Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
File: a0P3ovQ2ixel4DXOS9km-KFC1os.mft (raw, json)
Hash identifier: qF+3G+x8KXc1minZ+j4k8GeWWfpnZ6EqnmjhmNFx/xU=
Subject key identifier: 88:32:2B:3D:C4:A5:16:88:63:04:00:81:60:61:B1:03:A9:31:2B:98
Authority key identifier: 6B:43:F7:A2:F4:36:8B:17:A5:E0:35:CE:4B:D9:26:F8:A1:42:D6:8B
Certificate issuer: /CN=6b43f7a2f4368b17a5e035ce4bd926f8a142d68b
Certificate serial: 019E1DFE3E2157B5C419F35E64BBAE5F851C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
Manifest number: 1905
Signing time: Tue 12 May 2026 21:01:01 +0000
Manifest this update: Tue 12 May 2026 21:01:01 +0000
Manifest next update: Wed 13 May 2026 21:01:01 +0000
Files and hashes: 1: MuWBM4y_8sU7g6FEyEJdZpch7MA.roa (hash: polciHBhuEIudcpVsohkilsNPMnWK3IMSBDrJXYyToE=)
2: a0P3ovQ2ixel4DXOS9km-KFC1os.crl (hash: sAp/V66cFiwQ1BOy34E40i4nIhsmSMeLYeR0wbtuVzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:3e:21:57:b5:c4:19:f3:5e:64:bb:ae:5f:85:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b43f7a2f4368b17a5e035ce4bd926f8a142d68b
Validity
Not Before: May 12 21:01:01 2026 GMT
Not After : May 13 21:01:01 2026 GMT
Subject: CN=88322b3dc4a51688630400816061b103a9312b98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:de:d0:1d:ea:6b:81:f3:a2:00:99:a8:b2:5f:
62:b8:b9:1d:76:f8:ca:78:38:79:c5:56:fb:e3:88:
8b:c4:86:2b:94:1e:a1:d1:a4:61:b4:48:28:97:3d:
77:51:7d:50:0e:d2:6b:56:d5:a5:46:98:75:b0:15:
b8:35:46:b6:b9:89:85:f0:81:09:0b:07:27:90:4b:
b4:ee:90:9e:5b:cf:23:a3:c8:d4:f5:98:4a:6a:da:
2f:61:c1:78:5d:58:f2:c2:40:1f:3e:4f:86:74:e8:
e4:c5:ab:15:7c:02:d2:c2:1d:4c:2b:18:80:05:f0:
08:be:7c:46:4d:9c:00:7b:d3:a3:71:cf:4b:be:3a:
fd:c0:ab:27:3a:7c:f1:75:2c:9f:71:8d:3e:be:24:
ab:54:15:7f:64:02:36:b0:3e:93:e5:99:92:74:d2:
00:2b:78:1a:4b:0b:17:d6:c4:06:42:28:57:a1:e2:
d7:28:1f:36:a0:61:0b:44:6e:f8:a7:5d:48:3b:98:
28:4d:eb:7a:f5:ea:90:7a:d6:a8:54:77:68:f8:2e:
f4:12:21:8b:5c:e3:fc:fa:0f:d1:31:b8:67:44:14:
7d:ea:24:78:0f:48:0c:a7:63:bf:e5:7a:20:eb:90:
f8:ed:da:af:7b:d5:25:cf:7a:e4:85:8c:4d:d3:42:
83:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:32:2B:3D:C4:A5:16:88:63:04:00:81:60:61:B1:03:A9:31:2B:98
X509v3 Authority Key Identifier:
keyid:6B:43:F7:A2:F4:36:8B:17:A5:E0:35:CE:4B:D9:26:F8:A1:42:D6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:af:50:5b:31:aa:43:e7:ca:62:83:6b:d2:7e:8f:1d:81:37:
7a:5e:b9:c3:38:2b:b1:25:8f:6b:e6:31:29:53:01:6d:54:25:
84:e5:cc:e5:86:ed:70:34:38:8c:de:1a:1d:cc:07:42:4b:26:
33:37:cb:cf:f0:1f:58:ae:8e:c2:bf:43:38:3a:cf:a3:5a:20:
cc:cb:5b:b7:66:34:8c:6e:17:09:f3:eb:96:bd:55:98:3a:59:
34:65:ba:a4:a7:57:5b:4a:23:7f:79:77:8e:3e:da:0e:ff:1b:
fd:80:bb:77:3c:41:4c:63:95:2d:6b:22:98:eb:57:df:53:5c:
c7:f2:b0:38:10:15:03:c9:03:17:60:5a:5e:6e:34:ee:b5:2d:
11:50:e2:23:df:3d:3f:90:49:b1:e5:0b:b3:39:5a:06:70:b7:
63:9c:e4:ea:e1:cc:a4:f2:96:94:a0:8b:c8:9b:e0:9b:42:84:
32:cd:53:f4:56:d6:43:43:2e:ac:04:9b:20:81:07:dd:7a:36:
ef:21:bc:79:fa:b8:51:fa:9b:39:10:56:cb:65:82:52:59:29:
ea:32:54:b6:64:a5:33:91:1d:a4:f4:fe:63:92:0e:4c:11:6b:
56:5a:8f:ed:b7:79:c2:53:cd:3d:3e:78:1e:2f:18:a9:5f:63:
1c:34:fd:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:11:43 2026 by rpki-client