Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
File: odcYUzJOsGD7r8mIIzhgSZyWxTo.mft (raw, json)
Hash identifier: OFP1gYIp8rdqvohPCDBE1wpnUzd9cJ67fKXAhvP9e48=
Subject key identifier: 50:95:4C:7B:43:EC:AE:D0:E7:17:9F:E9:CB:E6:6C:ED:5B:12:3F:D5
Authority key identifier: A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
Certificate issuer: /CN=a1d71853324eb060fbafc988233860499c96c53a
Certificate serial: 019DAF7C82A0AF92C5FF933E4C2A8A58898E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
Manifest number: 15B1
Signing time: Tue 21 Apr 2026 10:01:05 +0000
Manifest this update: Tue 21 Apr 2026 10:01:05 +0000
Manifest next update: Wed 22 Apr 2026 10:01:05 +0000
Files and hashes: 1: 2h_8VJcabHSDMCKwNPF09jw_Hf8.roa (hash: c7tBoia56lSI7zrOJCToiDaTHfoOdjooQhw4RuRBw4Y=)
2: 2olaVDhNeiiP_OOryqJU2C7ExIg.roa (hash: CFBBBaMUmCumEjhXa9EZ5QF+S88qsB/FZwclsZncEao=)
3: QZlonf94vrWyMPOp87JAm_NWNqo.roa (hash: w6YhRh8acabp1x77SswHpUR6bqnL4nDuqC2pTtKcfFs=)
4: RVIXwLiPYVV46x_SokJjK4dp3OI.roa (hash: uNt446qIJ1irJog4FynTK7I6Qj9x6JyOZdVR8VicpsI=)
5: SpN8Ae02yCS4OsvaV0LVnRQu4n8.roa (hash: R6h5Q2EcPAyb3qsGG8N6McT5J+RVk0PixkSdyl6z20Y=)
6: esU4fsvjE_GKeZBwL9xIr9vckzE.roa (hash: iqFT9wVD2iFSuqGQNBizWBYxsH/4xrNP/ECuVx8b/i4=)
7: kOm60nL452mtiYNcQ1MeyFmOk_o.roa (hash: I2UQMu6hqrbitekzOex2s4TwNRegO405AEsyAGOsafo=)
8: odcYUzJOsGD7r8mIIzhgSZyWxTo.crl (hash: IeXy4UkjnwlK1US3v+YddjxCn3sGKYA+yqfPPtHSgMc=)
9: xKxA9QME2V8f2RH3M46PbYUw4oY.roa (hash: thsfcGsSl3d+8qrEjeuctIXvk8eBzxGLHCJIT/WWbto=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 10:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:af:7c:82:a0:af:92:c5:ff:93:3e:4c:2a:8a:58:89:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1d71853324eb060fbafc988233860499c96c53a
Validity
Not Before: Apr 21 10:01:05 2026 GMT
Not After : Apr 22 10:01:05 2026 GMT
Subject: CN=50954c7b43ecaed0e7179fe9cbe66ced5b123fd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:16:38:7e:91:ca:cd:98:16:8d:9e:8d:83:e4:
3e:09:e5:d2:b6:0c:07:18:8d:8f:57:dd:06:80:ae:
19:80:c2:67:28:3d:d0:4c:34:4a:a9:1b:67:61:50:
df:65:1d:20:e7:42:40:da:0b:57:5b:70:88:49:17:
12:b5:91:e3:0b:f7:9c:06:d1:b9:c2:58:a8:d1:8e:
58:67:c2:b9:68:55:f5:f5:5b:25:a3:39:16:28:9f:
76:be:59:ef:66:92:34:35:f0:32:9c:ac:d0:ca:58:
35:41:1b:a7:60:3b:96:36:7b:04:2d:92:db:63:19:
e4:56:98:76:57:28:ab:73:15:e2:5f:e8:69:54:c2:
4e:cd:d5:04:dc:ff:e0:27:49:cf:09:82:20:57:5f:
41:22:a8:03:4c:b0:3e:91:1c:0f:05:fd:96:3e:b9:
db:d7:ec:c9:d9:5f:6a:c2:3a:cc:9a:36:42:9c:0a:
b6:f8:18:b2:ba:04:94:a9:a2:c5:1b:0e:8f:2e:1a:
b2:46:fa:eb:90:04:d3:b4:15:85:e5:21:b0:76:03:
e8:6c:4e:e9:44:fc:d9:54:f6:c3:25:b3:08:d8:3c:
87:52:5c:1f:13:22:1c:f5:d7:56:fc:44:90:7c:3f:
0d:14:74:a7:f1:09:4a:0a:08:5a:14:50:1c:be:ef:
5d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:95:4C:7B:43:EC:AE:D0:E7:17:9F:E9:CB:E6:6C:ED:5B:12:3F:D5
X509v3 Authority Key Identifier:
keyid:A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:20:74:68:3b:d3:44:2a:c8:5d:1c:24:2f:f0:cb:9b:fb:9a:
87:af:e6:4a:08:97:9c:a1:e7:f1:06:ea:5a:cd:16:02:b9:52:
e9:bd:e9:ee:44:18:c7:c0:fa:72:d1:02:9c:01:e3:cf:a1:f6:
fd:97:69:13:82:a0:ab:19:fc:06:4d:84:d2:1c:1c:60:1d:2b:
c3:9c:4b:67:16:b1:d8:46:74:10:94:c5:ef:2a:5e:ae:94:da:
fb:c4:d1:52:f6:3f:0e:bd:5c:50:2c:4c:9a:d0:1e:9c:18:b6:
63:c0:1c:ef:c4:f8:64:13:3a:83:45:50:d9:08:2e:59:49:26:
bc:33:62:09:45:b7:d1:62:38:31:7d:d8:55:39:eb:31:9d:a7:
c0:06:af:42:c2:d9:5c:66:4e:19:87:da:7e:a2:fa:18:ba:d6:
db:2d:54:91:22:ad:f6:e9:c9:20:eb:56:ac:9e:3e:e4:2d:bb:
3d:d7:78:64:68:25:a5:8b:02:fd:48:b7:9c:f6:3d:a4:4c:fa:
54:ff:ec:fb:37:ab:a8:25:6c:78:cd:2f:44:c2:f5:01:29:2a:
38:9c:10:bd:c7:f4:47:f1:dd:5d:8e:2a:fd:3a:7c:f4:4f:7d:
1f:df:ac:24:4a:6d:1a:b8:44:17:9c:39:45:11:cc:22:63:ae:
3c:df:64:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 21 18:09:59 2026 by rpki-client