Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
File: oYanahiZ2_kCnhrv2QUXe7CdNo0.mft (raw, json)
Hash identifier: ZBLKfHjiatkY/f1Z+OCqweISbm2YxGGBf+cW/QWrV3I=
Subject key identifier: 9D:7A:AE:1F:4E:A9:73:52:AC:43:78:58:E7:22:FD:04:ED:69:4A:B1
Authority key identifier: A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
Certificate issuer: /CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Certificate serial: 019D9A3DEE615D784805445A5DFA5438F85A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
Manifest number: 0D53
Signing time: Fri 17 Apr 2026 07:00:43 +0000
Manifest this update: Fri 17 Apr 2026 07:00:43 +0000
Manifest next update: Sat 18 Apr 2026 07:00:43 +0000
Files and hashes: 1: NN02RYdDSld5Y_Gaa2L7Y6KMwlg.roa (hash: kmXA/OCGhyiId8hIHYYzQ+3ut/BaLBRzEWv/qUUmjqo=)
2: oYanahiZ2_kCnhrv2QUXe7CdNo0.crl (hash: O9lY8T40n8H/2Mg8Yp2OHa9kVzp0ElEW/wzVjGj/1hs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3d:ee:61:5d:78:48:05:44:5a:5d:fa:54:38:f8:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Validity
Not Before: Apr 17 07:00:43 2026 GMT
Not After : Apr 18 07:00:43 2026 GMT
Subject: CN=9d7aae1f4ea97352ac437858e722fd04ed694ab1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:16:19:ee:b0:b2:8f:47:43:1d:23:69:d7:64:
d2:ea:b2:fa:4c:b9:b3:83:3e:de:b2:17:2f:87:ed:
62:1b:26:ae:32:63:74:69:16:39:61:37:11:a4:11:
12:8c:94:d3:32:05:1b:80:3f:a4:c9:31:9b:d7:f1:
48:df:f6:75:a9:51:5f:50:61:eb:37:fd:0a:ac:4a:
2a:12:11:c1:d3:22:66:cd:0a:d2:e9:4a:16:f6:ff:
b1:39:81:b1:2f:35:97:fa:21:b5:ff:36:9d:41:36:
c9:3d:48:4c:63:15:8a:1e:ca:32:ec:c8:b9:b0:1c:
bc:65:5e:97:04:3b:56:27:1f:09:1c:32:77:d5:a4:
f8:2d:0c:cb:1e:2b:84:c9:ea:23:59:1c:4a:95:1f:
fd:02:7b:f2:f4:1e:9a:2f:31:1a:fe:1c:5f:37:d8:
89:84:06:47:a9:f9:4f:73:39:fd:a4:1e:4c:ee:74:
a4:be:51:3c:47:da:eb:74:7e:ef:2e:b8:b2:da:89:
0b:8d:39:5e:ac:02:d4:48:68:8e:88:55:1b:d6:bc:
26:f3:51:bb:68:0f:ef:f3:bd:fb:7c:42:a8:8b:b5:
af:43:e2:87:55:b1:1e:03:cf:cf:bf:06:33:b2:86:
f3:e4:ff:5c:1a:4e:3c:55:10:b3:5e:a0:d1:75:b7:
02:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:7A:AE:1F:4E:A9:73:52:AC:43:78:58:E7:22:FD:04:ED:69:4A:B1
X509v3 Authority Key Identifier:
keyid:A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:b4:14:00:ff:bd:85:68:ef:ab:ec:e0:c5:20:a3:fa:30:6b:
