Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
File: oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft (raw, json)
Hash identifier: Xw9vfJt1M2/kVtpiyjp5SLPS12b4CW8iLVb+o7KMjK0=
Subject key identifier: E6:C9:FE:A4:FC:5C:CE:39:D2:F7:8F:0B:A8:62:55:1F:BE:A5:7C:05
Authority key identifier: A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
Certificate issuer: /CN=a0a647dac729f47b06369c4c9741cf943953dc59
Certificate serial: 019E492009A81D8F65C84B703016EB407C28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
Manifest number: 0E80
Signing time: Thu 21 May 2026 06:01:36 +0000
Manifest this update: Thu 21 May 2026 06:01:36 +0000
Manifest next update: Fri 22 May 2026 06:01:36 +0000
Files and hashes: 1: VJaaCilXSaMFiDpDj2m9Nu8DP6E.roa (hash: /Vwcg31kt8NZSUPOXZXkCRASkot9oBzCBAi0+AvtL2w=)
2: oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl (hash: /keC0BPEjNaoILiwBS5UPeA0vwwSqcJm++24Z/zfoqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 May 2026 06:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:49:20:09:a8:1d:8f:65:c8:4b:70:30:16:eb:40:7c:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a647dac729f47b06369c4c9741cf943953dc59
Validity
Not Before: May 21 06:01:36 2026 GMT
Not After : May 22 06:01:36 2026 GMT
Subject: CN=e6c9fea4fc5cce39d2f78f0ba862551fbea57c05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:a3:02:d8:c0:07:83:dc:ca:50:55:d2:a3:5e:
a4:99:86:e2:0d:e2:ef:a2:cf:b5:0b:ea:13:00:0b:
52:57:f9:6f:df:46:4d:51:c8:9e:b5:72:f1:a1:57:
ee:04:7f:d4:2e:5c:7e:50:d0:93:d4:6e:f9:a9:6f:
37:da:05:94:17:0d:ba:93:23:93:ae:fa:5c:1f:cb:
1f:f0:b1:7e:67:b5:63:18:71:40:ca:47:7b:1b:17:
8c:b8:de:22:6d:2a:0e:f4:16:4d:ce:45:f3:af:5a:
f4:ef:1b:df:f8:b8:af:f6:41:c5:13:b1:d7:d0:6b:
86:b0:1c:d3:fa:d3:ce:41:6b:2c:68:d2:f5:92:75:
f5:a5:76:66:79:d8:0a:a1:36:ed:b0:59:28:fd:78:
87:ad:ba:50:54:60:57:b3:bd:a0:a6:ea:0b:c9:61:
0b:c7:74:ac:8c:f0:29:02:75:6e:60:0d:bb:80:f6:
b8:10:ab:7d:42:f2:ae:86:7c:54:20:5d:f4:fb:25:
45:67:3c:28:17:43:3e:96:f1:28:d9:b2:68:ec:96:
ce:5d:64:a1:9d:52:76:a1:06:9f:3c:8b:cb:84:ba:
2e:9b:2e:88:cb:a9:86:aa:16:6c:1d:20:2c:83:e5:
7b:4b:6a:9a:a6:87:61:1b:f3:76:a6:52:90:10:67:
c1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:C9:FE:A4:FC:5C:CE:39:D2:F7:8F:0B:A8:62:55:1F:BE:A5:7C:05
X509v3 Authority Key Identifier:
keyid:A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:2f:85:cc:00:9c:71:da:38:aa:cd:4b:f1:aa:54:e8:be:4f:
f3:44:aa:b1:d7:4b:79:14:2f:be:10:79:9a:49:61:61:9f:a5:
7f:e7:5a:eb:7d:18:14:96:53:ab:d9:b6:94:62:0f:79:36:7b:
98:54:62:26:0f:7f:4d:92:08:2d:7c:f2:f5:c6:f4:76:ab:d0:
94:e3:a0:70:e5:44:f7:0c:52:3f:27:2c:03:f9:45:d2:4a:0d:
07:b0:ec:73:48:11:26:33:9a:ab:3c:1c:c0:a5:f8:d7:16:36:
94:a0:56:1e:8a:1a:2d:2d:76:0f:df:8e:9e:6e:36:9a:8a:49:
83:37:6b:9b:ee:94:20:dc:aa:c9:77:59:3f:a5:c0:c4:48:7c:
01:a0:b7:7d:90:2f:a4:47:70:26:37:0b:85:44:c5:be:e3:db:
4e:96:ff:63:b1:e1:8a:97:82:ea:96:b3:c4:19:1b:9d:c6:b8:
2b:da:4c:29:52:3d:48:d8:bc:8c:08:ae:97:d2:38:0c:67:c8:
8c:1e:10:10:83:aa:cf:00:ba:3d:99:a8:51:05:ec:bc:0f:78:
d2:b0:52:49:04:93:e1:9e:9f:90:8a:1e:2c:30:e7:3f:92:8c:
fc:8c:75:ae:0d:e3:bd:e7:77:2e:98:8c:b5:20:d8:0e:df:0f:
f0:34:5a:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 21 13:23:14 2026 by rpki-client