Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
File: _o6FIymApj8NTfWwSRY-P9AvVLM.mft (raw, json)
Hash identifier: wD9MATFQq3Jqm0h2tXTDsFRNJuHfVXThbFFJRWnnCJo=
Subject key identifier: 66:63:A4:BF:6B:25:23:2B:FE:24:86:19:C0:1D:D5:F0:E4:2A:30:AB
Authority key identifier: FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
Certificate issuer: /CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Certificate serial: 019D25F1AE3364553DC467D28423C6F7F106
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
Manifest number: 0CFE
Signing time: Wed 25 Mar 2026 17:01:28 +0000
Manifest this update: Wed 25 Mar 2026 17:01:28 +0000
Manifest next update: Thu 26 Mar 2026 17:01:28 +0000
Files and hashes: 1: _o6FIymApj8NTfWwSRY-P9AvVLM.crl (hash: F0tUwAnhjKVECsorvz8wM6UYvOLxLYGNj7/nSGCjVSk=)
2: i8r_KcfZKeFV_hgBzyCFH1FvU2Q.roa (hash: q7K3PKVBwmAslABYzD36Nuj0tVHPXSk4xv3r0eaKenA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:ae:33:64:55:3d:c4:67:d2:84:23:c6:f7:f1:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Validity
Not Before: Mar 25 17:01:28 2026 GMT
Not After : Mar 26 17:01:28 2026 GMT
Subject: CN=6663a4bf6b25232bfe248619c01dd5f0e42a30ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7f:e8:d9:3f:a2:da:e8:b9:0a:d1:64:b0:33:
3d:ed:cc:19:2c:00:8e:0d:bc:f6:e0:ec:d0:d4:d3:
5d:0f:78:da:3b:34:3b:ad:df:b5:a1:9c:9b:b1:e5:
6c:0d:fb:7c:a0:16:9b:23:20:41:ca:44:4e:c7:2e:
af:dd:ba:4c:92:de:15:e6:7b:0b:c5:3c:95:b0:8a:
d7:dd:01:ab:9e:b9:60:ff:71:f1:21:02:32:7c:87:
28:af:33:3d:bb:12:14:0c:53:9f:c2:ab:61:70:8f:
16:1f:ff:c8:36:78:1b:c8:ae:25:d2:8a:07:a8:90:
4c:5b:ed:f2:35:50:2a:5c:b1:61:40:76:87:06:97:
6b:1e:32:08:ff:b4:e9:24:35:4e:99:f9:6a:b7:1d:
d0:08:e9:55:a3:39:5e:20:f8:28:45:51:17:58:26:
d5:d7:75:2c:7e:7e:4b:d4:59:81:bd:67:bb:31:9d:
0b:49:50:59:6e:05:cd:32:35:50:d5:6f:32:d3:22:
49:d8:ff:f5:c8:63:2f:7c:1f:1c:34:c8:ee:c1:12:
1b:97:aa:54:00:1e:0e:78:7e:71:61:28:ab:10:59:
3a:13:40:ce:be:b1:50:b4:28:0a:59:74:79:b1:b9:
c1:2c:a8:b5:7c:ec:b4:78:3a:43:f8:77:12:cd:5e:
6a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:63:A4:BF:6B:25:23:2B:FE:24:86:19:C0:1D:D5:F0:E4:2A:30:AB
X509v3 Authority Key Identifier:
keyid:FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:26:8f:48:d9:f6:c1:c5:06:c7:f1:0a:17:1b:2b:ec:28:9a:
ae:ec:f7:08:be:fb:0c:97:31:c3:a5:9c:b2:cf:c0:2e:6f:fa:
63:d7:e6:fd:0f:c6:ee:bc:57:0e:ad:6b:c7:6d:97:ac:d5:17:
44:e9:29:ee:ea:da:5c:dd:e5:b1:a9:57:1d:57:e9:14:4d:77:
be:01:ab:79:a2:25:e2:54:62:c6:ca:ed:6c:10:d2:de:b0:3b:
8e:6e:26:08:18:10:46:c4:ae:7e:0c:4a:93:00:d6:ad:57:06:
b0:a1:6d:5b:bc:0a:0a:04:1f:d0:32:ad:fe:48:05:5f:65:ef:
b3:e6:de:f1:07:bb:cf:85:d4:7f:de:b6:63:4f:3f:1c:9f:e3:
34:67:8f:3b:69:16:64:e0:61:16:a7:de:6d:14:eb:8b:26:ad:
d0:be:cc:e2:62:4d:ed:23:25:99:7a:3b:23:15:9a:87:e8:17:
be:ee:7e:51:0e:cc:56:99:f0:83:0d:44:22:87:9d:69:fe:64:
66:3f:4d:87:e5:75:59:a7:b3:d2:63:d9:d9:24:48:66:fe:71:
69:34:19:eb:e9:4d:11:09:5b:64:bc:bd:ca:93:e9:eb:1a:fd:
32:1d:55:52:26:ce:ec:4c:33:34:0b:41:e3:2a:4b:ad:9e:94:
01:29:eb:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:36:09 2026 by rpki-client