Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft
File: ogAYZIx6-hREZNR7seLLK6eG67E.mft (raw, json)
Hash identifier: 2zH8forgTav/eaQ39fakuGG+r4pOfynXRk52j55120Q=
Subject key identifier: 4A:8B:F4:11:F1:0E:C8:DB:74:EC:29:B7:BA:BE:CA:43:D5:BF:7F:2E
Authority key identifier: A2:00:18:64:8C:7A:FA:14:44:64:D4:7B:B1:E2:CB:2B:A7:86:EB:B1
Certificate issuer: /CN=a20018648c7afa144464d47bb1e2cb2ba786ebb1
Certificate serial: 019F190CB1F434E454D863DDC9006E8F1BFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogAYZIx6-hREZNR7seLLK6eG67E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft
Manifest number: 0691
Signing time: Tue 30 Jun 2026 15:01:30 +0000
Manifest this update: Tue 30 Jun 2026 15:01:30 +0000
Manifest next update: Wed 01 Jul 2026 15:01:30 +0000
Files and hashes: 1: jcjuL1I-OfryfxagoMIECR7PHIk.roa (hash: 5XSd5VpigrDBs0g/CxzhzwapRFsuoQY90r59IHVRXrA=)
2: ogAYZIx6-hREZNR7seLLK6eG67E.crl (hash: k4Zk2ZCHd2t+R0jL65+MS/pEhVd3rsck/1i6f0vHRd4=)
3: okAiKYw_e6QZvczizc6rlRpUxK4.roa (hash: y34ynPJrPUC/f+ZX4ZIuMeW7p+J1n4LsqB74LxIVy4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft
rsync://rpki.ripe.net/repository/DEFAULT/ogAYZIx6-hREZNR7seLLK6eG67E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0c:b1:f4:34:e4:54:d8:63:dd:c9:00:6e:8f:1b:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a20018648c7afa144464d47bb1e2cb2ba786ebb1
Validity
Not Before: Jun 30 15:01:30 2026 GMT
Not After : Jul 1 15:01:30 2026 GMT
Subject: CN=4a8bf411f10ec8db74ec29b7babeca43d5bf7f2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:5c:8d:eb:e4:a1:64:f7:af:d6:34:e8:62:ca:
f8:30:22:a8:d7:12:a6:f2:be:3f:96:17:20:1b:ce:
b6:ac:63:50:22:f5:58:0f:33:3f:d8:a0:84:f7:72:
cd:de:e4:11:b6:1b:94:2f:82:28:22:6f:4b:3d:97:
4f:85:f4:c8:6c:98:88:d4:33:b9:1a:dd:58:a3:2d:
34:ee:60:b1:54:54:a1:13:31:25:bc:0f:63:64:b2:
8c:18:e2:81:f1:99:68:f6:c8:6f:7f:77:b6:bb:fc:
a3:5f:26:44:db:5e:3f:ad:32:ab:40:94:c2:e4:51:
08:39:90:e8:44:d0:0c:5a:94:ce:68:4e:c9:3a:f5:
fa:8a:6a:f1:1a:f2:b5:5f:11:01:ec:37:66:1e:b6:
28:1a:b4:34:fd:3c:69:95:6e:5d:a0:8f:9a:d2:70:
4a:a5:8a:fc:b5:2c:55:7c:61:44:3c:0d:2a:07:69:
8b:8a:66:73:7a:3e:02:7b:95:cf:32:0f:d6:1e:ab:
01:ba:28:a0:8e:62:ed:81:53:35:5f:98:4d:70:13:
14:00:51:09:3c:d2:f0:2a:e2:db:e2:44:1f:93:42:
60:54:7b:eb:29:57:aa:c0:cc:1b:36:ab:47:78:f3:
4e:39:e5:41:98:50:2a:58:7f:74:9a:68:a2:ba:1c:
a9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:8B:F4:11:F1:0E:C8:DB:74:EC:29:B7:BA:BE:CA:43:D5:BF:7F:2E
X509v3 Authority Key Identifier:
