Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/e4163b-a2d2-4a48-8648-a230f2017338/1/ojKhc4Do4liY3qnCIzIaKs5SNvE.mft
File: ojKhc4Do4liY3qnCIzIaKs5SNvE.mft (raw, json)
Hash identifier: lnmDpNfodtoGYBrTjbWsu9hy6V+Z3zK5rK4xTjJm3pU=
Subject key identifier: 0D:34:80:A5:DC:4C:55:7B:5D:00:C3:49:55:80:0C:38:BE:E5:8D:69
Authority key identifier: A2:32:A1:73:80:E8:E2:58:98:DE:A9:C2:23:32:1A:2A:CE:52:36:F1
Certificate issuer: /CN=a232a17380e8e25898dea9c223321a2ace5236f1
Certificate serial: 019EC224FA61DA0FD3D0D0B529BC32C1F74E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ojKhc4Do4liY3qnCIzIaKs5SNvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/e4163b-a2d2-4a48-8648-a230f2017338/1/ojKhc4Do4liY3qnCIzIaKs5SNvE.mft
Manifest number: 9B
Signing time: Sat 13 Jun 2026 18:01:03 +0000
Manifest this update: Sat 13 Jun 2026 18:01:03 +0000
Manifest next update: Sun 14 Jun 2026 18:01:03 +0000
Files and hashes: 1: ojKhc4Do4liY3qnCIzIaKs5SNvE.crl (hash: BJRrSPR8vl8bUeJ7puSltNTGblOK1l7oLTi/nk9g1l8=)
2: xyoH9R_BmdJ-gyu7Oy-9rS-zs-0.roa (hash: HGNIvY3ULeEgQ68bK1r/+JhRNbs682fuQL9Y7B95gbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/e4163b-a2d2-4a48-8648-a230f2017338/1/ojKhc4Do4liY3qnCIzIaKs5SNvE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/e4163b-a2d2-4a48-8648-a230f2017338/1/ojKhc4Do4liY3qnCIzIaKs5SNvE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ojKhc4Do4liY3qnCIzIaKs5SNvE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:24:fa:61:da:0f:d3:d0:d0:b5:29:bc:32:c1:f7:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a232a17380e8e25898dea9c223321a2ace5236f1
Validity
Not Before: Jun 13 18:01:03 2026 GMT
Not After : Jun 14 18:01:03 2026 GMT
Subject: CN=0d3480a5dc4c557b5d00c34955800c38bee58d69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:df:50:28:1d:ec:49:85:11:c1:2f:a8:cc:37:
14:32:b7:f3:9f:cf:c6:5a:d8:44:58:43:6f:0d:3e:
b7:11:42:4d:46:d8:6f:d1:0b:bd:88:69:d3:28:a7:
3e:c5:f7:39:3b:bc:22:1a:55:de:51:33:05:85:a6:
07:16:5c:40:df:81:47:cd:49:f9:79:9f:04:da:de:
d8:40:55:ac:17:36:3f:79:25:03:eb:ee:df:e4:d6:
93:2b:da:f2:09:fe:4d:5d:6e:3f:d6:8e:f7:08:b7:
5c:fd:90:1f:35:bc:66:10:52:66:e1:1b:e8:06:ab:
ea:b2:8a:34:02:08:f5:e2:d5:1e:8f:8c:5b:f0:f4:
95:07:4b:b0:87:c0:ee:2b:93:0b:ce:4a:83:d8:41:
f7:30:53:60:d1:e6:d4:78:fc:01:95:8f:c3:d8:cd:
2e:8b:2d:38:2c:12:f4:b5:4e:d0:8f:b6:9c:d4:35:
a3:30:ee:c2:db:19:29:3e:19:a7:f9:ca:5c:fd:97:
a3:49:b0:d6:03:a2:cb:e5:07:12:fa:c7:44:44:26:
22:23:4e:dd:a5:b1:32:de:43:40:16:c4:ad:3a:7b:
3a:ea:dd:a3:ce:d9:70:4f:3c:5e:fc:30:9b:eb:bc:
41:6d:b2:77:67:99:a3:5b:bf:41:7d:a1:43:61:08:
ad:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:34:80:A5:DC:4C:55:7B:5D:00:C3:49:55:80:0C:38:BE:E5:8D:69
X509v3 Authority Key Identifier:
keyid:A2:32:A1:73:80:E8:E2:58:98:DE:A9:C2:23:32:1A:2A:CE:52:36:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ojKhc4Do4liY3qnCIzIaKs5SNvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/e4163b-a2d2-4a48-8648-a230f2017338/1/ojKhc4Do4liY3qnCIzIaKs5SNvE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/e4163b-a2d2-4a48-8648-a230f2017338/1/ojKhc4Do4liY3qnCIzIaKs5SNvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:b2:ac:c1:a6:1b:73:4f:a5:d9:74:e4:19:e8:cc:06:01:70:
6d:78:80:50:99:9c:70:40:b5:39:d5:ea:24:e7:33:37:7e:9e:
93:fc:1f:b1:27:d7:06:bd:16:d5:a6:65:60:94:ec:d9:99:b6:
0d:59:13:13:f6:5e:75:ec:a9:f7:1b:8c:2b:2f:b7:8b:9e:a9:
a0:19:5d:da:8b:ca:32:88:9b:b8:b0:7d:58:8b:1f:35:24:42:
ee:1f:8f:74:04:93:da:30:66:25:38:c7:ad:1b:64:52:50:fa:
c5:8c:94:68:8d:f8:9a:b3:03:54:6d:5c:6c:eb:00:90:58:40:
a8:ca:b4:67:e8:cd:c9:8d:7c:48:e0:e2:d9:0d:e1:3e:0f:14:
67:7d:80:0a:c5:74:ea:c0:f3:42:f3:9d:24:6f:31:f7:64:55:
7a:bc:f0:eb:13:47:6d:f2:1c:2b:ac:fb:54:84:4e:74:aa:d1:
01:8a:6b:1f:f7:42:e3:3c:a9:24:93:1e:6b:7a:c3:dc:ee:e5:
de:84:58:2d:c9:12:04:16:89:db:f1:9e:fc:11:57:e1:e7:0b:
66:bf:55:f7:11:12:48:dd:65:1f:88:31:03:f9:ef:1b:1a:06:
b6:1f:bc:86:d8:05:ba:bc:cd:04:e6:2a:f2:3d:4f:e8:45:a2:
fc:fe:e5:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 01:31:46 2026 by rpki-client