Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft
File: o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft (raw, json)
Hash identifier: dX1UY64j+xcXWkhoXraXvbN5LVK3IBkhb/ramWjD22o=
Subject key identifier: 52:3A:D9:7B:01:33:50:F6:E4:96:23:A3:A6:6E:CC:97:A6:0F:E7:6B
Authority key identifier: A3:E5:99:92:83:AA:F2:E4:39:50:79:EA:37:16:DD:FC:2B:13:0F:07
Certificate issuer: /CN=a3e5999283aaf2e4395079ea3716ddfc2b130f07
Certificate serial: 019E21362BFDD13726A8EF2B29B17C857393
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft
Manifest number: 0697
Signing time: Wed 13 May 2026 12:00:58 +0000
Manifest this update: Wed 13 May 2026 12:00:58 +0000
Manifest next update: Thu 14 May 2026 12:00:58 +0000
Files and hashes: 1: mRzXoHd1mByeqxe7zEzrQOkUywA.roa (hash: 8SKmwd2mxeGHXUa+EavAITPtq3W4rgD8HwfvXh+DLAw=)
2: o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl (hash: IjNKo/ufnTNc8Z0ElUbaT87bv6aqnZkZYbdkWPsF9+U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft
rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 12:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:36:2b:fd:d1:37:26:a8:ef:2b:29:b1:7c:85:73:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3e5999283aaf2e4395079ea3716ddfc2b130f07
Validity
Not Before: May 13 12:00:58 2026 GMT
Not After : May 14 12:00:58 2026 GMT
Subject: CN=523ad97b013350f6e49623a3a66ecc97a60fe76b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a4:cb:17:3a:85:bb:2f:5c:63:6d:f9:0a:51:
db:39:9b:6e:d4:64:44:0e:7c:2f:70:08:b0:83:3f:
20:01:9d:e8:1c:f1:b0:e9:b8:8c:e8:c5:8c:4c:2b:
a6:98:8a:20:8c:5a:cb:e7:fc:a4:67:ca:22:31:5a:
4c:4b:3e:3d:ac:33:78:94:e2:c4:4c:b7:73:e0:a0:
95:ac:52:62:59:77:5a:46:7b:6d:17:35:b9:e4:b4:
2b:1f:97:46:16:a1:ce:0f:7c:60:86:ed:d0:9f:6b:
12:68:c9:31:63:f7:c3:d6:53:88:4b:19:77:94:29:
23:13:cd:d5:f6:8b:ca:95:8d:f3:ce:d5:1b:8b:b4:
ff:8b:4c:70:3d:37:16:1b:0a:a1:33:07:72:a0:68:
8d:47:6a:5e:fc:8b:26:4e:a5:c6:97:7b:27:8d:25:
c2:31:53:1e:04:1b:d0:b5:1a:ab:ee:72:fc:ea:cf:
65:3c:80:a5:e3:34:53:94:ee:59:e9:30:2f:de:16:
61:16:c3:0b:86:12:7f:59:c1:e2:44:88:94:28:f1:
77:7b:9d:ee:e2:a7:c9:0c:81:7e:f7:f9:f7:0d:b9:
f3:1b:64:df:c2:93:3e:cf:55:67:6e:29:7e:fd:c3:
f6:36:5c:46:f5:84:97:53:ca:04:e6:2a:79:07:92:
04:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3A:D9:7B:01:33:50:F6:E4:96:23:A3:A6:6E:CC:97:A6:0F:E7:6B
X509v3 Authority Key Identifier:
keyid:A3:E5:99:92:83:AA:F2:E4:39:50:79:EA:37:16:DD:FC:2B:13:0F:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:a4:57:ce:23:a8:13:42:20:0a:a3:c6:4d:bd:13:58:3d:9b:
02:98:22:74:24:d3:ca:7a:6f:0d:9d:8b:08:4d:48:19:a2:d2:
22:c2:b7:c3:49:26:af:bb:24:ee:e7:1b:c4:a6:ad:84:cd:e0:
bd:fa:2d:c7:15:7e:85:ee:c4:15:89:7c:a4:7e:ea:a5:14:d9:
6b:c2:1f:51:fd:d4:ba:74:13:96:94:5d:b2:17:2f:11:06:83:
18:2d:07:2f:ca:67:28:fc:c6:9f:f9:2b:dc:99:52:fd:16:f0:
41:a4:60:ca:35:7a:44:fe:40:d8:d3:a3:2e:ae:ea:8a:54:99:
6d:93:60:51:59:fd:60:82:94:a8:e6:d3:18:05:51:5b:48:67:
3d:b9:38:db:5c:64:8c:d5:8b:00:a9:7e:5c:37:53:bc:89:8c:
c7:b7:c1:89:c2:74:c6:06:37:c2:6b:dd:cf:39:84:9a:eb:c1:
1a:33:12:03:59:71:ff:5e:8e:83:02:13:72:c6:ad:2f:17:a4:
a6:67:f6:62:30:8a:d8:07:e1:9f:d1:ab:3f:82:0f:15:f3:3f:
3e:0d:7f:03:55:6a:b9:b6:55:8e:93:29:db:cb:53:74:1a:75:
68:34:02:13:b5:a0:a7:dd:be:bd:76:af:fe:7c:ac:67:9d:70:
79:3c:40:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 19:04:36 2026 by rpki-client