Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
File: oE3odQHH0wgsdmWfTevZQohDtMs.mft (raw, json)
Hash identifier: rPyIjd4+i+FnymJaYcl+4gJk2eBOgr71PagwcjhKvRE=
Subject key identifier: 76:69:E2:96:C2:D5:68:F1:F2:72:BE:76:C2:FE:77:17:D2:89:D8:A3
Authority key identifier: A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
Certificate issuer: /CN=a04de87501c7d3082c76659f4debd9428843b4cb
Certificate serial: 019EC2C985707A3E4A12C8C3C7DE741540BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
Manifest number: 153E
Signing time: Sat 13 Jun 2026 21:00:47 +0000
Manifest this update: Sat 13 Jun 2026 21:00:47 +0000
Manifest next update: Sun 14 Jun 2026 21:00:47 +0000
Files and hashes: 1: GhCvmgJfuG506WuiaBMBgDUJQZU.roa (hash: I8NuJF/bk5fAsj3b12qVIfzMf7umbiG0VV3yAbXwHJo=)
2: oE3odQHH0wgsdmWfTevZQohDtMs.crl (hash: HwrobQLHJfs6hDOKiMIq2+Ltq9/9ZZS3QyshphqXqck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 21:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:c9:85:70:7a:3e:4a:12:c8:c3:c7:de:74:15:40:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a04de87501c7d3082c76659f4debd9428843b4cb
Validity
Not Before: Jun 13 21:00:47 2026 GMT
Not After : Jun 14 21:00:47 2026 GMT
Subject: CN=7669e296c2d568f1f272be76c2fe7717d289d8a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c4:04:49:c9:0f:ca:2a:ff:78:aa:f9:2c:83:
02:22:40:75:77:fa:c6:8a:aa:39:aa:a8:f0:85:0a:
1a:a0:70:c0:5d:da:bf:48:a0:f9:fb:c5:4b:bd:67:
82:1f:03:fc:93:26:80:de:62:71:9f:4c:81:f3:1c:
8c:2a:e8:1d:d0:10:6e:c7:fc:99:52:e2:d2:15:50:
a9:23:48:f1:4e:0e:1c:cd:ca:26:4a:ff:cc:c2:6d:
0a:e3:d9:53:a0:8a:61:3f:bc:9b:ea:99:ab:1e:a6:
26:c6:ce:73:03:b9:09:d6:20:6e:40:43:53:fa:72:
28:e4:d6:1e:e0:c5:59:18:a4:db:0a:e4:d2:07:ca:
26:3a:57:77:0f:63:bd:c2:37:87:f5:b1:63:96:7e:
15:ea:6a:f5:63:25:f5:ee:ac:70:11:77:0b:e7:de:
66:0c:7d:72:eb:1d:91:8a:d8:56:6b:65:ab:ae:9f:
a8:e0:96:04:aa:9b:d6:9b:df:c8:b5:e2:80:bf:db:
33:ff:91:e4:a7:f7:a6:c4:ab:04:6c:b0:4e:44:e7:
ab:8c:4c:ed:d9:56:16:7f:87:6d:82:ec:a0:18:dc:
23:a0:28:bf:21:37:53:1b:c1:48:74:5a:06:c4:05:
45:0c:37:2c:b4:a2:8d:a7:e2:36:ee:02:f9:52:38:
e5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:69:E2:96:C2:D5:68:F1:F2:72:BE:76:C2:FE:77:17:D2:89:D8:A3
X509v3 Authority Key Identifier:
keyid:A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:65:05:5e:5c:c7:2b:30:5f:f7:2a:93:1c:b2:43:8c:19:61:
35:b4:17:fd:cf:6b:4a:e7:db:fb:74:27:3a:08:9f:1d:11:79:
a1:42:c3:51:de:e6:5b:52:c1:a9:f2:f8:d9:15:31:1d:65:86:
e2:fd:35:1f:57:ad:71:a9:6f:cf:65:1c:5c:4a:cd:be:e8:39:
75:0a:76:5e:4c:48:e5:5b:a4:e2:8d:9f:3d:41:ad:d4:07:1b:
ca:8d:60:70:8c:f3:82:39:2d:f7:27:6b:f7:ab:c9:3e:cc:74:
19:de:02:1b:31:1a:a8:1b:b0:11:39:77:c0:d3:38:ed:6c:71:
1f:be:6f:b6:2f:f5:c3:7c:ca:bb:76:15:78:38:7f:80:4a:09:
ff:51:8a:6a:93:e4:4e:ee:a3:d5:3b:b8:35:b1:b7:a3:19:e9:
30:9f:76:42:53:77:21:11:b0:7b:34:a6:38:32:1d:ff:4d:9f:
53:98:92:ba:a0:f0:42:eb:a9:a9:6a:f0:8e:a2:60:c8:13:4d:
2d:60:2a:bf:84:59:5e:6d:56:50:67:d9:7c:cd:a7:d1:41:e8:
be:7e:b8:d5:52:62:37:7f:d5:6c:04:cc:07:23:ed:6a:39:66:
06:db:92:ee:68:42:87:f2:56:2e:e2:5e:43:ca:f4:2d:b9:cf:
60:c8:33:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 06:35:59 2026 by rpki-client