Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft
File: oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft (raw, json)
Hash identifier: cPWGuMhJOuJgBnZfKPia/t+xnaUnshGav/iyI7BtfMc=
Subject key identifier: 81:B4:EE:E1:36:75:19:0A:A8:E8:23:85:28:1D:41:A1:9F:F8:F3:87
Authority key identifier: A0:96:08:F1:5B:36:7A:EE:48:6B:85:6D:9E:40:4C:3D:1E:0A:5F:D4
Certificate issuer: /CN=a09608f15b367aee486b856d9e404c3d1e0a5fd4
Certificate serial: 019E1EDA37DF8A7913CDF35B172B09447B54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft
Manifest number: 1641
Signing time: Wed 13 May 2026 01:01:17 +0000
Manifest this update: Wed 13 May 2026 01:01:17 +0000
Manifest next update: Thu 14 May 2026 01:01:17 +0000
Files and hashes: 1: lh0K5-Z5Aaz0j8wGnxp6HsFtPYk.roa (hash: JhDyY/3KKD4NQI4A4Yynp5xK7eSjDNrmxGYBJDA+6gE=)
2: oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl (hash: tQ5jCyvNiy2nHDS2rXji3MDumnDfNDZ1uqZbQHBjveY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:da:37:df:8a:79:13:cd:f3:5b:17:2b:09:44:7b:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09608f15b367aee486b856d9e404c3d1e0a5fd4
Validity
Not Before: May 13 01:01:17 2026 GMT
Not After : May 14 01:01:17 2026 GMT
Subject: CN=81b4eee13675190aa8e82385281d41a19ff8f387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:30:21:ba:8f:2d:4b:d5:f2:ab:9d:93:cf:cf:
65:8b:1a:7a:3c:d9:21:ba:58:ae:ea:94:5f:cb:6d:
b4:ba:c1:c9:b9:4b:d8:8a:5c:d7:d7:e3:46:d4:ad:
58:b5:85:5a:30:83:37:de:e9:25:7f:a9:d4:51:49:
b5:cb:59:29:87:f7:4e:66:03:c5:71:3e:c3:8e:01:
fd:e4:40:ca:ef:06:e1:9f:b5:55:af:7a:c0:cd:95:
0d:24:36:12:41:92:ac:e4:a2:07:ff:72:56:13:4d:
9e:c4:33:ac:51:ad:26:a4:db:f5:fa:bf:12:ea:ae:
62:15:56:ee:25:e0:0e:82:b2:4a:1d:c6:d4:9f:02:
f0:82:be:a2:15:68:fc:81:fa:c6:dd:09:57:90:3e:
58:b4:d1:cd:66:b6:e9:67:e0:03:4b:2d:f7:33:c2:
7b:96:1d:9f:b5:7d:07:2d:9f:20:bf:40:7c:20:fd:
e9:bb:e4:dd:3d:b4:49:89:05:eb:85:b0:24:7c:26:
73:d5:b2:8d:5a:81:72:60:9e:af:27:9b:84:ac:d2:
ce:99:00:2e:85:18:63:7f:36:fc:b1:be:77:6f:06:
8a:74:98:91:01:25:23:f5:76:e7:89:34:e3:be:3d:
92:79:17:d9:4a:b8:f0:a8:56:82:fb:1a:8a:96:34:
8a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B4:EE:E1:36:75:19:0A:A8:E8:23:85:28:1D:41:A1:9F:F8:F3:87
X509v3 Authority Key Identifier:
keyid:A0:96:08:F1:5B:36:7A:EE:48:6B:85:6D:9E:40:4C:3D:1E:0A:5F:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:96:b8:9d:d0:2b:cf:c7:aa:6b:50:b6:c1:aa:a8:b3:b7:50:
36:69:17:7c:3c:f5:90:d1:c7:9e:23:b6:91:5f:b8:86:ef:d8:
39:c8:ce:65:ef:d5:c7:3a:be:e0:7f:3a:f9:ef:e0:46:44:3b:
2a:4e:af:3d:d8:3f:38:f8:8a:0b:e8:f4:59:37:c7:d8:f8:83:
65:63:d5:63:31:b0:b9:e7:1c:b5:97:7a:96:53:af:d7:31:d2:
82:dc:f9:cb:75:01:a0:d1:0f:64:ba:4c:00:67:45:e2:ce:90:
58:a4:6a:17:18:60:2f:3b:50:f8:5e:1f:81:7b:77:a8:6f:66:
c6:26:14:d9:26:b3:8e:40:69:04:d6:c7:c6:95:55:3f:16:bd:
3a:07:2f:b8:9f:28:be:60:c8:b3:b3:66:90:92:5d:cc:5d:8f:
e2:27:ed:d1:d3:04:90:a2:f4:54:ee:21:c6:a4:f3:20:ca:5a:
da:18:45:a8:b5:aa:57:23:d1:3f:59:11:27:23:e8:12:ec:4e:
5e:90:16:b5:00:f7:e6:02:1f:40:cb:49:db:43:1f:78:26:84:
8d:bb:62:7c:cc:e2:6a:7a:1d:d4:58:c4:74:7f:84:da:0e:63:
72:58:09:78:b0:ac:02:c3:f6:2d:19:c7:3f:f6:d0:d1:b7:23:
5a:34:66:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:59:23 2026 by rpki-client