9a:92:1a:0f:a2:ed:0d:e0:be:77:7a:2b:14:65:43:4e:d7:0b:
83:23:cd:47:8e:2b:dc:7b:a0:a7:01:0f:39:9f:ac:81:b4:b1:
fc:9d:33:b8:7b:09:bb:3e:73:a5:71:17:70:f0:47:ee:e9:c3:
ce:8c:03:6d:41:bc:69:4e:36:82:d8:0c:c4:10:ce:01:1c:f7:
9a:26:0a:1c:b7:ed:0f:70:5e:a1:db:b8:71:0c:b8:d1:fc:9b:
b8:53:bc:e8:ff:68:d6:15:40:67:6a:e2:ad:53:6e:07:8c:42:
e3:42:f0:79:a9:59:ee:2b:e8:d4:fd:07:87:09:44:bb:c0:60:
26:75:8e:34:c7:69:42:a1:a3:3d:7a:0a:08:bc:ce:23:a4:6c:
41:15:29:4b:58:ce:ed:f1:26:67:54:7e:51:38:6a:a0:d6:10:
2d:18:66:ff:b8:cb:ae:83:68:0e:ab:1d:93:4d:6f:eb:11:ec:
60:87:0c:52:10:36:7a:3b:33:47:e9:34:1d:3b:f5:f4:b8:c0:
cc:2f:ba:a7:de:7d:c7:0d:cc:d7:2f:b2:70:5e:29:14:ab:6b:
17:33:96:36:3d:16:4f:5c:17:68:62:ee:f0:c7:ee:20:0f:d7:
8d:3c:a6:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aPe5hXXhIBURaXfpUOPhaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExODZhNzZhMTg5OWRiZjkwMjllMWFlZmQ5MDUxNzdiYjA5
ZDM2OGQwHhcNMjYwNDE3MDcwMDQzWhcNMjYwNDE4MDcwMDQzWjAzMTEwLwYDVQQD
Eyg5ZDdhYWUxZjRlYTk3MzUyYWM0Mzc4NThlNzIyZmQwNGVkNjk0YWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhYZ7rCyj0dDHSNp12TS6rL6TLmz
gz7eshcvh+1iGyauMmN0aRY5YTcRpBESjJTTMgUbgD+kyTGb1/FI3/Z1qVFfUGHr
N/0KrEoqEhHB0yJmzQrS6UoW9v+xOYGxLzWX+iG1/zadQTbJPUhMYxWKHsoy7Mi5
sBy8ZV6XBDtWJx8JHDJ31aT4LQzLHiuEyeojWRxKlR/9Anvy9B6aLzEa/hxfN9iJ
hAZHqflPczn9pB5M7nSkvlE8R9rrdH7vLriy2okLjTlerALUSGiOiFUb1rwm81G7
aA/v8737fEKoi7WvQ+KHVbEeA8/PvwYzsobz5P9cGk48VRCzXqDRdbcCdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ16rh9OqXNSrEN4WOci/QTtaUqxMB8GA1UdIwQY
MBaAFKGGp2oYmdv5Ap4a79kFF3uwnTaNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS84NTk1YzgtNDgzNC00ZDU0LWEzOTEt
MzEyZTViNDkxMTQ2LzEvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS84NTk1YzgtNDgzNC00ZDU0LWEzOTEtMzEyZTViNDkxMTQ2
LzEvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXrQUAP+9
hWjvq+zgxSCj+jBrmpIaD6LtDeC+d3orFGVDTtcLgyPNR44r3HugpwEPOZ+sgbSx
/J0zuHsJuz5zpXEXcPBH7unDzowDbUG8aU42gtgMxBDOARz3miYKHLftD3Beodu4
cQy40fybuFO86P9o1hVAZ2rirVNuB4xC40LwealZ7ivo1P0HhwlEu8BgJnWONMdp
QqGjPXoKCLzOI6RsQRUpS1jO7fEmZ1R+UThqoNYQLRhm/7jLroNoDqsdk01v6xHs
YIcMUhA2ejszR+k0HTv19LjAzC+6p959xw3M1y+ycF4pFKtrFzOWNj0WT1wXaGLu
8MfuIA/XjTymlQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 14:26:07 2026 by rpki-client