Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
File: odcYUzJOsGD7r8mIIzhgSZyWxTo.mft (raw, json)
Hash identifier: q/cJzYqCAqORXHLFTzmaddQA2jrr7mBQVaPjiQPx+w4=
Subject key identifier: E3:D3:53:D8:5F:2C:0D:8B:FE:1A:96:40:8B:2D:DA:2C:E6:57:AE:DB
Authority key identifier: A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
Certificate issuer: /CN=a1d71853324eb060fbafc988233860499c96c53a
Certificate serial: 019E9B17AC2AA281F900FBEDEF3171DD8F3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
Manifest number: 162B
Signing time: Sat 06 Jun 2026 04:01:20 +0000
Manifest this update: Sat 06 Jun 2026 04:01:20 +0000
Manifest next update: Sun 07 Jun 2026 04:01:20 +0000
Files and hashes: 1: 2h_8VJcabHSDMCKwNPF09jw_Hf8.roa (hash: c7tBoia56lSI7zrOJCToiDaTHfoOdjooQhw4RuRBw4Y=)
2: 2olaVDhNeiiP_OOryqJU2C7ExIg.roa (hash: CFBBBaMUmCumEjhXa9EZ5QF+S88qsB/FZwclsZncEao=)
3: QZlonf94vrWyMPOp87JAm_NWNqo.roa (hash: w6YhRh8acabp1x77SswHpUR6bqnL4nDuqC2pTtKcfFs=)
4: RVIXwLiPYVV46x_SokJjK4dp3OI.roa (hash: uNt446qIJ1irJog4FynTK7I6Qj9x6JyOZdVR8VicpsI=)
5: SpN8Ae02yCS4OsvaV0LVnRQu4n8.roa (hash: R6h5Q2EcPAyb3qsGG8N6McT5J+RVk0PixkSdyl6z20Y=)
6: esU4fsvjE_GKeZBwL9xIr9vckzE.roa (hash: iqFT9wVD2iFSuqGQNBizWBYxsH/4xrNP/ECuVx8b/i4=)
7: kOm60nL452mtiYNcQ1MeyFmOk_o.roa (hash: I2UQMu6hqrbitekzOex2s4TwNRegO405AEsyAGOsafo=)
8: odcYUzJOsGD7r8mIIzhgSZyWxTo.crl (hash: gEI/GIWH7oWSjwIzS55tTP0Fvtk8Zlg+t4k8jtIOcF0=)
9: xKxA9QME2V8f2RH3M46PbYUw4oY.roa (hash: thsfcGsSl3d+8qrEjeuctIXvk8eBzxGLHCJIT/WWbto=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9b:17:ac:2a:a2:81:f9:00:fb:ed:ef:31:71:dd:8f:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1d71853324eb060fbafc988233860499c96c53a
Validity
Not Before: Jun 6 04:01:20 2026 GMT
Not After : Jun 7 04:01:20 2026 GMT
Subject: CN=e3d353d85f2c0d8bfe1a96408b2dda2ce657aedb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d5:e9:1f:23:fa:be:a2:9f:7e:f4:79:10:4a:
07:fc:91:98:31:60:4d:f7:fc:e5:e3:67:61:9e:10:
c3:f4:6b:06:e1:0d:ca:49:32:c1:72:3e:70:38:00:
b2:7c:08:ce:ea:b0:ec:f6:c4:f8:6d:12:e7:46:6d:
f5:32:95:de:b4:a1:ed:0b:e3:71:6d:59:6a:26:b2:
9d:ab:76:4e:81:24:ff:b9:9c:4b:12:f1:16:2c:bb:
55:de:47:65:3d:53:3b:61:40:ff:e6:dc:b9:a3:9b:
36:0e:f4:10:68:26:cd:b0:3f:64:65:4b:2f:57:2f:
69:33:7b:ee:21:b2:df:f5:6e:f3:6e:b7:4e:16:b5:
a8:5d:ca:08:25:de:34:9a:49:44:b8:be:d3:6d:79:
22:bd:26:f9:ab:9c:65:9c:c3:fc:dc:8b:ec:ba:49:
28:ce:ea:0f:ff:f1:7a:dd:0e:62:14:ad:30:95:39:
06:e9:e8:3a:95:ca:82:23:1d:8e:e0:ee:54:4e:7d:
f7:6f:f0:4c:db:f0:5c:13:09:bc:4c:38:77:99:2e:
da:c8:20:20:46:39:76:2e:60:94:6e:d7:36:b9:aa:
96:ca:e8:0b:5e:c7:ea:da:3d:ff:9f:be:0c:e6:03:
87:1e:d8:78:50:f1:87:fc:3f:70:c1:11:c0:a8:97:
39:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:D3:53:D8:5F:2C:0D:8B:FE:1A:96:40:8B:2D:DA:2C:E6:57:AE:DB
X509v3 Authority Key Identifier:
keyid:A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:8c:ba:a5:78:87:77:4f:ac:f6:c8:e7:14:91:07:bf:27:c5:
55:72:8c:65:f5:82:c9:be:73:d0:0c:da:9f:4c:6d:90:c8:05:
a5:9e:16:9a:d0:fd:26:dc:18:e0:e4:ae:54:94:78:95:42:81:
c5:23:de:7a:7e:af:4d:48:d4:3c:eb:b2:b7:23:8f:93:17:05:
c4:03:48:c5:cb:17:7b:81:07:20:d3:9d:1c:70:31:14:a4:ac:
6c:71:9b:84:03:56:e7:16:2e:ce:25:e0:a8:f0:63:03:54:5a:
97:10:87:02:97:d4:46:c8:48:24:56:22:6d:04:9e:ce:a2:17:
7d:55:f1:0e:a5:b1:bc:eb:71:1d:f8:6a:dd:10:04:3f:67:f5:
bc:4e:b3:8c:1e:c7:74:5e:b7:af:c5:c0:84:5c:73:c3:06:67:
2f:26:8f:7d:76:21:ab:ce:43:67:85:04:aa:af:f8:8b:08:2a:
5c:f5:f8:10:e8:38:7e:c6:81:c8:24:4f:37:0b:b7:57:95:1a:
d7:b5:f0:33:45:2f:e8:6b:83:3c:b6:f3:89:6d:75:47:45:dd:
ed:e2:dd:e0:b2:60:41:24:29:2e:7f:38:c9:ac:5d:50:df:3e:
64:d8:a9:0a:38:52:84:75:71:a3:e8:4b:e1:5d:c4:84:95:6b:
50:74:da:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 07:00:09 2026 by rpki-client