keyid:A2:00:18:64:8C:7A:FA:14:44:64:D4:7B:B1:E2:CB:2B:A7:86:EB:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogAYZIx6-hREZNR7seLLK6eG67E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:55:ba:05:2e:a7:36:68:c4:5b:1d:c9:3b:b3:5c:66:d7:fc:
93:44:75:5e:00:22:9d:10:5d:36:84:8d:c0:f1:5c:b0:36:af:
81:f2:5e:45:2c:81:c1:e8:29:05:0f:4d:52:e0:a1:7c:1e:14:
dd:29:82:a6:3c:34:b4:a0:ca:4b:48:81:af:27:fd:fd:59:ef:
ee:77:d8:fd:a4:68:28:11:36:3d:1f:0b:d5:c2:88:27:06:67:
02:13:b9:57:34:f4:61:6c:b6:eb:15:b4:b2:2e:99:f1:f3:7a:
3d:00:fb:71:31:2a:a6:14:71:22:ff:a4:92:95:83:1e:3f:ef:
b5:70:b3:c2:6c:d7:2d:28:84:ee:72:99:f9:ff:70:11:23:c8:
ad:f1:54:a7:fd:ea:15:d4:ff:eb:c7:b1:0a:2e:0c:f7:2c:43:
5f:e1:6e:aa:1a:95:4a:10:64:a6:86:fd:0f:13:43:1f:7c:0a:
4f:e1:20:99:d6:6a:f9:14:b2:0c:c4:f6:68:97:fc:8d:2f:42:
16:b1:51:54:9d:0c:7a:5e:f3:7c:a9:dc:6c:25:d1:02:c4:3c:
b9:e3:00:1d:bd:d3:7a:e6:a5:30:96:55:d0:1a:f7:b1:38:4e:
20:31:23:10:b8:92:d0:8b:21:72:35:ed:bd:11:5e:96:80:b0:
fd:6a:e2:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZDLH0NORU2GPdyQBujxv9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyMDAxODY0OGM3YWZhMTQ0NDY0ZDQ3YmIxZTJjYjJiYTc4
NmViYjEwHhcNMjYwNjMwMTUwMTMwWhcNMjYwNzAxMTUwMTMwWjAzMTEwLwYDVQQD
Eyg0YThiZjQxMWYxMGVjOGRiNzRlYzI5YjdiYWJlY2E0M2Q1YmY3ZjJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7FyN6+ShZPev1jToYsr4MCKo1xKm
8r4/lhcgG862rGNQIvVYDzM/2KCE93LN3uQRthuUL4IoIm9LPZdPhfTIbJiI1DO5
Gt1Yoy007mCxVFShEzElvA9jZLKMGOKB8Zlo9shvf3e2u/yjXyZE214/rTKrQJTC
5FEIOZDoRNAMWpTOaE7JOvX6imrxGvK1XxEB7DdmHrYoGrQ0/TxplW5doI+a0nBK
pYr8tSxVfGFEPA0qB2mLimZzej4Ce5XPMg/WHqsBuiigjmLtgVM1X5hNcBMUAFEJ
PNLwKuLb4kQfk0JgVHvrKVeqwMwbNqtHePNOOeVBmFAqWH90mmiiuhypOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEqL9BHxDsjbdOwpt7q+ykPVv38uMB8GA1UdIwQY
MBaAFKIAGGSMevoURGTUe7HiyyunhuuxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2dBWVpJeDYtaFJFWk5SN3NlTExLNmVHNjdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS84M2E3N2QtOWNhZC00MGRlLWFiZWQt
YzRkNDJiN2Y2MjcwLzEvb2dBWVpJeDYtaFJFWk5SN3NlTExLNmVHNjdFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS84M2E3N2QtOWNhZC00MGRlLWFiZWQtYzRkNDJiN2Y2Mjcw
LzEvb2dBWVpJeDYtaFJFWk5SN3NlTExLNmVHNjdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASlW6BS6n
NmjEWx3JO7NcZtf8k0R1XgAinRBdNoSNwPFcsDavgfJeRSyBwegpBQ9NUuChfB4U
3SmCpjw0tKDKS0iBryf9/Vnv7nfY/aRoKBE2PR8L1cKIJwZnAhO5VzT0YWy26xW0
si6Z8fN6PQD7cTEqphRxIv+kkpWDHj/vtXCzwmzXLSiE7nKZ+f9wESPIrfFUp/3q
FdT/68exCi4M9yxDX+FuqhqVShBkpob9DxNDH3wKT+EgmdZq+RSyDMT2aJf8jS9C
FrFRVJ0Mel7zfKncbCXRAsQ8ueMAHb3TeualMJZV0Br3sThOIDEjELiS0IshcjXt
vRFeloCw/WrieQ==
-----END CERTIFICATE-----
Generated at Tue Jun 30 22:18:36 2026 by rpki-client