Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
File: OACZqBs0b5q8ryYFb1t3CU0c8RM.mft (raw, json)
Hash identifier: RjPLpqxacetJpxXT5visMrKLG9DYn6J2CencNdovVIw=
Subject key identifier: 01:D1:9D:2D:21:20:77:BF:12:DF:49:DF:F4:D5:E9:71:0B:97:F7:A1
Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113
Certificate serial: 019E1E35FE494524BDD2E314D5EECBC7C36D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
Manifest number: 190E
Signing time: Tue 12 May 2026 22:01:55 +0000
Manifest this update: Tue 12 May 2026 22:01:55 +0000
Manifest next update: Wed 13 May 2026 22:01:55 +0000
Files and hashes: 1: 5tf62tGZz7nxnApGHs0XPt8oyEo.roa (hash: eqObETU4MUet/YxGyvd+4bjlEhpIkWmlGdSy4IzjRT0=)
2: C4lzeE9s0JPh3LMFogAb2-unpfM.roa (hash: B/VA7Y5H146Nk4o0VlZHFllZAXs0gNzPmZMsk3LGaPk=)
3: GlGwuQ4tVBcVbzdxZ764xAH4ZKY.roa (hash: dAsL5YC+dtQ5UOuP3k5Dc/1X4NRNua75JEno17YoMPc=)
4: MhSY36OZkDXTKKOaDPZo_gxxyys.roa (hash: 2VWhIerfpwbk0gwrISpBPr4SWZ289fTqKRc3I0+Rsfg=)
5: OACZqBs0b5q8ryYFb1t3CU0c8RM.crl (hash: /azsYkWe3+uKucLiUvYjq7UKTtbnCAZtQLT897shnWM=)
6: SV9q8qOenCpWfyZ_KmzmoZ8gOso.roa (hash: 316dq0EbdTMXN9J+sZt1LaGvCQCGOGhyEJsLNYpVENg=)
7: Un1O1eVRsl-RNFGZVC7Hh1zlUso.roa (hash: wb6n3U2bPJOBiqYHITV1Aqlnrh4S2E/QbN0YryOpk2o=)
8: h2NmHgEuIROZq_hEdlknexmBTGM.roa (hash: 7SwAGH9Cu/tcgfRdpv3e3i4Xnp328jS2BOR70XX2pq0=)
9: n6AwAFReNaZdbkfki7LETtgHQPk.roa (hash: 1R1A1mLyenvEeIw8x55MsxtBChYHFqi/CKG9tPv+lwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:fe:49:45:24:bd:d2:e3:14:d5:ee:cb:c7:c3:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113
Validity
Not Before: May 12 22:01:55 2026 GMT
Not After : May 13 22:01:55 2026 GMT
Subject: CN=01d19d2d212077bf12df49dff4d5e9710b97f7a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:91:cc:90:e2:b0:9d:f0:37:1a:be:47:40:59:
27:12:61:1b:30:2f:7e:3e:b2:fe:d4:fc:0d:c1:af:
6a:71:12:3e:8a:ba:dd:5c:06:82:ac:61:bd:bc:b5:
81:72:93:c9:38:e8:4a:9b:7c:56:2e:37:d7:20:53:
88:50:1c:b9:a2:e6:9b:55:4e:ce:3a:ef:87:d3:ac:
d1:77:4c:7f:3e:fa:9b:98:ec:0e:a2:57:dc:81:9f:
d0:bd:dd:52:b4:32:6c:a8:8c:db:b4:60:de:4d:11:
a2:b1:8a:6b:a2:41:03:13:09:df:02:e1:7e:d2:d2:
ac:d0:cb:40:0b:eb:ff:53:73:a3:7d:53:8d:5c:90:
3f:3e:2a:76:44:ac:e1:74:7f:88:29:e7:1b:bb:da:
29:ab:f0:fc:ca:5e:96:ca:12:8b:cc:01:4a:15:0f:
a6:e3:c5:1a:29:e0:8c:e3:3c:3e:78:dd:20:03:0e:
8d:f7:74:da:db:8b:c1:44:27:10:24:fb:36:f9:0c:
ef:5b:99:74:ad:fe:0d:6d:cc:99:ea:c8:8a:aa:4b:
c3:39:e4:ce:99:81:bb:d7:97:7f:1a:63:fb:ed:64:
37:4a:92:59:0b:f7:17:c5:d8:98:f6:02:7e:ce:60:
71:2d:2f:0b:fc:54:1e:2a:d5:84:11:98:f8:52:c4:
c5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:D1:9D:2D:21:20:77:BF:12:DF:49:DF:F4:D5:E9:71:0B:97:F7:A1
X509v3 Authority Key Identifier:
keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:92:80:e6:a7:6d:7c:57:7e:a0:fb:fd:e8:15:72:38:85:63:
fa:c7:48:b5:50:43:c2:b8:27:d3:ca:88:8e:a2:96:f7:a1:12:
59:e0:8a:7e:4e:6a:9b:99:88:4e:04:55:e7:ce:74:bb:ce:df:
d4:d8:0d:af:c7:4d:23:c4:84:38:48:ce:d8:5c:96:3e:ac:2b:
64:d6:1b:ba:17:68:2f:c2:43:f1:09:ae:d0:02:10:47:a3:15:
ea:e8:4e:72:a0:43:4c:51:71:3f:ce:31:a1:46:9f:b5:16:0e:
e7:64:c3:44:24:40:54:2f:6e:da:7b:6a:45:9f:30:e9:1f:0a:
f0:8a:1f:67:39:a3:25:ee:83:e9:60:ed:2a:8b:e2:fe:8d:fc:
bc:26:fd:71:5e:01:a1:c8:64:a3:9e:40:6f:1d:04:cb:c9:3c:
32:af:6f:ca:26:25:61:32:7c:f0:1e:b8:d1:40:60:4e:d8:41:
3b:19:e3:5e:0b:47:88:7a:5a:41:a7:37:93:be:01:b8:a5:27:
f6:bb:ce:97:48:c3:8b:52:63:b1:6d:17:28:f7:47:dc:6a:2f:
b9:66:bb:46:cc:99:a7:2c:cf:31:93:be:74:9f:c2:fb:e9:e5:
63:5b:08:60:66:91:2d:f3:a2:00:0a:b7:80:d5:82:8f:f7:92:
a7:52:94:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:43:00 2026 by rpki-client