Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
File: oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft (raw, json)
Hash identifier: ikyK92vLq7+d+4f8esvUhaiIsSWY72FnEup9XxLYPek=
Subject key identifier: CA:36:1E:51:E9:B9:99:32:4D:E2:4C:E4:FC:4B:67:14:D0:52:1B:55
Authority key identifier: A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
Certificate issuer: /CN=a0a647dac729f47b06369c4c9741cf943953dc59
Certificate serial: 019E20917A248583C7636C9EEAA20EAD251D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
Manifest number: 0E6B
Signing time: Wed 13 May 2026 09:01:05 +0000
Manifest this update: Wed 13 May 2026 09:01:05 +0000
Manifest next update: Thu 14 May 2026 09:01:05 +0000
Files and hashes: 1: VJaaCilXSaMFiDpDj2m9Nu8DP6E.roa (hash: /Vwcg31kt8NZSUPOXZXkCRASkot9oBzCBAi0+AvtL2w=)
2: oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl (hash: aAxbUlVkC1gHGl5Pq9Wo57pdS40N/lGcgGareYj7bhc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:7a:24:85:83:c7:63:6c:9e:ea:a2:0e:ad:25:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a647dac729f47b06369c4c9741cf943953dc59
Validity
Not Before: May 13 09:01:05 2026 GMT
Not After : May 14 09:01:05 2026 GMT
Subject: CN=ca361e51e9b999324de24ce4fc4b6714d0521b55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a4:16:fc:f5:6e:ca:43:9a:15:1d:e0:47:9a:
0b:b4:78:ef:9e:ff:d5:4b:ea:7b:59:e7:ab:d3:7c:
9d:00:ae:4c:b4:11:9d:13:c9:0d:42:f8:a6:3c:32:
41:36:9f:ba:bd:db:17:55:36:09:dc:02:4c:a6:24:
bd:ff:1f:85:33:39:c5:e6:0c:62:ae:64:2e:27:c8:
84:02:fd:a9:b8:5b:06:c6:95:74:8b:44:0e:78:83:
77:10:d3:c7:dc:e3:71:1a:b0:ea:8a:96:34:65:e0:
97:d3:2c:fe:71:c5:fa:b5:43:a4:d3:50:16:73:63:
b4:7b:30:c1:f8:d7:4d:d9:91:a1:84:cd:43:95:77:
85:0a:76:34:5e:61:9b:57:ab:d5:76:7d:34:cd:cb:
ce:b4:63:01:2f:24:13:18:3b:0d:c7:65:15:0d:a7:
87:22:f8:bd:0f:b4:63:7b:1b:bd:6b:f0:02:3c:0a:
1d:83:6f:83:05:3a:27:6f:a7:96:2f:37:82:b5:2e:
c0:ee:10:93:6f:42:4d:ca:51:0e:2a:f9:38:fa:4d:
92:7a:58:34:66:47:53:c5:26:a7:77:8a:45:d3:05:
6d:41:a6:b6:9e:25:ed:80:91:01:de:ed:47:1e:93:
7d:e9:29:0c:4b:b6:0b:74:d8:34:6c:ed:7d:92:7b:
d1:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:36:1E:51:E9:B9:99:32:4D:E2:4C:E4:FC:4B:67:14:D0:52:1B:55
X509v3 Authority Key Identifier:
keyid:A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:b7:b9:37:5e:c2:ba:61:79:67:33:f4:3e:2c:3c:46:78:d0:
8a:c7:b8:7e:d4:bd:e9:83:98:c7:0a:23:4b:70:59:84:e9:c1:
a4:26:04:96:87:17:37:4e:45:51:98:10:c2:54:a7:0b:01:15:
fc:6b:09:d6:50:04:12:fc:e5:1d:f2:67:85:24:57:c8:f8:8f:
30:40:2e:16:b0:1c:01:82:12:af:bf:32:0a:67:7f:67:5a:ff:
13:cf:72:59:fa:41:fd:14:6d:0d:86:32:72:68:09:15:34:88:
a5:c7:f9:6e:07:58:40:9f:1b:c6:86:ac:9b:d1:98:73:41:1d:
95:78:f1:ba:34:cb:d2:a5:55:fb:d2:3c:aa:05:40:f7:e3:cc:
4e:4c:05:30:1a:23:b5:39:bd:18:be:84:bf:e7:14:9d:e9:83:
c1:b2:e7:34:06:c0:91:28:38:38:29:22:b2:37:a9:fa:22:14:
7d:9c:7d:9e:61:06:9c:3d:ae:4b:fd:3f:77:51:c5:bf:95:a2:
78:e3:64:01:df:70:96:14:bb:31:a2:e0:5a:fa:1a:67:bb:05:
18:7d:7d:35:2b:cc:43:6f:0a:ac:13:0b:4b:1c:d0:53:4b:03:
26:c0:55:fc:bd:c0:20:f8:0c:e7:a0:0a:0f:c2:dc:c1:2f:82:
b8:84:5a:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:31:36 2026 by rpki-client