Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.mft
File: ohnbVSO9ORRQqdzPbVDOWfsV360.mft (raw, json)
Hash identifier: 00/1APv9eBI50bW05LHK3NSnNLB1WWH79evT/2KRGmI=
Subject key identifier: B6:EA:99:8A:DD:99:19:6E:32:32:89:CE:09:42:01:CD:16:DC:4C:9B
Authority key identifier: A2:19:DB:55:23:BD:39:14:50:A9:DC:CF:6D:50:CE:59:FB:15:DF:AD
Certificate issuer: /CN=a219db5523bd391450a9dccf6d50ce59fb15dfad
Certificate serial: 019EB87CF6EDAB3927ABA79AE443611FCD5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ohnbVSO9ORRQqdzPbVDOWfsV360.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.mft
Manifest number: 016E
Signing time: Thu 11 Jun 2026 21:00:57 +0000
Manifest this update: Thu 11 Jun 2026 21:00:57 +0000
Manifest next update: Fri 12 Jun 2026 21:00:57 +0000
Files and hashes: 1: 4HbGMj--iSuFHvb28GOkJ8Rfj9k.roa (hash: kmfueJIenPQ4kLIaUYdb59+cHEhbnikmEU4eCsrl8uU=)
2: ohnbVSO9ORRQqdzPbVDOWfsV360.crl (hash: ohAIeGgsxvZ1lZLZlyLyGj5NHkUee+H/s4loRJuupZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.mft
rsync://rpki.ripe.net/repository/DEFAULT/ohnbVSO9ORRQqdzPbVDOWfsV360.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:7c:f6:ed:ab:39:27:ab:a7:9a:e4:43:61:1f:cd:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a219db5523bd391450a9dccf6d50ce59fb15dfad
Validity
Not Before: Jun 11 21:00:57 2026 GMT
Not After : Jun 12 21:00:57 2026 GMT
Subject: CN=b6ea998add99196e323289ce094201cd16dc4c9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:cd:dd:8c:77:d1:9e:c6:55:a2:a5:fb:68:79:
90:c1:96:21:ee:3f:f9:23:92:8e:ab:46:47:b1:46:
65:55:5d:b3:fd:96:9c:50:3d:72:a9:a3:cc:00:d0:
11:ad:1f:e4:78:7b:68:fe:0c:29:18:70:62:45:44:
b8:7b:ef:7c:ce:13:92:dc:af:64:76:46:85:ca:c1:
b2:e5:3d:41:4e:af:77:5b:46:d1:c4:0c:70:fd:c3:
1f:cf:88:0e:da:d0:a8:3d:a0:4c:cc:26:14:7f:01:
a2:11:c2:d0:e1:3b:2e:0f:65:ef:06:22:0b:22:d8:
8a:bd:99:e6:d3:3d:f5:2f:9f:8d:71:fa:c9:aa:63:
ab:14:69:d3:5b:ae:73:ef:fb:ec:28:b4:a1:68:54:
3c:43:63:17:16:7b:8a:c8:a7:64:d1:7c:85:54:2f:
79:b3:2d:1b:9d:f1:84:45:94:e7:2b:62:30:02:e7:
32:fc:80:f0:30:d9:04:8e:ee:2d:e6:9c:6f:85:6b:
8b:67:c1:31:cf:f3:b8:31:a4:37:b9:fd:ef:92:fe:
c4:cb:9a:75:35:4b:d5:a2:94:78:ce:b2:16:54:9d:
25:bb:40:5b:48:a6:75:54:a2:4a:00:69:d6:29:e1:
7d:5f:12:15:ff:85:3f:38:05:ba:85:e8:d9:17:90:
dd:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:EA:99:8A:DD:99:19:6E:32:32:89:CE:09:42:01:CD:16:DC:4C:9B
X509v3 Authority Key Identifier:
keyid:A2:19:DB:55:23:BD:39:14:50:A9:DC:CF:6D:50:CE:59:FB:15:DF:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ohnbVSO9ORRQqdzPbVDOWfsV360.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ce635c-7d2c-410c-96e2-7ccf936de89a/1/ohnbVSO9ORRQqdzPbVDOWfsV360.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:e3:ab:f9:7d:b1:77:5b:81:e8:2c:b7:e8:07:b3:8a:bc:11:
68:f5:e1:a3:95:bd:31:8a:77:ec:9a:74:c6:d6:54:79:cf:19:
be:c4:c9:7c:87:a0:d9:ba:6a:12:c5:41:60:fc:cb:90:4b:38:
3d:11:cf:9f:ea:c8:ca:a8:65:c1:86:fd:6f:71:30:87:ce:cf:
ee:9e:05:ef:59:51:86:6e:aa:a0:59:ee:14:bd:53:ee:54:c7:
19:ce:67:18:b8:9f:b1:19:4f:42:45:d6:de:a0:1a:b5:86:b8:
18:81:8e:4b:80:e4:51:14:a7:d4:9b:4c:cf:28:21:f0:f3:8f:
a6:5d:24:20:28:f4:45:12:63:d0:e2:f8:7f:bf:8e:d7:13:f0:
8e:b6:97:be:7a:c5:f3:21:b4:87:4c:a6:c5:7b:71:40:51:b1:
10:63:f8:41:18:5b:76:dc:c4:4f:e1:ca:45:80:ee:61:5e:c8:
35:f6:89:f6:f8:ca:cc:e4:ab:92:e9:6c:e2:1d:a8:e3:40:e8:
76:2b:57:98:96:f7:4d:e8:a9:78:75:8d:69:a3:35:0c:89:5d:
1c:ec:71:f8:04:ac:5f:56:45:0c:25:2a:31:d7:28:bf:4c:31:
40:54:96:6c:e5:3b:6d:20:25:ac:bb:44:f1:d2:e7:c4:93:ca:
d0:c2:2c:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:25:27 2026 by rpki-client