Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
File: oaLRWp2N_ezej-awwYBNCp7i5ig.mft (raw, json)
Hash identifier: 7qpA6iLct3oD7feAiJ+1RGV7M0v5PkU1vdxF0rQkdi0=
Subject key identifier: 14:3A:21:60:B6:1E:6F:56:54:C2:E6:84:FB:3D:3B:53:2B:34:80:9B
Authority key identifier: A1:A2:D1:5A:9D:8D:FD:EC:DE:8F:E6:B0:C1:80:4D:0A:9E:E2:E6:28
Certificate issuer: /CN=a1a2d15a9d8dfdecde8fe6b0c1804d0a9ee2e628
Certificate serial: 019E1FEC49510D93C2DE99A0C55F1E14980E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
Manifest number: 13A2
Signing time: Wed 13 May 2026 06:00:39 +0000
Manifest this update: Wed 13 May 2026 06:00:39 +0000
Manifest next update: Thu 14 May 2026 06:00:39 +0000
Files and hashes: 1: GuQAjBCkP5OO4SvyIu8w9D6eC38.roa (hash: BhuS+EcAxQfxRsVLjCrzmOxsWrwhIEcqz2zMQpJPfMk=)
2: oaLRWp2N_ezej-awwYBNCp7i5ig.crl (hash: 7XySIAx4dmZJeQ3usuN6otqI12cZ14RG6ZJRuzq6JDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ec:49:51:0d:93:c2:de:99:a0:c5:5f:1e:14:98:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1a2d15a9d8dfdecde8fe6b0c1804d0a9ee2e628
Validity
Not Before: May 13 06:00:39 2026 GMT
Not After : May 14 06:00:39 2026 GMT
Subject: CN=143a2160b61e6f5654c2e684fb3d3b532b34809b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:50:dc:5a:3a:d5:e7:64:dc:d9:9e:8c:be:83:
35:32:96:13:44:55:23:10:f3:23:f9:7c:c9:78:96:
20:00:5b:03:0d:df:01:29:eb:aa:70:b0:63:4b:0f:
4a:a8:07:b2:c6:cd:1e:74:0f:c0:a1:36:38:dd:d1:
48:a4:7d:fa:e1:b6:9e:2a:c4:2c:9e:10:fd:7c:d5:
ce:cd:7f:51:69:21:a0:af:18:f5:16:b3:a2:ed:9f:
4f:6f:6d:45:89:0e:ca:7f:73:88:f4:6a:20:b8:f2:
98:6d:a1:99:5d:4b:80:91:57:79:a2:11:40:04:2b:
0f:c9:96:c5:da:d6:b7:87:5e:54:99:63:15:da:c5:
5d:8f:0f:4d:09:d0:ed:a2:09:90:a1:39:32:65:56:
10:79:1f:00:bc:ce:4e:9a:51:ea:8b:b9:49:4a:46:
ba:95:b2:36:75:b0:df:30:eb:02:5c:39:fb:95:dc:
99:de:42:ce:21:de:7f:6e:15:6f:44:ef:f2:56:86:
3e:05:5e:29:08:ef:36:5b:95:21:2f:1f:6e:da:a7:
c2:fd:56:60:80:68:d5:58:13:90:eb:ce:ae:a1:cb:
63:91:62:ef:15:a1:8e:ee:85:78:3a:07:fc:de:ef:
a5:fe:4a:e5:86:71:f5:a1:4a:b8:9c:63:7e:df:b0:
ca:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:3A:21:60:B6:1E:6F:56:54:C2:E6:84:FB:3D:3B:53:2B:34:80:9B
X509v3 Authority Key Identifier:
keyid:A1:A2:D1:5A:9D:8D:FD:EC:DE:8F:E6:B0:C1:80:4D:0A:9E:E2:E6:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:01:89:15:e0:b1:1a:5b:1b:09:3c:04:b7:ca:27:d4:ca:d7:
