Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft
File: oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft (raw, json)
Hash identifier: luEACb5Vht3u2se3GcA+Rdhcz1kgDXXS7HDHuaEH0FQ=
Subject key identifier: 8C:93:5C:65:52:20:5B:61:6D:F2:A9:7E:F4:3E:C7:E0:1C:B8:D5:EF
Authority key identifier: A0:A2:2F:CB:54:A0:91:D6:91:3F:FE:9F:AF:B9:83:C5:7A:4A:C2:2C
Certificate issuer: /CN=a0a22fcb54a091d6913ffe9fafb983c57a4ac22c
Certificate serial: 019EB9FDB0AE835CA240D9A10019A57BFA84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKIvy1SgkdaRP_6fr7mDxXpKwiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft
Manifest number: 0AAC
Signing time: Fri 12 Jun 2026 04:01:11 +0000
Manifest this update: Fri 12 Jun 2026 04:01:11 +0000
Manifest next update: Sat 13 Jun 2026 04:01:11 +0000
Files and hashes: 1: Mob9EPRgvBzo4H6hbqTT2HdD3JA.roa (hash: kvdg8wCS9egZQzAgHG4zTvTOgP+Bu8A9k8hcSeFomOA=)
2: oKIvy1SgkdaRP_6fr7mDxXpKwiw.crl (hash: gYGKnVfBR4KAWrwWa5oC5NNgi23+mTctIfxGQ9vs+sk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKIvy1SgkdaRP_6fr7mDxXpKwiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 04:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:fd:b0:ae:83:5c:a2:40:d9:a1:00:19:a5:7b:fa:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a22fcb54a091d6913ffe9fafb983c57a4ac22c
Validity
Not Before: Jun 12 04:01:11 2026 GMT
Not After : Jun 13 04:01:11 2026 GMT
Subject: CN=8c935c6552205b616df2a97ef43ec7e01cb8d5ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:cc:8d:55:2d:3c:d7:98:28:5d:2e:85:68:19:
cc:69:e9:05:19:04:b1:74:ab:cf:92:50:ef:1a:29:
95:82:9a:31:9a:1b:b4:a5:e2:88:e7:07:a9:c0:da:
6b:4a:5b:b3:11:7d:69:9e:08:4e:bd:b8:e6:08:6d:
1e:e1:98:13:09:15:b4:bf:8c:ef:0c:a5:45:e0:9c:
84:14:b1:c0:44:c1:4a:96:0e:12:33:23:2a:bb:8d:
14:75:47:ba:63:38:5d:df:74:79:6e:73:f7:7d:e9:
ac:09:40:1e:b1:59:3e:af:b6:f4:59:80:dd:71:1e:
51:4f:fb:e4:f8:34:3c:d9:44:63:37:a5:57:f3:b0:
26:d6:07:1c:2e:91:06:bb:90:19:4a:ba:59:c8:11:
12:5d:79:72:62:69:17:bc:70:29:3e:3d:57:0c:16:
1d:12:9a:8a:ae:f2:ce:25:2c:ca:fe:60:23:99:32:
33:c8:d4:f6:fe:2e:90:93:38:d6:63:61:5c:6a:d4:
b3:62:c1:3b:5e:15:a6:7d:4e:d8:78:55:ca:91:1d:
e8:31:87:7e:35:30:34:34:88:bc:65:8b:19:73:a5:
be:c8:a4:b8:6c:45:65:06:fd:e5:0e:09:b8:80:5b:
15:45:4c:6e:2d:71:ee:ef:48:c7:03:b7:15:32:4b:
e5:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:93:5C:65:52:20:5B:61:6D:F2:A9:7E:F4:3E:C7:E0:1C:B8:D5:EF
X509v3 Authority Key Identifier:
keyid:A0:A2:2F:CB:54:A0:91:D6:91:3F:FE:9F:AF:B9:83:C5:7A:4A:C2:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKIvy1SgkdaRP_6fr7mDxXpKwiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:16:a1:b3:d4:73:f8:2f:64:73:99:71:41:b0:76:0d:10:59:
a7:92:2c:e3:e6:47:d9:95:c6:08:03:97:56:c8:aa:a8:8c:a1:
bb:d2:e6:cf:de:09:ce:e8:10:65:74:9d:8a:b5:98:6c:b5:41:
2d:6b:2d:c0:50:88:a9:cf:7c:81:9e:57:d0:11:d1:9f:09:cd:
82:40:0e:72:00:23:6a:94:0e:a6:d7:1f:65:18:3c:67:79:bc:
c3:25:13:47:ea:a4:4f:20:44:74:ac:62:e4:c8:aa:24:71:e1:
e6:ad:1a:ef:68:86:2c:08:db:5c:02:01:54:34:38:03:c3:c4:
ec:18:49:5e:8f:dc:bc:f3:aa:68:5f:68:96:be:41:c7:a8:55:
0f:c1:95:77:f6:1b:1d:12:96:61:e9:11:05:cb:d9:33:26:57:
d6:40:b7:06:53:80:cf:49:48:77:06:2e:d2:e9:4e:a2:fe:61:
86:10:8c:17:ac:ec:90:f5:55:fc:5e:7a:6c:45:a9:7a:b2:c9:
50:b3:ef:49:f1:14:b7:3e:13:6a:cd:97:a9:4e:b3:8e:f3:51:
ef:c6:d8:51:64:c3:18:5e:51:63:ec:57:de:f4:31:99:38:2f:
15:5e:09:d7:32:f6:9c:19:6c:23:64:6a:27:ca:b9:c4:4f:83:
39:d4:c5:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 08:52:27 2026 by rpki-client