Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft
File: oMWM0HH3gLesNAwBROsE-1DMu_E.mft (raw, json)
Hash identifier: QUPDopsZFQRD+UtXr7gNlz0FZyxmNFhiIRLKhTXmGSc=
Subject key identifier: B3:AF:EF:AB:7E:93:81:72:0A:A9:3A:93:0C:EA:E2:C8:65:A1:08:8E
Authority key identifier: A0:C5:8C:D0:71:F7:80:B7:AC:34:0C:01:44:EB:04:FB:50:CC:BB:F1
Certificate issuer: /CN=a0c58cd071f780b7ac340c0144eb04fb50ccbbf1
Certificate serial: 019E205ABB0063E313DB7468A08FA4E7FEF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMWM0HH3gLesNAwBROsE-1DMu_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft
Manifest number: 18F8
Signing time: Wed 13 May 2026 08:01:17 +0000
Manifest this update: Wed 13 May 2026 08:01:17 +0000
Manifest next update: Thu 14 May 2026 08:01:17 +0000
Files and hashes: 1: ZbTeBAO3QTTIszF0pdw52UodjGY.roa (hash: Zcq4v6bJvVoVndPkmRTnPcyoC19uifQNUAxqTObWOg4=)
2: oMWM0HH3gLesNAwBROsE-1DMu_E.crl (hash: b3B+9DYVH54rY3q8cY/vG8afFgVQuWTv44lzYLV3ySk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oMWM0HH3gLesNAwBROsE-1DMu_E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:5a:bb:00:63:e3:13:db:74:68:a0:8f:a4:e7:fe:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0c58cd071f780b7ac340c0144eb04fb50ccbbf1
Validity
Not Before: May 13 08:01:17 2026 GMT
Not After : May 14 08:01:17 2026 GMT
Subject: CN=b3afefab7e9381720aa93a930ceae2c865a1088e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:46:d0:61:0c:5c:bf:26:e8:1f:1a:29:a3:00:
ad:62:83:01:90:43:10:05:2a:f1:40:df:aa:45:57:
da:65:87:1b:01:56:8d:8e:d2:92:7f:8b:58:1c:28:
aa:bc:49:cb:9e:b9:70:79:d1:ec:6e:77:89:e7:3c:
55:64:a8:47:ce:28:fb:05:57:a6:ea:90:52:88:03:
ca:53:2c:d6:5e:1f:a6:f8:78:fe:d7:04:17:b2:9d:
0c:52:6b:1e:c2:b1:76:3d:4c:0d:23:6b:e6:cc:31:
32:21:8a:46:28:ef:7f:8e:ed:a0:72:23:f1:f0:34:
4d:39:12:52:d9:fb:a4:43:eb:b0:69:2b:42:90:7e:
05:5b:67:4e:31:cc:aa:f8:f1:e2:81:13:08:f1:75:
c2:37:f6:da:06:39:b2:3c:0d:9e:f3:fe:5d:22:07:
24:d0:fd:00:ed:a2:ca:48:ec:0e:f5:d7:51:ac:6a:
0a:c1:8c:1e:f8:8d:cd:8d:86:73:82:15:42:52:bb:
66:91:77:8f:95:06:0f:f9:f9:89:3e:ea:e9:c9:d4:
49:0d:84:e1:d2:84:ee:ff:bc:d7:8d:b4:83:c1:e8:
85:1c:b1:5b:50:86:41:ac:46:6b:0b:7d:3c:37:65:
37:b1:83:1a:5a:57:a9:89:23:24:84:4b:5d:a5:3b:
89:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:AF:EF:AB:7E:93:81:72:0A:A9:3A:93:0C:EA:E2:C8:65:A1:08:8E
X509v3 Authority Key Identifier:
keyid:A0:C5:8C:D0:71:F7:80:B7:AC:34:0C:01:44:EB:04:FB:50:CC:BB:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMWM0HH3gLesNAwBROsE-1DMu_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:8d:ab:aa:f5:63:1a:ff:46:fc:9c:15:f7:d1:5f:9d:5e:b0:
55:e9:ae:5d:cf:4c:8f:b1:ff:9f:fb:e1:b0:16:59:b9:e1:e4:
ac:ba:a2:6e:75:d2:d0:9b:79:d6:58:be:3a:34:2a:bd:4c:d1:
d1:dc:dd:b1:d4:40:ff:a1:b6:d2:47:62:29:f0:a8:cd:3b:23:
49:c0:4c:59:4d:9b:82:66:09:0a:c0:2a:bc:2d:30:41:02:9e:
19:88:e2:fe:d8:22:74:e7:82:5c:69:2f:d0:04:f0:53:5b:d3:
23:6d:8c:ad:35:14:92:52:3a:d3:44:8f:df:37:45:21:bf:ac:
ae:ca:87:cf:e3:cf:a1:e9:da:2b:6a:e1:e6:bd:96:eb:49:75:
d2:92:c7:69:17:5a:92:61:1e:5c:cb:4d:ba:a4:a6:9b:e5:bd:
a3:c1:fc:11:54:93:1b:ee:4e:fa:c0:44:03:3a:b2:8e:bd:e3:
e4:50:52:ab:c2:dc:70:10:18:74:7e:dd:a5:67:6d:5c:31:4e:
62:d0:e8:49:7e:25:90:54:5f:44:80:3e:a7:0e:cb:b1:c0:72:
d8:72:7e:34:d2:3f:eb:53:c0:4b:77:aa:d2:6a:18:f9:82:94:
43:19:a3:74:9e:7f:33:13:0a:53:c8:43:9a:bd:dd:13:b3:93:
86:c8:14:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:19:44 2026 by rpki-client