Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
File: oNMhbMzIY-ygw90YmUGxueo3ys0.mft (raw, json)
Hash identifier: /rm3/mFiCmV6J3RAyS6h1SlgV1wdZcZ6Fpdk3Z3dxic=
Subject key identifier: 90:73:0E:CF:93:BC:33:A0:28:A1:10:CD:04:2F:CF:0C:F3:DE:3E:1A
Authority key identifier: A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
Certificate issuer: /CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Certificate serial: 019E2B15FCB0A5885E4DA2CF4DD6747278A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
Manifest number: 115B
Signing time: Fri 15 May 2026 10:02:01 +0000
Manifest this update: Fri 15 May 2026 10:02:01 +0000
Manifest next update: Sat 16 May 2026 10:02:01 +0000
Files and hashes: 1: RvaTJRlt29ftCtqE0WpwZqGpE9g.roa (hash: StTKZA1GU7wGVFQWDEqlmDXT/zh0mjE1gXIOwpYnhZU=)
2: oNMhbMzIY-ygw90YmUGxueo3ys0.crl (hash: RfTT2ZDLLPnsOduGaoqCczVF5AUyKtCRzNCYMl2eDKM=)
3: oTJ_SiNI-sTWNycV04ya44fLP9Q.roa (hash: oQAMQxzLon76LhylB305yCYYWrb8zMDw4+N6NR6rHCY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 10:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2b:15:fc:b0:a5:88:5e:4d:a2:cf:4d:d6:74:72:78:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Validity
Not Before: May 15 10:02:01 2026 GMT
Not After : May 16 10:02:01 2026 GMT
Subject: CN=90730ecf93bc33a028a110cd042fcf0cf3de3e1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:57:09:14:a7:ff:1b:c0:29:0d:47:b9:7b:a7:
86:06:04:09:d0:4e:dd:7a:d9:d2:42:49:2d:a3:d4:
02:a6:df:5b:6b:e7:37:8f:b5:58:5c:29:e4:77:49:
c7:44:8b:30:cd:f6:17:02:05:0a:82:ec:46:7d:68:
ca:5d:92:3c:16:5a:b0:0e:b3:50:f0:dd:74:36:6a:
19:98:d4:f5:d2:77:1d:e0:01:cd:19:ba:d2:df:af:
29:27:6b:20:1d:5f:6b:a4:fc:a9:a1:5e:24:ac:fd:
a5:3c:cc:d2:58:8d:7a:ec:1d:b5:c6:22:57:0a:43:
87:be:34:53:43:76:0d:1b:d2:be:f4:41:84:3e:fa:
e8:fc:ca:76:dc:84:f3:0e:ea:35:f3:b1:27:52:56:
c0:6e:0c:60:9f:4f:7c:45:80:b9:e4:24:81:b6:cf:
5d:b5:ce:c4:ad:ac:cb:19:1e:15:0b:bb:fd:33:50:
69:91:01:07:ad:f5:a9:5d:2d:f2:33:c4:74:91:87:
97:bb:79:c5:a6:f1:3e:69:d6:f8:7b:9e:e3:18:d4:
fc:ca:b1:33:0a:e6:fc:5b:3f:9d:5d:05:4e:02:c6:
36:9e:d7:df:b1:35:b9:6e:d3:70:13:f9:a1:64:8e:
48:35:aa:c5:84:59:16:8b:08:ca:2f:67:f9:1e:23:
20:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:73:0E:CF:93:BC:33:A0:28:A1:10:CD:04:2F:CF:0C:F3:DE:3E:1A
X509v3 Authority Key Identifier:
keyid:A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:a4:8f:f3:c5:cb:20:12:5b:f5:75:bf:b6:dd:38:a1:be:30:
e6:60:c0:ec:55:55:db:66:b8:ab:b1:9f:4b:25:4b:16:0e:0a:
1c:27:d4:72:8d:7b:27:e6:63:34:b1:be:3e:c2:ec:77:53:62:
2f:27:9d:bd:f9:55:4c:29:e4:50:0d:f9:9f:35:e4:2c:62:90:
e6:b3:80:de:92:eb:45:27:8e:ec:0a:0a:70:78:b3:65:4b:d3:
37:db:db:82:58:ea:2c:c8:3b:13:84:26:9c:20:59:5a:6f:fb:
f8:17:9c:34:4d:2b:46:f1:0e:c1:d0:1b:fb:08:d4:44:f2:17:
86:4c:f2:3e:bd:7f:8d:d8:75:1d:1a:9a:7f:3e:53:66:cd:2d:
c0:b7:ba:12:4b:ce:bc:89:34:07:49:84:54:d9:da:d3:31:2f:
f2:04:a3:f0:6e:e3:d2:5a:d5:63:e5:05:bf:6f:f2:2b:7d:f7:
66:24:16:9d:a1:c8:be:32:7d:3f:be:ac:12:32:d0:22:86:01:
95:78:dd:96:98:ad:94:81:d1:28:05:a9:4f:59:ad:7e:07:b2:
52:96:fc:c1:af:26:51:e2:75:9e:52:b0:12:f6:8d:39:da:16:
38:79:eb:91:33:7f:18:f7:e8:aa:87:f5:0c:3a:9a:f0:18:b3:
79:e4:2e:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 15:21:02 2026 by rpki-client