Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
File: oNMhbMzIY-ygw90YmUGxueo3ys0.mft (raw, json)
Hash identifier: 7LDOGFmNTNIBV5Nx1wBj/CEhL5KUeLukTioC4qnqy/A=
Subject key identifier: 75:8B:DA:FE:1C:E4:AD:C5:0D:2E:78:F1:FE:FC:4E:49:05:9C:BB:02
Authority key identifier: A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
Certificate issuer: /CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Certificate serial: 019E1F7E65853F17D8545F318A9B0BD9014C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
Manifest number: 1155
Signing time: Wed 13 May 2026 04:00:37 +0000
Manifest this update: Wed 13 May 2026 04:00:37 +0000
Manifest next update: Thu 14 May 2026 04:00:37 +0000
Files and hashes: 1: RvaTJRlt29ftCtqE0WpwZqGpE9g.roa (hash: StTKZA1GU7wGVFQWDEqlmDXT/zh0mjE1gXIOwpYnhZU=)
2: oNMhbMzIY-ygw90YmUGxueo3ys0.crl (hash: /IRal1XYH3o2koswjxisHPngA4CfSLnQmGToqieNZ2E=)
3: oTJ_SiNI-sTWNycV04ya44fLP9Q.roa (hash: oQAMQxzLon76LhylB305yCYYWrb8zMDw4+N6NR6rHCY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 04:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7e:65:85:3f:17:d8:54:5f:31:8a:9b:0b:d9:01:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Validity
Not Before: May 13 04:00:37 2026 GMT
Not After : May 14 04:00:37 2026 GMT
Subject: CN=758bdafe1ce4adc50d2e78f1fefc4e49059cbb02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:21:c4:b5:3d:ac:47:96:ef:47:4a:e3:ec:1e:
f5:17:22:fe:93:b9:7c:b5:fe:b0:e4:a7:34:40:c3:
eb:78:ab:09:b1:34:f9:1d:0d:13:06:4e:33:1f:ad:
7f:21:cd:e9:fb:a3:d2:67:bc:44:32:02:43:cf:77:
34:b5:6e:e1:92:2a:4f:32:0b:15:bb:4f:b2:d2:e3:
d3:f3:de:6f:49:6e:d4:16:fe:6d:44:6e:2d:06:63:
ce:c1:8f:92:9b:22:a6:9e:ed:0e:b4:a2:66:1c:53:
60:ee:7b:20:cd:15:13:be:6b:b6:96:b6:dc:cf:d8:
58:fd:e6:7e:d5:68:54:a5:43:f1:5d:45:f5:f6:d4:
3e:a8:22:21:39:32:14:e1:ee:46:32:bb:4c:05:3b:
06:a3:60:0f:16:b8:ee:cf:1a:03:02:56:0c:65:09:
25:66:57:ac:7c:b4:5f:91:02:e3:24:f8:d2:57:fa:
a7:34:c9:11:da:19:36:a8:30:5c:e0:93:c9:d2:50:
a4:33:fe:67:8d:e3:f4:6a:47:90:54:96:54:a1:be:
b2:65:39:2a:a4:6f:ac:1d:89:a5:b1:b9:60:c5:03:
16:c7:a3:a9:d2:b0:af:9d:8b:77:24:76:74:4a:36:
f9:d2:a2:72:8d:0a:4d:92:64:e0:e8:df:02:a8:ed:
38:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:8B:DA:FE:1C:E4:AD:C5:0D:2E:78:F1:FE:FC:4E:49:05:9C:BB:02
X509v3 Authority Key Identifier:
keyid:A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:f0:6d:a4:45:f5:11:a4:3b:7a:3d:3c:b0:8b:6c:3b:f2:56:
1e:a3:ac:0c:aa:ef:75:6d:97:9a:3a:6a:5e:0e:cc:9a:fb:cf:
17:98:9a:87:51:39:e2:12:5e:1b:15:8f:eb:1c:26:19:63:26:
6c:dc:c8:82:2a:e5:3a:ee:cf:a3:bc:dc:45:84:9a:33:14:ca:
15:dc:4c:0f:f6:b7:a9:0d:47:0a:75:57:f3:c4:84:6a:72:91:
12:89:bc:31:ab:63:58:33:18:be:6c:95:99:bf:56:7f:6f:b1:
5e:e3:dc:cb:3b:c5:33:94:0c:12:f8:3e:fc:2c:64:89:fe:2a:
fe:3f:83:16:84:8f:f6:07:18:b8:d3:fa:6c:32:e3:74:0f:fd:
09:58:fc:e0:70:6e:af:11:4e:f5:f9:80:e0:cb:0e:bc:0f:d8:
3f:1d:bc:7a:47:c9:f6:11:79:8e:8b:f4:f3:7d:97:10:af:2f:
5c:2b:12:33:73:cd:49:52:26:a1:8c:27:94:fb:8c:d0:0f:f0:
be:04:eb:12:cf:ac:79:7c:1f:f4:45:eb:10:10:0b:7a:40:22:
1c:f6:a1:ee:c8:05:2e:59:97:7a:d3:f1:5e:cc:c1:c9:8a:6a:
6e:a8:34:ed:cb:28:54:be:23:ab:c6:34:40:0b:22:07:aa:3b:
8d:bd:3d:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:14:08 2026 by rpki-client