Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/663453-cf92-4915-af26-d2f1cebb63aa/1/olrSzhcYk-YHpyuunQVE_AHTCao.mft
File: olrSzhcYk-YHpyuunQVE_AHTCao.mft (raw, json)
Hash identifier: 0GMFY4/fgBmqCbTJNK3jewyWiwUEPahQ9IKfMWvBVeU=
Subject key identifier: EA:75:11:87:27:2A:EA:36:54:E0:C6:EB:38:14:20:82:71:C9:B3:C0
Authority key identifier: A2:5A:D2:CE:17:18:93:E6:07:A7:2B:AE:9D:05:44:FC:01:D3:09:AA
Certificate issuer: /CN=a25ad2ce171893e607a72bae9d0544fc01d309aa
Certificate serial: 019E52224D5E3C44C1E75D56EF7F18127E48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olrSzhcYk-YHpyuunQVE_AHTCao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/663453-cf92-4915-af26-d2f1cebb63aa/1/olrSzhcYk-YHpyuunQVE_AHTCao.mft
Manifest number: 3C
Signing time: Sat 23 May 2026 00:00:40 +0000
Manifest this update: Sat 23 May 2026 00:00:40 +0000
Manifest next update: Sun 24 May 2026 00:00:40 +0000
Files and hashes: 1: hB7k-pSsmCCA65cdeBOLaQ0pu5c.roa (hash: VeZsd2ieUrYDf4TqpzlV6sh6N/ypni7g2R6QNYjKO6A=)
2: olrSzhcYk-YHpyuunQVE_AHTCao.crl (hash: 2kQbF+6MRVoPFvYSWCduTluppYl1BdBaM0Q66EqPvLs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/663453-cf92-4915-af26-d2f1cebb63aa/1/olrSzhcYk-YHpyuunQVE_AHTCao.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/663453-cf92-4915-af26-d2f1cebb63aa/1/olrSzhcYk-YHpyuunQVE_AHTCao.mft
rsync://rpki.ripe.net/repository/DEFAULT/olrSzhcYk-YHpyuunQVE_AHTCao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 May 2026 17:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:52:22:4d:5e:3c:44:c1:e7:5d:56:ef:7f:18:12:7e:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a25ad2ce171893e607a72bae9d0544fc01d309aa
Validity
Not Before: May 23 00:00:40 2026 GMT
Not After : May 24 00:00:40 2026 GMT
Subject: CN=ea751187272aea3654e0c6eb3814208271c9b3c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d1:f1:a4:de:29:40:7b:46:ca:cf:a9:f1:e0:
cd:58:a5:5b:03:36:22:30:0d:73:b6:39:47:4d:b1:
82:15:93:dd:e9:e8:bb:da:f2:8d:02:9e:93:fb:51:
c2:88:86:8a:3a:b0:90:04:31:45:fe:4d:fe:20:8e:
15:8f:45:26:02:ae:88:eb:56:ce:07:14:45:54:80:
9a:49:7c:1a:a8:bd:7d:19:94:6b:f1:13:ba:b6:57:
47:0b:a0:74:78:03:dd:a4:b6:e1:78:0d:f9:00:33:
56:06:16:87:ef:8d:4e:64:82:72:d7:ee:f9:5f:5b:
f3:a5:10:a9:8d:42:09:5e:7f:3f:61:00:43:6a:e4:
1e:18:e9:15:e2:7c:24:5a:60:d6:6b:cd:e0:5b:d0:
72:f0:77:05:d8:24:67:77:c1:6d:4f:85:40:77:50:
94:ea:b0:c2:48:ba:4e:20:66:2d:7a:16:ce:96:d0:
58:0e:34:40:ec:a1:3a:7f:fc:d6:e9:3d:c7:84:87:
2d:de:d8:5e:99:5d:35:0a:9f:90:dd:fb:8d:1b:c1:
42:6f:e8:44:4b:b7:68:a4:4a:e5:71:6f:07:30:fd:
05:a4:aa:a0:d4:82:ec:75:20:01:8f:10:53:76:88:
a9:2c:5e:c6:25:aa:8f:b3:ef:2b:cf:6f:90:6b:41:
38:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:75:11:87:27:2A:EA:36:54:E0:C6:EB:38:14:20:82:71:C9:B3:C0
X509v3 Authority Key Identifier:
