Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
File: oYanahiZ2_kCnhrv2QUXe7CdNo0.mft (raw, json)
Hash identifier: PLcZPIptQeO17uRQb8NDOYOtmT6sn2Xgv6MFIt/1V04=
Subject key identifier: 4E:B1:8A:B6:1F:00:4E:A8:B1:63:8F:77:D1:CB:1C:1F:F0:7C:C7:4A
Authority key identifier: A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
Certificate issuer: /CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Certificate serial: 019E1D90479EC0EB5DD082E78147A56AB5BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
Manifest number: 0D97
Signing time: Tue 12 May 2026 19:00:55 +0000
Manifest this update: Tue 12 May 2026 19:00:55 +0000
Manifest next update: Wed 13 May 2026 19:00:55 +0000
Files and hashes: 1: NN02RYdDSld5Y_Gaa2L7Y6KMwlg.roa (hash: kmXA/OCGhyiId8hIHYYzQ+3ut/BaLBRzEWv/qUUmjqo=)
2: oYanahiZ2_kCnhrv2QUXe7CdNo0.crl (hash: rJjlzt4H4RdnuLv8Brsyg7w5Uo2+Miscu5LCK6npAOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:47:9e:c0:eb:5d:d0:82:e7:81:47:a5:6a:b5:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Validity
Not Before: May 12 19:00:55 2026 GMT
Not After : May 13 19:00:55 2026 GMT
Subject: CN=4eb18ab61f004ea8b1638f77d1cb1c1ff07cc74a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:23:92:91:6c:96:13:d5:c5:56:0c:7e:b4:5b:
69:c3:86:14:9f:dd:16:e0:00:9f:6a:d2:6f:32:18:
4f:88:22:a1:0d:f6:2b:2c:9a:c5:6c:3f:31:ae:91:
da:8d:0d:75:74:b8:69:d6:8a:d1:84:f4:b9:5f:05:
d3:b3:1f:21:e1:46:a3:70:25:c7:91:73:76:7e:84:
5d:bb:b8:9b:c2:58:80:3a:ec:75:ca:da:ba:48:f3:
db:91:dc:b7:cd:ed:de:21:89:e6:26:2b:88:2f:04:
29:4c:81:6c:98:6d:de:68:41:2b:aa:d0:3b:69:57:
86:6c:db:a2:9c:7b:23:ec:26:3b:78:15:e7:b1:51:
d8:b6:3d:d1:a4:a3:e5:ad:25:08:a8:c0:a8:71:22:
d3:ad:ae:e8:eb:9b:9f:85:22:c5:7d:e6:51:ee:b9:
6c:38:96:5a:45:2d:5b:31:0e:0b:fe:62:63:0e:cf:
6e:86:bd:1b:16:0d:68:9f:70:34:97:24:1f:b6:ed:
04:df:f9:10:54:da:11:be:d5:1b:1b:b7:64:70:2d:
a0:25:0c:c6:04:82:1d:75:d7:19:29:1e:5b:b3:60:
c1:0f:33:8e:de:be:9c:ef:8d:71:4d:8c:1e:67:be:
33:5c:65:f8:21:dc:ad:05:ec:7e:9f:98:1b:72:4e:
e6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:B1:8A:B6:1F:00:4E:A8:B1:63:8F:77:D1:CB:1C:1F:F0:7C:C7:4A
X509v3 Authority Key Identifier:
keyid:A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:2a:4f:98:93:f2:64:32:67:13:ce:3a:67:03:cf:1f:79:16:
e4:26:51:55:1d:68:9d:98:cd:08:b2:d1:2e:94:fc:bc:a8:2e:
a5:54:58:83:a3:51:67:85:7f:8b:f2:ea:c0:f1:84:fa:05:5a:
ad:35:20:ea:fb:cd:a5:76:9e:ec:ae:97:4b:dd:a4:c2:a3:0d:
e5:af:69:42:9c:30:84:27:93:16:df:ed:cf:21:c6:05:d0:2e:
34:fc:e6:7b:e8:d7:4d:16:ee:1f:b1:cb:b7:e3:80:cf:36:6c:
fc:34:f4:a6:f0:b9:ea:bd:bb:c8:75:23:c4:2f:0f:fe:16:db:
2b:d4:cc:4d:da:95:84:be:78:d2:6b:be:ed:44:b6:01:23:d8:
4d:2e:c5:cc:fe:a1:f9:78:7a:c5:c8:50:f6:89:9f:a8:cc:6e:
96:6a:94:d9:50:38:cb:b6:41:b8:5e:09:cc:32:17:5e:e6:44:
7c:01:ca:39:f6:35:d5:cf:c2:1c:3d:67:7f:0f:e6:05:f5:bd:
25:85:2f:b1:a9:70:3a:be:d2:1a:8d:9b:ef:dd:89:da:6b:02:
8a:68:2e:6b:63:fe:55:8b:c2:5f:74:c9:a2:93:04:d9:a7:13:
bb:c1:80:bd:38:d9:67:99:81:d5:94:8a:94:1f:d9:87:9a:cd:
5c:90:d3:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:54:48 2026 by rpki-client