Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
File: oLwgSfIYtv2rytdZTCUjso2kd8E.mft (raw, json)
Hash identifier: RmQdevSn3uzldI0wcMV7lssgDVZp1ShhqNB2stO/gWo=
Subject key identifier: 89:D0:F7:C9:8C:C0:AA:37:B5:80:8E:30:9C:3C:53:B3:86:1C:9D:22
Authority key identifier: A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
Certificate issuer: /CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Certificate serial: 019E20FF275BB82C9509D240A17726412A66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
Manifest number: 189C
Signing time: Wed 13 May 2026 11:00:53 +0000
Manifest this update: Wed 13 May 2026 11:00:53 +0000
Manifest next update: Thu 14 May 2026 11:00:53 +0000
Files and hashes: 1: oLwgSfIYtv2rytdZTCUjso2kd8E.crl (hash: l5gtcibhIeTeHauPGPTPjbCS3z0OYlNS65QQEpBxA14=)
2: p7q0kuT4l_QfTZ5_ImIne2o94fw.roa (hash: +S1UVYMeaTeGs9fWcZKSGrpvJ3bbJy0eiN+e0mJvcII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:ff:27:5b:b8:2c:95:09:d2:40:a1:77:26:41:2a:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Validity
Not Before: May 13 11:00:53 2026 GMT
Not After : May 14 11:00:53 2026 GMT
Subject: CN=89d0f7c98cc0aa37b5808e309c3c53b3861c9d22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:39:dd:e6:62:a1:ef:a8:f2:2c:a4:7f:d9:57:
cc:35:af:32:55:73:3f:bc:0e:6e:be:02:71:dd:f9:
6c:6e:e6:cc:f2:0a:2e:21:cc:99:70:38:36:5e:f6:
5a:35:eb:0a:b0:54:1f:2d:89:87:4b:ea:63:ae:0b:
02:fe:a5:09:78:09:27:55:86:a2:e3:11:e2:6d:7c:
43:e5:0d:3b:17:f1:2b:36:b2:eb:cb:ee:45:29:d3:
c2:8f:83:7c:a8:73:67:b1:6c:39:f1:15:d4:a4:1a:
02:89:67:71:f4:35:76:7f:52:75:c5:7e:75:9f:85:
57:00:c3:34:77:2d:4a:2b:53:9c:59:fb:59:ac:19:
7f:cd:c1:2f:ab:82:bd:40:f8:3f:3e:d3:86:d4:19:
17:70:92:88:1e:72:a5:6c:6d:4f:a3:7a:4c:bb:17:
4c:be:ea:65:87:df:34:1b:1f:73:b7:6d:81:50:f3:
4a:cd:d9:9e:e1:74:5d:11:97:09:49:c5:e7:54:4a:
95:d5:95:d2:b9:10:5a:eb:70:76:9e:3c:d1:f5:cf:
a9:44:6a:dc:54:7b:16:10:9e:45:78:be:0c:d4:7b:
65:d0:5b:4a:ed:97:f9:76:91:38:0c:35:ab:ea:01:
e1:16:ff:c1:05:c6:c1:29:2c:a5:76:3d:6f:85:b4:
81:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D0:F7:C9:8C:C0:AA:37:B5:80:8E:30:9C:3C:53:B3:86:1C:9D:22
X509v3 Authority Key Identifier:
keyid:A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:ce:ec:10:18:96:53:70:42:d9:d2:12:6a:87:3c:6b:a6:4e:
b5:af:b6:a9:f8:1d:95:f7:40:70:1e:53:29:b3:41:88:90:58:
88:e6:57:a0:98:d4:14:28:0d:28:6f:5b:06:26:c5:f6:22:24:
fb:46:8a:14:cb:5f:24:61:9b:ee:5d:8b:04:46:c2:95:6c:db:
ac:66:0c:b5:36:e0:36:2b:cb:be:fe:18:27:7c:3f:24:2f:56:
78:9a:d8:f1:d5:a9:f9:16:a4:34:33:c1:f6:6b:d5:08:3a:b8:
42:1f:f2:5e:41:a8:12:32:cc:03:cb:c6:54:e9:04:71:41:38:
e9:75:cc:d8:63:99:0c:3b:a7:aa:c8:a5:c3:6a:5e:d3:bd:3b:
d8:92:24:3e:d0:d7:5f:9a:69:90:d6:57:28:fd:6a:ba:e7:a3:
f0:e7:28:97:98:14:1b:c3:83:8b:96:89:2d:81:8b:cd:25:f7:
b6:f9:34:b2:4e:1d:49:57:74:57:9f:d4:49:8a:e2:d2:95:76:
63:7e:26:27:e7:50:fe:65:e5:b2:2d:22:e2:55:12:02:43:a1:
50:4c:43:45:03:fa:b7:db:ff:00:b8:3a:23:5e:27:0a:fa:48:
0c:87:1d:f3:a3:a1:a0:a7:9b:aa:37:c7:bc:22:7e:f7:a9:35:
e7:1d:00:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:13:44 2026 by rpki-client