Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/453ce9-7389-4951-a76e-890d0bbea624/1/OAonDZR7c0BD17LSUhTx3DDwEd8.mft
File: OAonDZR7c0BD17LSUhTx3DDwEd8.mft (raw, json)
Hash identifier: 98De1FC7/X9YAdUiZUed9lel0KUU2ySa63p+YkJAcBk=
Subject key identifier: 86:7A:B2:76:D0:49:04:31:BE:5C:20:35:64:BD:4C:38:96:E9:DE:23
Authority key identifier: 38:0A:27:0D:94:7B:73:40:43:D7:B2:D2:52:14:F1:DC:30:F0:11:DF
Certificate issuer: /CN=380a270d947b734043d7b2d25214f1dc30f011df
Certificate serial: 019EFBA884A356BEF8740C7F377B6232148A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OAonDZR7c0BD17LSUhTx3DDwEd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/453ce9-7389-4951-a76e-890d0bbea624/1/OAonDZR7c0BD17LSUhTx3DDwEd8.mft
Manifest number: 017A
Signing time: Wed 24 Jun 2026 22:03:05 +0000
Manifest this update: Wed 24 Jun 2026 22:03:05 +0000
Manifest next update: Thu 25 Jun 2026 22:03:05 +0000
Files and hashes: 1: NxhSUvfOXXEFbfZPGuAjsjHBuoA.asa (hash: lQuAqzmZHKPPnlJhgUigZTqLHkETETb1Ge6jDBuicw4=)
2: OAonDZR7c0BD17LSUhTx3DDwEd8.crl (hash: CBAX1OgRHjypYJEQlZf7bolR2zurs2kzhKT3Deh7HMo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/453ce9-7389-4951-a76e-890d0bbea624/1/OAonDZR7c0BD17LSUhTx3DDwEd8.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/453ce9-7389-4951-a76e-890d0bbea624/1/OAonDZR7c0BD17LSUhTx3DDwEd8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OAonDZR7c0BD17LSUhTx3DDwEd8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 22:03:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fb:a8:84:a3:56:be:f8:74:0c:7f:37:7b:62:32:14:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380a270d947b734043d7b2d25214f1dc30f011df
Validity
Not Before: Jun 24 22:03:05 2026 GMT
Not After : Jun 25 22:03:05 2026 GMT
Subject: CN=867ab276d0490431be5c203564bd4c3896e9de23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bb:6e:70:f0:38:b4:af:5a:3c:93:e2:77:3c:
7c:da:0e:21:a8:5b:b0:e1:0c:9b:6a:2d:45:0a:d4:
b8:63:ee:48:72:87:3c:a2:23:cd:e7:cd:fd:ff:57:
62:ea:60:0a:0d:74:81:a4:8d:40:07:23:7b:ba:c8:
26:e7:77:67:8e:28:59:9f:b3:46:1a:e1:59:79:13:
ed:7b:ae:97:83:43:31:1c:ac:6e:b1:7f:c5:a0:db:
2c:f7:e5:f9:5f:92:6a:de:37:f3:e3:b2:16:cd:bd:
9e:83:c6:49:53:92:5f:48:08:05:28:32:a0:83:6b:
48:e7:08:dc:1a:52:92:2e:b1:53:d2:7f:76:72:80:
bf:bc:6d:57:68:ce:3a:e2:88:9f:93:9e:6c:59:5c:
22:d3:1a:87:5a:2b:d9:b7:a3:fc:38:9a:1a:91:f7:
04:06:14:ad:51:cc:3c:d6:59:c0:6a:0d:ca:3f:6d:
6b:c0:9e:19:a2:c4:4d:09:98:da:aa:03:d1:07:ed:
ab:66:cb:69:1d:2d:35:e5:4f:73:64:01:dd:35:2a:
9f:82:2e:4a:b7:0b:d7:48:97:b9:eb:df:34:cb:c4:
ac:15:57:db:97:4c:91:00:7c:6f:bf:79:73:42:db:
f0:51:b2:ad:53:3f:47:b5:90:ef:21:a8:96:d7:3a:
85:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:7A:B2:76:D0:49:04:31:BE:5C:20:35:64:BD:4C:38:96:E9:DE:23
X509v3 Authority Key Identifier:
keyid:38:0A:27:0D:94:7B:73:40:43:D7:B2:D2:52:14:F1:DC:30:F0:11:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OAonDZR7c0BD17LSUhTx3DDwEd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/453ce9-7389-4951-a76e-890d0bbea624/1/OAonDZR7c0BD17LSUhTx3DDwEd8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/453ce9-7389-4951-a76e-890d0bbea624/1/OAonDZR7c0BD17LSUhTx3DDwEd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:5c:f3:91:ce:90:02:c0:ac:c7:dc:a3:2b:ae:e6:87:72:5f:
d5:e8:08:e7:6a:21:8d:65:9a:15:bc:84:9a:74:ef:63:c5:fc:
c8:3b:fe:32:ff:a3:3c:4f:76:14:89:a3:f8:6e:c2:d9:95:ba:
45:a8:eb:3d:b2:35:04:dd:f4:b1:49:42:76:2f:21:17:5a:dd:
96:2c:8c:cd:99:15:8d:23:c0:d6:a6:20:81:6c:dd:82:4f:db:
32:dc:ae:5a:d4:8b:24:12:e3:e6:bf:be:be:83:98:9e:13:d4:
eb:7b:41:7e:0a:1d:96:f3:0d:3e:4c:90:7a:f0:64:9d:01:4f:
06:8e:25:b1:c2:27:80:ce:41:9d:d0:51:cc:84:03:43:5c:2e:
ac:f2:f2:b4:51:7f:ae:8e:22:32:7a:66:77:f5:ab:9e:27:17:
e1:6f:8e:87:db:50:bf:53:51:ee:7c:a0:54:d0:c4:11:59:76:
70:6a:c7:83:90:83:f6:b1:1f:32:84:e8:29:73:fd:d8:36:ce:
7c:90:f6:07:a6:86:bd:02:b6:21:65:1e:c1:5e:c9:e4:ee:b9:
06:e5:5f:e0:78:3a:5e:c0:a4:32:8b:c3:73:de:04:28:3f:c8:
69:3f:a4:6e:8a:49:22:cd:bf:a8:af:11:13:e4:69:3c:30:20:
f1:a0:64:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 08:29:34 2026 by rpki-client