Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
File: oYanahiZ2_kCnhrv2QUXe7CdNo0.mft (raw, json)
Hash identifier: oUhMGBQernO6DvP7PAvuYeuPJRXrxL9tuHs2zN9Ugbk=
Subject key identifier: 1C:76:EC:AD:D6:B1:73:E1:03:DB:AD:F9:D2:49:48:2E:F1:FD:84:F0
Authority key identifier: A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
Certificate issuer: /CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Certificate serial: 019D26601D4709FD025EF78FC6655A77CC2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
Manifest number: 0D17
Signing time: Wed 25 Mar 2026 19:02:06 +0000
Manifest this update: Wed 25 Mar 2026 19:02:06 +0000
Manifest next update: Thu 26 Mar 2026 19:02:06 +0000
Files and hashes: 1: NN02RYdDSld5Y_Gaa2L7Y6KMwlg.roa (hash: kmXA/OCGhyiId8hIHYYzQ+3ut/BaLBRzEWv/qUUmjqo=)
2: oYanahiZ2_kCnhrv2QUXe7CdNo0.crl (hash: S0TE8T6McOER0t2o2bHTFIoPqhZocosGKCFONCiqPpA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:60:1d:47:09:fd:02:5e:f7:8f:c6:65:5a:77:cc:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Validity
Not Before: Mar 25 19:02:06 2026 GMT
Not After : Mar 26 19:02:06 2026 GMT
Subject: CN=1c76ecadd6b173e103dbadf9d249482ef1fd84f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ab:07:f9:c9:95:ac:b6:fd:f9:41:a6:87:2e:
42:bc:f3:7d:f4:55:ae:28:a9:d4:d3:a9:ea:df:ce:
77:f7:a1:43:d0:30:18:31:e1:a4:78:c2:a2:bf:69:
98:a8:d6:c6:b7:63:d9:ed:7c:40:28:45:68:6d:c0:
4a:64:b3:84:95:63:2e:08:36:17:ae:bf:d5:f3:63:
9f:fe:8a:7d:22:b0:93:a4:09:aa:8a:26:a2:bd:b5:
f3:2b:46:2b:95:63:c2:25:49:14:64:6c:d9:45:d2:
44:db:18:d1:76:fe:4d:aa:b9:15:2e:05:c8:4c:7a:
2c:c1:91:6a:6c:5d:87:33:29:9c:b5:1c:1a:16:79:
01:87:d3:d9:3b:71:24:7b:68:04:48:1e:15:c5:17:
10:d9:a9:e1:70:29:63:e6:18:3a:ff:20:64:0b:1a:
47:9f:48:ac:96:de:14:36:e3:b2:a6:b4:37:4c:0a:
f0:7d:e3:ee:86:55:bf:89:d4:ba:b6:1e:c4:c6:45:
94:e0:bc:25:86:af:97:4d:2f:84:69:01:c2:da:f6:
c6:c3:0d:90:7f:a4:17:b3:7c:32:06:89:08:df:e1:
ca:67:e3:82:45:fd:8e:61:6e:e7:eb:f3:5f:47:57:
ed:5c:5c:98:d1:d2:c4:fe:d5:28:de:c9:b7:4f:38:
a7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:76:EC:AD:D6:B1:73:E1:03:DB:AD:F9:D2:49:48:2E:F1:FD:84:F0
X509v3 Authority Key Identifier:
keyid:A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:39:8a:5d:91:0a:a4:bb:5a:d1:77:2d:92:af:cd:3d:e5:5c:
f5:13:a3:f4:4b:04:7b:2c:31:00:9e:b0:a4:2d:1c:ee:51:67:
b7:56:b9:5c:4b:06:d9:3a:a3:b3:82:18:3c:a4:82:9f:46:66:
c0:a2:d6:1f:f9:99:cd:3b:3e:ba:b1:a6:1b:00:18:55:e5:69:
74:1a:bb:d5:c4:a8:9d:fd:cc:d7:07:35:ae:21:33:77:33:9c:
d8:0d:0d:70:d6:b1:f9:4a:02:93:58:68:3c:64:8d:21:8f:bf:
f3:cd:16:01:f3:50:b0:b2:c7:e1:0e:4d:4b:df:df:61:99:39:
bf:f3:03:cf:74:3f:b3:a9:e7:2f:06:57:5f:0e:38:b3:32:45:
6c:dd:1c:00:94:17:20:81:36:0e:75:eb:3a:bd:8c:6c:77:ae:
bc:63:f0:86:cd:9d:c4:61:da:d6:75:69:de:3d:28:b9:f5:53:
a2:73:c3:6c:2f:ae:30:bf:d3:17:6b:11:b6:3c:a2:f4:d1:f2:
a8:0c:50:b2:23:9b:92:00:8f:20:0e:ba:aa:07:ec:66:21:2d:
5e:61:9f:6e:b7:75:9a:fa:3e:df:22:95:df:29:66:66:59:87:
0e:1f:f0:bb:c7:8e:90:15:2d:12:60:b3:62:10:4d:8c:dc:7c:
63:1d:c7:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:32:53 2026 by rpki-client