Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft
File: oBZYi9HMst0iHG-Hg4VnR11-8ps.mft (raw, json)
Hash identifier: GNUZ+6R11xeprmIFIUccjvfoiq2x415t85UBXiealV8=
Subject key identifier: 86:16:74:A4:61:EE:82:0F:3F:19:DA:28:E3:74:B5:8B:9D:C7:A2:A6
Authority key identifier: A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B
Certificate issuer: /CN=a016588bd1ccb2dd221c6f87838567475d7ef29b
Certificate serial: 019DCDBD8F065EEEA315F34F856A09FC3E41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft
Manifest number: 18DE
Signing time: Mon 27 Apr 2026 07:00:45 +0000
Manifest this update: Mon 27 Apr 2026 07:00:45 +0000
Manifest next update: Tue 28 Apr 2026 07:00:45 +0000
Files and hashes: 1: RLTHCNVsHHa59u_OLOD-BY98XIM.roa (hash: /4P5/TVl7dn9mtDrJhCSmSp/VCxhHR3xnDXrEVq8GTk=)
2: khLmo6pZaOrLwXMJOcUYOmIkZns.roa (hash: gi+g9993Zl2pUKqBDeYYkZSu9n9p5P8ycYJ+ziZGiaI=)
3: oBZYi9HMst0iHG-Hg4VnR11-8ps.crl (hash: rywvYRg/uGJtAEJfZMAu0pDNChs3HaHUa6j1knTH9hs=)
4: qFZ7lh8M_-7BVtcvqO7osX3FgC4.roa (hash: yh2XXW5ZPxb8ONMOAy9MOsAXO8sXA77efW4ZZFy3j/U=)
5: qYcaFh5k_WFgYNOOfWChkSb45-A.roa (hash: SGuMC52Sw1yR7jo31UVDgHPa5SFl4NAmO7Lfy91dnrg=)
6: to_9i5U3WEoW-TwQd4tU-j4O8dI.roa (hash: TimrXHXLyujQh5Wycw3AbO7giA3f+GFzcRdsqnTGqko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft
rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 07:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:bd:8f:06:5e:ee:a3:15:f3:4f:85:6a:09:fc:3e:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a016588bd1ccb2dd221c6f87838567475d7ef29b
Validity
Not Before: Apr 27 07:00:45 2026 GMT
Not After : Apr 28 07:00:45 2026 GMT
Subject: CN=861674a461ee820f3f19da28e374b58b9dc7a2a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:60:26:bb:b2:00:88:8d:e0:ca:87:00:61:8c:
23:d4:5d:64:c2:54:7d:89:4f:7d:94:49:a4:17:e8:
59:02:37:56:91:57:ea:e3:1b:23:ca:53:63:e1:0c:
27:c5:14:b4:0b:b1:dc:ff:cb:67:92:99:29:bb:67:
af:de:6f:aa:67:18:b2:ca:82:c6:58:23:b6:db:a9:
a2:4a:d6:f0:01:f6:aa:7f:54:45:a6:81:f7:38:e7:
bb:63:05:cf:35:a4:f4:85:92:37:4e:be:ee:b6:07:
70:1f:fb:c7:c9:9e:c3:ef:50:dd:23:ca:66:20:64:
ec:75:dc:b2:67:24:b2:24:74:92:a7:4d:19:68:51:
e0:02:38:ee:0d:6f:a6:b3:fc:d6:ad:9d:45:0b:41:
79:b1:be:e0:38:29:a6:6d:97:7d:aa:de:d0:a0:2b:
06:d0:51:3a:62:88:79:e2:86:e2:59:fa:d8:37:cd:
4a:55:6f:0d:13:97:b0:91:f2:73:0e:ee:ba:e8:65:
6e:30:40:51:93:54:34:97:7e:9f:a3:ea:58:aa:b2:
dd:22:26:90:25:46:d5:e9:cb:9b:fa:2c:fc:e7:e5:
16:56:d7:63:39:97:9d:a2:70:12:3b:6a:33:73:87:
cd:4d:f3:18:0e:20:cf:62:89:ea:ec:1a:95:26:0e:
69:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:16:74:A4:61:EE:82:0F:3F:19:DA:28:E3:74:B5:8B:9D:C7:A2:A6
X509v3 Authority Key Identifier:
keyid:A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:5a:61:91:78:4f:c2:5a:70:d4:fd:7c:fc:ed:35:07:8f:cb:
9f:50:34:91:54:f2:cb:b7:ac:41:6c:d6:fa:37:1d:b7:bb:a5:
df:89:9a:5e:27:7a:1c:ff:2d:e9:df:75:4a:9c:4e:6b:df:4e:
58:4f:b4:dc:41:28:b9:34:db:15:b9:27:10:f3:b7:1d:e0:c6:
9c:d4:09:1b:64:b8:ee:0a:cb:d9:92:cc:ed:26:ac:f5:51:2d:
f6:e8:f9:8d:bd:81:b5:55:0d:4e:22:72:4d:27:f1:19:38:91:
a8:3a:5f:ec:e5:72:f4:70:33:83:ea:82:d9:2b:d8:ad:84:94:
73:7b:d4:76:f6:84:38:0f:38:4f:51:ba:96:11:2c:1e:5e:f6:
9e:68:89:5f:a3:46:ac:b7:33:0f:4e:03:12:2c:99:2b:5b:83:
10:47:e7:a1:92:ff:75:00:5f:69:04:3e:f0:c4:eb:1b:74:a8:
f7:1a:05:da:97:b1:19:a7:e2:54:34:34:b7:8d:88:0a:1e:69:
ee:75:53:a3:65:1e:9e:86:d4:48:8d:f8:90:8e:45:29:a7:43:
91:7a:f8:13:02:a5:b8:2c:1d:a7:2c:d7:44:c4:a7:38:b2:c8:
92:63:85:e0:e9:33:bc:b2:38:ca:af:42:99:da:3d:6e:33:a5:
c8:c3:df:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 14:39:48 2026 by rpki-client