Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
File: oNMhbMzIY-ygw90YmUGxueo3ys0.mft (raw, json)
Hash identifier: WPf7yKUFwNp8GsH1eXwIs9RNLjZ+DsCpu3eJoDP7sgI=
Subject key identifier: 7E:95:43:50:5D:5D:34:01:CB:7B:7A:6F:AD:F4:5C:81:FA:7A:45:D7
Authority key identifier: A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
Certificate issuer: /CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Certificate serial: 019EC1B76F8E21B195647FCE194076FFFD8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
Manifest number: 11A9
Signing time: Sat 13 Jun 2026 16:01:24 +0000
Manifest this update: Sat 13 Jun 2026 16:01:24 +0000
Manifest next update: Sun 14 Jun 2026 16:01:24 +0000
Files and hashes: 1: RvaTJRlt29ftCtqE0WpwZqGpE9g.roa (hash: StTKZA1GU7wGVFQWDEqlmDXT/zh0mjE1gXIOwpYnhZU=)
2: oNMhbMzIY-ygw90YmUGxueo3ys0.crl (hash: hLJzpUj0KRMuV7Oin4H8ntcd9D5qp2xHo78BqdXBbMQ=)
3: oTJ_SiNI-sTWNycV04ya44fLP9Q.roa (hash: oQAMQxzLon76LhylB305yCYYWrb8zMDw4+N6NR6rHCY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b7:6f:8e:21:b1:95:64:7f:ce:19:40:76:ff:fd:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Validity
Not Before: Jun 13 16:01:24 2026 GMT
Not After : Jun 14 16:01:24 2026 GMT
Subject: CN=7e9543505d5d3401cb7b7a6fadf45c81fa7a45d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4e:b2:31:57:a2:b2:5e:af:91:cd:02:a3:f6:
1a:26:83:2e:0d:38:e5:c0:83:71:4b:00:ee:b9:c1:
8e:cb:05:9a:6b:0d:51:22:7c:83:50:b2:b9:90:f7:
fb:9e:65:8c:19:6c:89:f5:92:d4:6a:08:fa:86:ac:
92:0e:54:43:6b:48:3a:ab:b6:e6:17:bf:1d:06:9e:
bc:75:5f:49:f3:d7:7a:a4:7d:80:09:ba:ff:8c:af:
bd:6f:5f:c8:76:ab:43:ac:4a:42:0f:56:29:20:c4:
13:7c:7b:a7:d3:ab:e9:2a:76:98:4b:b3:d9:a0:79:
ca:eb:a1:91:7f:06:66:e2:7b:e8:06:46:61:26:21:
56:36:07:93:35:4d:f9:e4:9e:6e:af:d0:a4:12:d6:
86:1b:be:de:13:0a:9d:e3:22:ea:1f:50:01:31:f6:
c1:6d:55:bc:d0:71:6b:57:55:6f:27:36:2f:75:53:
35:46:3f:12:d0:1f:35:46:f3:17:1c:bd:19:2e:ce:
7c:10:e0:6e:b3:55:4f:bd:09:51:2f:af:9a:b8:f8:
b6:be:bb:3a:f8:db:fb:5e:42:eb:1f:37:d8:6c:63:
40:3f:8d:d9:f9:f2:e7:fe:ec:0c:33:a3:af:21:35:
88:66:c1:3e:ac:fd:a5:25:b7:2e:cf:d2:9f:a3:18:
37:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:95:43:50:5D:5D:34:01:CB:7B:7A:6F:AD:F4:5C:81:FA:7A:45:D7
X509v3 Authority Key Identifier:
keyid:A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:db:c3:63:00:2b:a1:f8:0b:40:cc:2f:7e:81:f7:52:0d:a5:
b0:44:9d:8a:0e:02:69:3e:90:de:1f:4b:13:c4:f4:30:b6:e6:
ab:db:1d:47:5b:81:41:8d:db:96:d9:b2:f2:09:44:4d:56:47:
d6:a1:12:04:7f:e9:71:86:b2:79:0e:aa:e8:b9:6a:08:0b:7d:
3f:81:0a:de:00:5b:bf:cf:73:68:cb:d7:ac:03:23:09:6a:8c:
69:a1:7a:7b:b7:a8:be:54:2b:7a:c6:96:66:b5:c9:b7:28:f1:
d4:09:32:60:59:5e:68:b2:51:7f:01:e3:8e:5b:b5:9b:74:da:
7c:e7:ab:6b:ea:90:b3:96:ff:32:9d:a4:ef:2a:51:35:22:f8:
41:4c:a0:a9:35:b3:ba:9d:45:91:1b:c7:f8:92:3d:5b:c5:72:
f3:5b:6a:fb:82:af:41:68:eb:d8:55:f1:03:85:73:01:c7:3a:
6f:00:4b:10:e5:f7:9e:3b:2e:22:cc:87:3c:fd:23:88:7e:0c:
b3:2f:89:11:3a:c5:8f:69:18:3b:56:d9:0a:9f:04:37:8d:e7:
33:dd:c4:b3:84:b2:26:a3:95:9d:bd:2e:eb:08:a3:34:1c:d3:
da:26:8c:99:2f:e8:26:63:b4:06:a6:e2:78:37:f1:da:b2:ca:
b4:62:cf:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:03:23 2026 by rpki-client