8a:c4:2b:0c:18:34:a6:81:23:51:51:4d:d7:2d:09:1b:36:e8:
99:0e:be:c8:3f:84:b8:73:64:13:2c:01:08:e9:f2:90:c8:50:
eb:51:e0:32:ad:c3:14:5f:c0:7b:a2:0c:f4:04:5a:13:54:81:
15:c5:cc:ca:54:cf:8d:5c:e2:1a:10:77:c9:8e:7b:4d:bc:58:
72:2d:bf:44:55:00:9a:0d:36:bc:66:22:5b:77:d9:b2:3c:f1:
69:3d:69:33:09:6a:16:de:63:c6:76:b8:3c:6f:bd:c2:dd:ad:
bf:d1:56:4a:e7:12:eb:bb:fc:e0:e7:01:aa:0c:48:57:7d:57:
0d:4f:1c:82:db:ab:cd:33:e5:b7:5b:ad:7a:12:c6:a0:89:a7:
6a:9c:ff:70:b1:b4:b5:13:27:b1:8c:d5:8c:94:0a:f8:1a:38:
b5:3c:53:45:61:7a:d7:fb:aa:e0:40:71:cd:7a:67:53:70:5a:
e4:5c:6e:e9:42:a2:f0:90:9e:83:18:7f:ee:e9:c1:0e:51:90:
ad:a5:96:60:ef:a2:7c:2b:68:17:9d:94:14:ae:ca:e8:41:61:
35:82:60:0a:49:43:ed:4f:1b:71:39:d8:95:99:51:bd:c1:df:
bd:27:a6:b9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4f7ElRDZPC3pmgxV8eFJgOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExYTJkMTVhOWQ4ZGZkZWNkZThmZTZiMGMxODA0ZDBhOWVl
MmU2MjgwHhcNMjYwNTEzMDYwMDM5WhcNMjYwNTE0MDYwMDM5WjAzMTEwLwYDVQQD
EygxNDNhMjE2MGI2MWU2ZjU2NTRjMmU2ODRmYjNkM2I1MzJiMzQ4MDliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmFDcWjrV52Tc2Z6MvoM1MpYTRFUj
EPMj+XzJeJYgAFsDDd8BKeuqcLBjSw9KqAeyxs0edA/AoTY43dFIpH364baeKsQs
nhD9fNXOzX9RaSGgrxj1FrOi7Z9Pb21FiQ7Kf3OI9GoguPKYbaGZXUuAkVd5ohFA
BCsPyZbF2ta3h15UmWMV2sVdjw9NCdDtogmQoTkyZVYQeR8AvM5OmlHqi7lJSka6
lbI2dbDfMOsCXDn7ldyZ3kLOId5/bhVvRO/yVoY+BV4pCO82W5UhLx9u2qfC/VZg
gGjVWBOQ686uoctjkWLvFaGO7oV4Ogf83u+l/krlhnH1oUq4nGN+37DKuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBQ6IWC2Hm9WVMLmhPs9O1MrNICbMB8GA1UdIwQY
MBaAFKGi0Vqdjf3s3o/msMGATQqe4uYoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2FMUldwMk5fZXplai1hd3dZQk5DcDdpNWlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9iNjQwYTYtN2VjZC00MjBiLTg2ZWQt
ODZkMTk0YWU4YTcxLzEvb2FMUldwMk5fZXplai1hd3dZQk5DcDdpNWlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS9iNjQwYTYtN2VjZC00MjBiLTg2ZWQtODZkMTk0YWU4YTcx
LzEvb2FMUldwMk5fZXplai1hd3dZQk5DcDdpNWlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWQGJFeCx
GlsbCTwEt8on1MrXisQrDBg0poEjUVFN1y0JGzbomQ6+yD+EuHNkEywBCOnykMhQ
61HgMq3DFF/Ae6IM9ARaE1SBFcXMylTPjVziGhB3yY57TbxYci2/RFUAmg02vGYi
W3fZsjzxaT1pMwlqFt5jxna4PG+9wt2tv9FWSucS67v84OcBqgxIV31XDU8cgtur
zTPlt1utehLGoImnapz/cLG0tRMnsYzVjJQK+Bo4tTxTRWF61/uq4EBxzXpnU3Ba
5Fxu6UKi8JCegxh/7unBDlGQraWWYO+ifCtoF52UFK7K6EFhNYJgCklD7U8bcTnY
lZlRvcHfvSemuQ==
-----END CERTIFICATE-----
Generated at Wed May 13 10:30:48 2026 by rpki-client