Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
File: oYanahiZ2_kCnhrv2QUXe7CdNo0.mft (raw, json)
Hash identifier: RKvviOMvC6TsrUtUCfokE7FXO3DyjpBrYNrQL2Vvg7k=
Subject key identifier: B3:29:16:C4:B7:C3:2A:8F:72:ED:A3:BA:31:B6:B3:BC:96:94:89:96
Authority key identifier: A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
Certificate issuer: /CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Certificate serial: 019EBFC8871841022FD2B86A6F531032231F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
Manifest number: 0DEB
Signing time: Sat 13 Jun 2026 07:00:50 +0000
Manifest this update: Sat 13 Jun 2026 07:00:50 +0000
Manifest next update: Sun 14 Jun 2026 07:00:50 +0000
Files and hashes: 1: NN02RYdDSld5Y_Gaa2L7Y6KMwlg.roa (hash: kmXA/OCGhyiId8hIHYYzQ+3ut/BaLBRzEWv/qUUmjqo=)
2: oYanahiZ2_kCnhrv2QUXe7CdNo0.crl (hash: LHuvV4Ihqog8G4Ug2KCJ9HWllEfvo/1iAyG7n5F6qCU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 07:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c8:87:18:41:02:2f:d2:b8:6a:6f:53:10:32:23:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Validity
Not Before: Jun 13 07:00:50 2026 GMT
Not After : Jun 14 07:00:50 2026 GMT
Subject: CN=b32916c4b7c32a8f72eda3ba31b6b3bc96948996
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1b:40:4d:a2:6f:2a:23:49:7e:46:02:b7:05:
ce:ac:cf:3c:fa:5a:ff:bd:11:a5:58:5f:c1:98:42:
e1:31:e3:d5:69:23:4a:0e:2e:6f:93:5b:54:20:c9:
c6:6b:5e:b3:91:60:7f:81:b9:16:5c:c6:88:a1:e4:
b9:96:35:4e:87:59:f7:19:6c:b5:17:6d:23:c0:95:
b6:f9:9b:33:84:9a:e4:56:72:eb:14:82:59:a6:c5:
f3:50:b2:9d:71:02:a9:f3:b0:19:ae:4c:e8:a3:20:
8e:d0:7f:b3:bc:39:1a:53:c8:5f:f0:0f:42:48:bf:
74:3a:65:13:dc:3a:09:86:4a:6a:a7:f4:0a:6b:3a:
bd:b3:35:f7:e2:d0:c1:b0:5a:2c:40:02:fb:8b:a9:
c3:1b:6f:c9:0e:31:90:c9:cb:d2:80:d0:5f:60:f2:
7d:cf:8b:f4:a5:81:f2:f1:72:dd:d2:e9:0f:bf:0d:
72:d3:d3:91:5b:88:70:9d:cb:ba:20:1b:84:8d:bb:
e6:4c:30:55:8c:03:42:75:2a:d4:a3:25:54:f3:42:
a3:be:e5:0b:78:b9:7d:87:01:07:90:96:d6:3a:06:
57:b5:fa:cf:64:66:fb:69:d1:32:79:b1:5e:15:e0:
24:b8:73:33:7a:3d:6b:c6:bf:2e:de:09:04:c4:bb:
39:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:29:16:C4:B7:C3:2A:8F:72:ED:A3:BA:31:B6:B3:BC:96:94:89:96
X509v3 Authority Key Identifier:
keyid:A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:17:83:ed:8c:80:87:bd:39:f1:1d:13:f6:17:89:2d:59:09:
f8:66:00:01:4a:f6:03:8b:1b:be:03:6d:d8:c9:81:73:39:ad:
b3:53:00:89:2d:c3:01:8e:1e:c8:6b:ab:1f:25:a7:5b:ea:bb:
62:e0:14:d7:76:86:26:4c:53:91:da:6e:0f:d9:5c:45:9b:d1:
43:3d:3f:09:eb:bc:69:4b:f0:74:94:f6:73:99:63:5f:d5:e1:
37:fb:35:d0:2b:65:38:8b:38:43:2e:c0:02:ce:25:86:b5:93:
1e:80:dc:fc:9e:b7:80:ea:7e:60:96:18:87:07:65:9f:05:ec:
13:c4:12:15:c6:6c:42:c0:9f:ad:9e:f4:a6:1d:40:9f:d0:7f:
b8:df:14:75:87:a1:35:ae:20:47:a9:a4:05:6b:df:da:0e:d7:
e1:c5:42:9d:79:39:c8:9e:86:bf:3a:28:bb:e8:23:9b:f2:1d:
ba:d5:94:eb:3d:42:02:32:cc:3b:db:76:87:be:6e:55:54:43:
fd:2b:26:a5:4b:18:5b:24:05:ce:75:86:62:4e:e7:d6:81:8b:
2b:38:8d:19:42:d3:d7:b2:c6:8b:c1:ba:3f:38:d1:0a:e9:e1:
28:75:59:14:07:cd:32:29:3b:b7:79:79:5e:65:44:59:f9:28:
2f:6a:e5:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 14:59:44 2026 by rpki-client