Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
File: oLwgSfIYtv2rytdZTCUjso2kd8E.mft (raw, json)
Hash identifier: lJmytnx6aEnGNdD0yJjRHYFIQVyAht8m8pY86RTTqwg=
Subject key identifier: 89:B0:55:D3:F3:48:26:2E:51:8B:61:D3:30:68:20:E9:AC:2A:B9:41
Authority key identifier: A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
Certificate issuer: /CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Certificate serial: 019ED499F1E898417AC55F973FBDE053977F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
Manifest number: 18F9
Signing time: Wed 17 Jun 2026 08:01:59 +0000
Manifest this update: Wed 17 Jun 2026 08:01:59 +0000
Manifest next update: Thu 18 Jun 2026 08:01:59 +0000
Files and hashes: 1: oLwgSfIYtv2rytdZTCUjso2kd8E.crl (hash: Pm4efH5gksz8QiJ1WZeZuDkQ4rd34mm3/TZb1gAS/lo=)
2: p7q0kuT4l_QfTZ5_ImIne2o94fw.roa (hash: +S1UVYMeaTeGs9fWcZKSGrpvJ3bbJy0eiN+e0mJvcII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 08:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d4:99:f1:e8:98:41:7a:c5:5f:97:3f:bd:e0:53:97:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Validity
Not Before: Jun 17 08:01:59 2026 GMT
Not After : Jun 18 08:01:59 2026 GMT
Subject: CN=89b055d3f348262e518b61d3306820e9ac2ab941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e0:1f:67:2d:8e:cf:b3:3b:23:e4:ab:dc:65:
b9:9f:9d:0c:59:14:53:c4:23:dc:19:4e:51:d0:83:
e0:08:71:e8:1c:ef:a8:35:cb:b2:a3:e5:1d:7b:b3:
21:ab:9e:22:df:1f:2c:76:e8:39:12:cc:81:aa:ff:
2d:72:e0:65:5b:ad:f0:32:7b:7d:0d:f6:dc:00:a6:
88:6e:39:53:d0:c3:02:8b:26:b7:2f:51:9d:ce:41:
a8:77:89:85:64:5e:d0:37:27:d7:14:b8:7a:67:6d:
72:f8:d7:df:42:a4:2a:25:e6:16:b2:9c:8a:16:5d:
14:2f:4f:b4:8b:29:22:10:14:e8:94:a3:3a:17:52:
44:93:a5:5e:af:98:3e:f0:b5:87:84:5e:21:99:e8:
1e:c3:64:8e:ff:59:2a:1d:2f:de:e8:02:6f:67:51:
a3:56:d2:23:6b:f8:a6:56:5e:41:62:f5:90:1d:8a:
31:41:13:4b:02:88:00:70:7e:71:22:01:e6:7a:6d:
8e:50:8e:43:5e:c7:c6:28:42:33:7f:47:88:cf:54:
9a:6e:86:c0:56:b1:8c:a3:21:fa:0c:df:74:55:31:
a7:08:83:19:86:fb:fd:09:68:3d:11:0c:29:c9:ae:
97:4e:8f:55:1f:c6:98:06:f6:1b:cc:6d:86:08:c9:
2e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B0:55:D3:F3:48:26:2E:51:8B:61:D3:30:68:20:E9:AC:2A:B9:41
X509v3 Authority Key Identifier:
keyid:A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:b0:35:74:ab:b6:97:f3:7f:c3:b8:cf:0a:d6:b7:0d:b1:de:
ee:c9:a5:11:8e:0c:b1:58:49:e6:ed:10:24:c5:bb:c9:6f:f4:
a1:70:f8:93:f7:d8:7d:46:86:65:d6:90:32:83:d8:cc:cb:7c:
d9:c9:44:41:91:12:32:a4:06:72:0a:89:62:d4:77:3e:6c:19:
01:6f:fe:eb:e2:b0:df:28:82:1a:47:e3:53:47:1b:57:80:c1:
46:a2:f5:1f:1e:07:c3:d0:dc:0b:f7:37:22:3a:83:88:13:3e:
97:7e:c0:75:a4:c7:18:82:4e:2c:eb:51:78:ea:32:8f:5f:80:
80:17:b5:e7:8d:ee:f4:01:7d:df:38:27:be:e5:fc:a7:9e:8f:
2b:cc:f3:22:76:9a:fd:39:ca:e1:bb:e5:07:b6:00:88:02:2e:
96:e0:f0:0e:2d:10:21:8e:51:02:0d:8a:fd:7f:72:59:0d:56:
e4:36:16:9b:1d:ea:68:a6:19:8c:6c:0d:8e:04:00:3e:01:b0:
d9:5a:f6:3d:84:b7:94:4c:c4:48:f8:2a:96:59:2c:5f:fb:fd:
ea:23:7c:96:a0:1f:81:b8:c4:f6:a3:79:85:e9:cd:fa:75:f6:
48:8a:b8:cc:18:48:ee:f1:a7:ae:3d:71:e0:81:d7:52:9f:f6:
9d:68:13:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 11:55:22 2026 by rpki-client