Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
File: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft (raw, json)
Hash identifier: i9kk4p4uswtzu51r532swuq59w/vKdz0wyYneCkSigQ=
Subject key identifier: A2:23:C8:1D:17:F0:0B:44:BA:1D:50:E0:54:07:06:0D:35:0C:99:F2
Authority key identifier: A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
Certificate issuer: /CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Certificate serial: 019EC300E88C2F49FC62F1B0130DC086C443
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
Manifest number: 1959
Signing time: Sat 13 Jun 2026 22:01:17 +0000
Manifest this update: Sat 13 Jun 2026 22:01:17 +0000
Manifest next update: Sun 14 Jun 2026 22:01:17 +0000
Files and hashes: 1: UDOQeKm21_HbogaX80qPDYGLszg.roa (hash: oQCYUWGJBiukXuu22aVYGVLYnrdXQVCn7RQqhgm8PBQ=)
2: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl (hash: K0IZ9BO8Du2UgxQnQ2eFv6P7/52+z+3WU4JjmkX4EjQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:00:e8:8c:2f:49:fc:62:f1:b0:13:0d:c0:86:c4:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Validity
Not Before: Jun 13 22:01:17 2026 GMT
Not After : Jun 14 22:01:17 2026 GMT
Subject: CN=a223c81d17f00b44ba1d50e05407060d350c99f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:84:31:5b:66:85:19:a9:cf:c4:04:4f:2b:6b:
f1:23:8a:73:32:1c:ff:f0:83:d0:d5:2c:e2:3e:a4:
fa:86:7f:2c:a2:d1:f3:b0:d2:a3:fc:a5:89:0d:51:
11:d2:1b:16:14:06:8f:43:b8:f1:79:4c:86:f0:6f:
7e:59:5c:ed:4a:52:52:f6:72:5f:ff:bc:6d:a5:4f:
c6:9d:51:ee:89:52:b5:68:84:70:5f:f9:6d:89:39:
33:61:3a:57:5b:80:e8:ab:96:1d:17:74:d8:32:65:
a2:5a:24:b2:5a:2e:bc:d6:68:81:68:69:f5:81:21:
3d:3d:b3:f6:77:eb:13:d9:e6:bd:51:7a:4d:90:c7:
3c:cd:a9:0a:d4:81:28:da:33:c1:67:39:64:0f:06:
37:53:a9:8a:e9:bb:01:9c:22:3d:e0:16:58:90:6d:
2b:fc:40:07:16:42:29:cc:8b:f6:4d:10:38:cb:19:
4f:da:8d:2b:2c:bb:4b:28:59:ba:e3:27:f7:9e:a6:
e1:5d:24:f9:69:06:a6:11:e1:4a:c7:d4:75:50:9d:
e9:74:0c:31:e8:b3:c5:87:be:ae:48:e5:d7:9c:f5:
d7:22:ea:fc:46:16:21:76:bf:3f:f0:71:f9:28:be:
15:4b:ba:0c:67:9b:0f:df:1b:46:c6:c0:18:53:bc:
aa:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:23:C8:1D:17:F0:0B:44:BA:1D:50:E0:54:07:06:0D:35:0C:99:F2
X509v3 Authority Key Identifier:
keyid:A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:5c:73:c1:40:41:9d:3c:62:96:0e:94:ea:6e:56:b1:55:69:
0a:fa:36:2f:fa:56:9a:63:e6:dd:b7:60:88:7f:07:7e:c6:ff:
0f:d7:78:85:b3:1e:94:25:69:0e:a5:23:ca:64:c1:f7:9c:ad:
2a:7d:18:76:b4:37:e1:92:2c:5d:7b:fc:99:6b:16:73:7b:95:
94:da:e2:b9:de:89:c9:42:17:36:f1:1f:da:8f:8a:0c:d4:67:
df:08:5b:65:81:f1:4e:24:64:f3:15:28:ed:cc:da:70:76:f6:
0b:34:c2:ad:64:89:f1:5b:ed:ff:16:58:a6:93:c6:26:93:72:
3e:b3:cd:5a:48:dd:1b:e2:13:4d:8d:c4:96:c6:29:92:55:36:
50:72:e9:df:f5:97:b9:e6:d3:66:1b:14:fb:6c:f9:99:e0:1a:
2e:6a:00:8f:00:e4:97:dd:19:02:92:21:07:48:cf:9c:04:7a:
9d:97:82:bb:1c:be:99:40:3f:aa:c4:99:b8:93:14:44:e8:68:
8a:4b:44:54:d8:0e:2b:ca:e1:e7:40:6c:be:62:45:af:80:a9:
59:e5:d9:8c:61:9b:85:b6:55:ff:81:aa:bf:15:93:f2:ef:21:
55:4e:e5:0b:ac:38:e3:1c:3c:f2:80:c0:dd:bc:4a:30:e4:c6:
c8:62:b1:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 04:26:00 2026 by rpki-client