keyid:A2:5A:D2:CE:17:18:93:E6:07:A7:2B:AE:9D:05:44:FC:01:D3:09:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olrSzhcYk-YHpyuunQVE_AHTCao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/663453-cf92-4915-af26-d2f1cebb63aa/1/olrSzhcYk-YHpyuunQVE_AHTCao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/663453-cf92-4915-af26-d2f1cebb63aa/1/olrSzhcYk-YHpyuunQVE_AHTCao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:8f:b4:2f:2d:43:5b:05:d6:20:28:2b:81:da:d0:a2:9c:40:
46:83:30:63:48:ae:38:4d:b5:a4:4e:41:4a:6e:e9:a2:a3:44:
f6:7d:fa:1f:c3:b6:b5:98:55:6f:18:ad:aa:a0:29:c6:9c:65:
c9:7e:27:0b:96:2f:0f:f4:10:65:a3:16:40:e2:71:19:9d:fb:
34:75:8f:99:4b:d0:2f:12:4c:64:6d:a6:9d:5d:74:ec:25:2c:
7b:12:1a:6c:a3:8e:78:ba:fe:ff:f7:8b:8a:ea:de:b9:dd:00:
36:8a:c7:25:b5:17:41:15:b8:14:df:16:77:df:b2:76:08:da:
ca:92:65:7f:15:28:b7:77:b3:ff:72:bf:d2:85:86:92:ed:35:
f7:c6:20:ec:54:f8:4d:c1:46:fa:bd:ea:51:57:d0:e2:56:82:
5d:d4:5a:2a:ac:67:46:36:06:1a:b4:ac:20:9e:d5:d8:8a:62:
68:b7:5d:7e:27:52:9a:21:d1:0e:17:21:1b:d4:42:a2:60:68:
b8:6f:0e:91:d0:e0:10:fe:e9:20:05:18:10:aa:9f:f6:09:86:
f8:48:a2:7b:dd:90:64:b0:94:f2:ca:b1:02:c0:cd:3d:dd:42:
4c:8e:fe:a3:18:d1:3c:fa:00:1a:46:36:3e:44:75:11:3f:58:
59:ce:9e:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ5SIk1ePETB511W738YEn5IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyNWFkMmNlMTcxODkzZTYwN2E3MmJhZTlkMDU0NGZjMDFk
MzA5YWEwHhcNMjYwNTIzMDAwMDQwWhcNMjYwNTI0MDAwMDQwWjAzMTEwLwYDVQQD
EyhlYTc1MTE4NzI3MmFlYTM2NTRlMGM2ZWIzODE0MjA4MjcxYzliM2MwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwtHxpN4pQHtGys+p8eDNWKVbAzYi
MA1ztjlHTbGCFZPd6ei72vKNAp6T+1HCiIaKOrCQBDFF/k3+II4Vj0UmAq6I61bO
BxRFVICaSXwaqL19GZRr8RO6tldHC6B0eAPdpLbheA35ADNWBhaH741OZIJy1+75
X1vzpRCpjUIJXn8/YQBDauQeGOkV4nwkWmDWa83gW9By8HcF2CRnd8FtT4VAd1CU
6rDCSLpOIGYtehbOltBYDjRA7KE6f/zW6T3HhIct3themV01Cp+Q3fuNG8FCb+hE
S7dopErlcW8HMP0FpKqg1ILsdSABjxBTdoipLF7GJaqPs+8rz2+Qa0E46wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOp1EYcnKuo2VODG6zgUIIJxybPAMB8GA1UdIwQY
MBaAFKJa0s4XGJPmB6crrp0FRPwB0wmqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2xyU3poY1lrLVlIcHl1dW5RVkVfQUhUQ2FvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC82NjM0NTMtY2Y5Mi00OTE1LWFmMjYt
ZDJmMWNlYmI2M2FhLzEvb2xyU3poY1lrLVlIcHl1dW5RVkVfQUhUQ2FvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC82NjM0NTMtY2Y5Mi00OTE1LWFmMjYtZDJmMWNlYmI2M2Fh
LzEvb2xyU3poY1lrLVlIcHl1dW5RVkVfQUhUQ2FvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlo+0Ly1D
WwXWICgrgdrQopxARoMwY0iuOE21pE5BSm7poqNE9n36H8O2tZhVbxitqqApxpxl
yX4nC5YvD/QQZaMWQOJxGZ37NHWPmUvQLxJMZG2mnV107CUsexIabKOOeLr+//eL
iureud0ANorHJbUXQRW4FN8Wd9+ydgjaypJlfxUot3ez/3K/0oWGku0198Yg7FT4
TcFG+r3qUVfQ4laCXdRaKqxnRjYGGrSsIJ7V2IpiaLddfidSmiHRDhchG9RComBo
uG8OkdDgEP7pIAUYEKqf9gmG+Eiie92QZLCU8sqxAsDNPd1CTI7+oxjRPPoAGkY2
PkR1ET9YWc6e6g==
-----END CERTIFICATE-----
Generated at Sat May 23 03:43:56 2026 by rpki-client