b:12:63:b1:33:f9:47:32:fd:d4:
de:36:ca:1a:45:ee:d7:2e:3d:4b:35:c9:27:f1:53:
80:88:cd:eb:06:c7:07:d6:5d:b2:1d:ed:ca:73:4b:
68:fb:68:68:de:8c:e2:89:c3:0c:7a:97:7f:91:36:
82:67:9d:79:f0:dc:96:20:f0:ef:65:f8:33:e1:a8:
06:4d:e6:ec:02:a9:57:c2:aa:f3:8a:7a:70:d1:84:
54:8c:30:69:a1:a8:31:98:6e:62:b4:da:e3:03:ff:
c9:1d:8e:c8:27:d4:fb:f7:2e:e2:d2:20:0b:26:72:
bf:5b:a2:29:34:35:e4:4c:6c:c4:13:92:76:f2:6f:
c0:3d:de:d6:69:da:64:66:54:e7:9c:8d:32:20:1b:
58:73:24:f2:b6:89:d0:dc:f9:f3:f4:ad:75:86:aa:
6f:a9:6f:43:7a:3c:c9:a6:1b:2d:46:15:c6:66:02:
94:d7:bc:ad:0a:a9:56:c6:6f:af:b2:b8:f4:b9:70:
df:67:e4:5e:d4:ca:43:4c:3d:a3:d1:31:3f:73:1f:
0d:58:5e:db:a8:10:9c:c4:8e:62:fc:d4:da:b9:cf:
8b:d3:41:26:01:85:4a:14:91:81:ba:82:fa:71:70:
63:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:5A:F8:03:0A:AA:CA:73:A5:32:CA:F9:A5:09:C9:79:AE:4A:63:B3
X509v3 Authority Key Identifier:
keyid:A3:CF:9B:64:65:16:92:8B:5D:06:C2:A8:19:EB:2D:BC:0F:E9:92:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8-bZGUWkotdBsKoGestvA_pkgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:fb:d0:e7:8f:d6:7a:df:6e:ba:1e:22:f4:f8:ed:3d:81:db:
50:23:60:c9:fe:04:19:d4:69:82:6e:12:f5:05:5b:e9:74:11:
b9:99:35:16:77:bd:63:8f:68:41:c6:36:5b:26:0a:7e:86:0c:
57:ba:dd:a9:d6:53:4f:62:ee:c1:31:a6:4f:bc:f8:15:98:96:
82:fd:dc:35:ee:e2:2f:65:37:81:8c:65:eb:ed:d2:bb:bc:e2:
76:84:c5:58:13:c3:57:40:aa:d8:b3:b8:35:03:2b:4d:99:c5:
29:db:a1:ec:b2:9f:bb:96:7b:36:0e:60:eb:b6:66:b1:91:59:
5c:e0:e3:9d:58:1d:f2:9b:22:a0:9f:7c:3b:b2:48:a8:db:b6:
f7:3d:b2:36:f4:24:53:49:39:64:c8:ee:eb:2a:00:34:95:bd:
59:7c:33:91:2e:d2:83:a6:dd:eb:de:7a:e9:13:9f:95:75:6b:
55:78:79:c8:8a:47:dc:0f:5e:e6:1c:8a:ee:d8:ca:12:43:06:
c5:1b:29:43:75:40:ad:bd:4a:25:eb:e2:3b:9a:c4:c9:da:19:
59:8a:61:8c:b6:62:d0:ac:b9:88:c0:18:4f:60:19:a2:27:41:
9f:2d:9d:4d:40:23:4a:32:a0:05:b8:02:bd:74:80:36:9e:b0:
d6:7c:58:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:03:35 2026 by rpki-client