Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
File: oCN2bGLetRKXFVcI7MtCHIsEeAo.mft (raw, json)
Hash identifier: 08phzwXmDk1U4aCBTgAScZV5icTLuzn+bkUOjA5Eda0=
Subject key identifier: 64:6D:ED:A4:8D:62:18:D2:14:19:F9:06:03:69:1A:5D:C6:D9:54:EA
Authority key identifier: A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
Certificate issuer: /CN=a023766c62deb51297155708eccb421c8b04780a
Certificate serial: 019E21A45D10F8F9F28C1B717300EB33E338
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
Manifest number: 165A
Signing time: Wed 13 May 2026 14:01:20 +0000
Manifest this update: Wed 13 May 2026 14:01:20 +0000
Manifest next update: Thu 14 May 2026 14:01:20 +0000
Files and hashes: 1: g0-HGh4bznaFgiFX5KCpF3Q8z70.roa (hash: kuqsXcay0qN76iKLs/AKqPrHvwfsG46t73MVLxZfYe0=)
2: oCN2bGLetRKXFVcI7MtCHIsEeAo.crl (hash: 7Y836YoI7Ao/enBdwh2bZZKC22bMhRVQEHXRTxu8UQM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 14:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:a4:5d:10:f8:f9:f2:8c:1b:71:73:00:eb:33:e3:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a023766c62deb51297155708eccb421c8b04780a
Validity
Not Before: May 13 14:01:20 2026 GMT
Not After : May 14 14:01:20 2026 GMT
Subject: CN=646deda48d6218d21419f90603691a5dc6d954ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:cf:6a:f8:71:3f:2f:f4:5d:c2:18:ee:c5:d5:
e2:5d:cc:e6:82:21:00:5b:0a:08:db:6d:92:28:56:
b2:8e:46:11:80:36:7e:5b:5d:f0:7b:12:15:bd:f3:
82:26:18:e0:1d:af:70:5a:db:ed:67:60:c5:0e:3d:
a4:73:11:82:22:9c:0a:00:e7:cc:50:0c:a9:87:36:
e7:10:e8:1a:a8:3c:da:35:64:eb:8c:3a:9e:45:79:
c4:ec:d6:15:a6:d9:8e:2c:c4:56:c6:6b:61:70:c1:
c0:37:9d:7b:eb:58:9e:e8:3a:61:bc:a5:a3:a7:93:
2f:58:8c:95:33:89:76:ca:fd:64:af:74:8c:8d:98:
1c:12:92:5c:0d:dd:df:80:82:6b:e9:26:da:1b:55:
08:57:5b:a0:ee:24:16:fc:07:59:96:31:c1:d1:31:
24:93:1a:9f:01:19:fa:2d:cd:f8:e2:f2:fc:3f:89:
43:5f:78:46:30:a0:aa:bf:df:e7:7a:80:7c:48:13:
b5:6f:38:34:fd:bf:e9:3c:8c:26:11:bc:20:ed:f7:
0a:b6:84:39:5d:82:4f:1c:c8:45:8e:8c:ca:8e:20:
84:55:5f:44:39:f3:6f:4c:8b:c7:a1:cc:03:45:2a:
78:4c:70:7a:08:81:0a:c8:e3:6f:53:cf:f1:3d:93:
13:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:6D:ED:A4:8D:62:18:D2:14:19:F9:06:03:69:1A:5D:C6:D9:54:EA
X509v3 Authority Key Identifier:
keyid:A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:e6:ff:1d:58:de:e6:43:dd:0d:65:8d:6f:80:71:08:69:42:
67:35:b6:1f:16:c7:49:05:db:a5:fb:92:33:2b:01:8b:04:01:
10:e3:e1:5e:22:8b:82:43:67:94:51:1f:6e:a6:d2:a5:ea:ae:
9f:34:07:db:48:e3:8a:70:03:64:69:66:20:98:93:ae:3c:b0:
7e:ad:e7:78:46:e5:3f:c3:f1:78:72:7a:c0:e9:ab:bd:73:37:
47:7b:bf:ac:0a:f4:65:81:0d:39:28:5c:7b:28:1c:08:b9:63:
36:03:31:26:08:8f:bf:e6:42:fb:10:f2:42:c4:6e:3c:62:6e:
d1:7b:13:c5:d5:4a:d3:b9:99:8b:8a:41:f1:32:24:05:b9:b2:
ce:66:47:47:11:73:74:e6:c8:f5:78:cd:67:42:9f:be:c0:8e:
1a:2d:5d:f7:bd:ba:ce:98:59:99:77:d9:7d:3d:73:28:aa:ee:
00:5c:84:f2:36:a7:b6:a8:72:47:98:a5:39:dd:6a:98:26:41:
d1:20:a6:64:cc:41:47:11:50:90:3f:8c:2a:40:2e:3d:82:19:
46:81:07:3e:89:4f:5d:2d:fd:23:b4:9b:40:6d:fd:c4:6a:ff:
8c:19:b5:6e:01:4b:8b:5d:8f:ff:60:68:31:83:0f:c7:43:b2:
18:c2:43:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 19:48:34 2026 by rpki-client