Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft
File: oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft (raw, json)
Hash identifier: RgPOuFMG+KcU7QrLPZnXWZNokW2jXZa6MnLBh5pM/a8=
Subject key identifier: 15:3C:39:69:E8:26:2F:83:E6:C3:7F:7C:EC:8F:DE:B3:E9:A4:C7:86
Authority key identifier: A0:96:08:F1:5B:36:7A:EE:48:6B:85:6D:9E:40:4C:3D:1E:0A:5F:D4
Certificate issuer: /CN=a09608f15b367aee486b856d9e404c3d1e0a5fd4
Certificate serial: 019D2997287A7853CF51D803EFBA6494FF46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft
Manifest number: 15C2
Signing time: Thu 26 Mar 2026 10:01:05 +0000
Manifest this update: Thu 26 Mar 2026 10:01:05 +0000
Manifest next update: Fri 27 Mar 2026 10:01:05 +0000
Files and hashes: 1: lh0K5-Z5Aaz0j8wGnxp6HsFtPYk.roa (hash: JhDyY/3KKD4NQI4A4Yynp5xK7eSjDNrmxGYBJDA+6gE=)
2: oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl (hash: rhC7U70bGqsrwYd8Z21CHgWpEM4KrVyHDCP3ICo2nVw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:28:7a:78:53:cf:51:d8:03:ef:ba:64:94:ff:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09608f15b367aee486b856d9e404c3d1e0a5fd4
Validity
Not Before: Mar 26 10:01:05 2026 GMT
Not After : Mar 27 10:01:05 2026 GMT
Subject: CN=153c3969e8262f83e6c37f7cec8fdeb3e9a4c786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:f2:6b:d9:23:fe:45:d1:ad:df:d9:52:cc:36:
c9:75:c3:02:a3:01:3d:59:7d:9d:68:3d:15:e9:ae:
ef:39:b0:e6:ed:d7:33:d5:98:93:36:5e:48:5f:fe:
23:0f:ea:62:58:17:2a:1b:85:29:a1:13:8d:da:06:
0e:85:4f:62:29:44:65:c0:e0:0b:00:84:0e:e9:a0:
c0:10:13:03:4b:21:c5:66:83:7b:2d:02:6f:1d:aa:
f4:0f:b3:a6:8d:54:70:78:ad:dc:f7:fa:cf:d5:3e:
2d:93:49:f4:04:a2:78:18:31:5c:bb:a2:8b:c8:d4:
ed:f6:6a:69:06:bc:18:ca:92:a9:46:d5:8d:7a:f3:
b0:bd:6c:9a:37:56:86:92:43:fd:b8:3d:65:a1:e2:
d1:1e:0c:7f:ca:a2:4c:e8:dc:67:0d:3e:e8:fc:dd:
5f:f8:cb:b1:de:b3:64:03:f9:36:78:b0:44:30:0a:
da:1a:47:03:54:1c:b9:e1:d0:ba:42:f6:e4:a1:6a:
76:ab:24:e8:d9:01:80:ca:8d:32:e6:3e:4d:2e:de:
72:ef:f5:17:89:43:00:b3:82:27:0a:2a:d6:06:65:
c9:5b:51:81:43:03:25:4c:99:30:bd:50:a7:7f:66:
83:b3:3a:3c:8b:d2:79:e3:51:0a:cc:cf:0e:72:94:
5a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:3C:39:69:E8:26:2F:83:E6:C3:7F:7C:EC:8F:DE:B3:E9:A4:C7:86
X509v3 Authority Key Identifier:
keyid:A0:96:08:F1:5B:36:7A:EE:48:6B:85:6D:9E:40:4C:3D:1E:0A:5F:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:15:4c:d7:11:92:1c:d5:0c:2f:53:f6:5f:98:3d:01:a8:f2:
78:5f:da:e2:00:c7:e5:e7:73:6e:09:9d:92:86:fe:10:91:7d:
f3:e1:cb:85:ab:f0:ee:bb:15:85:72:f8:af:d2:89:d1:5f:14:
0e:de:c7:b9:e3:cc:30:1e:27:0e:27:ce:ee:3b:0b:96:fc:6e:
d0:5a:97:c2:d4:c6:58:c5:b8:4a:4a:43:2b:1b:40:3c:30:60:
6b:48:6a:b7:c8:c7:7f:45:ea:0c:8a:3f:8c:ed:a8:f4:6b:e7:
fa:f7:3a:f8:c0:c6:41:0d:41:53:fb:ea:66:32:95:6c:2a:1a:
5c:68:14:72:57:02:2d:9e:53:1c:48:63:f0:43:d8:2e:cc:02:
c9:87:55:be:04:31:0d:b2:16:28:be:97:58:52:47:01:75:9b:
2c:39:a1:cf:d9:d9:cf:88:36:d8:56:1c:a4:e4:ec:70:be:7d:
ce:63:fd:a5:0e:0c:b5:ae:29:0d:bb:69:e6:d1:19:bf:e6:ac:
e0:51:7e:39:26:4f:36:cf:d9:ed:08:b6:18:f3:21:cc:49:01:
8b:aa:69:82:07:72:e1:00:cc:ec:e8:db:6a:a2:7b:cf:53:68:
26:33:42:6c:b5:87:41:1c:5a:c6:a7:2a:4e:07:64:5c:4a:8b:
6d:d3:8b:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:30:09 2026 by rpki-client