Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft
File: ogAYZIx6-hREZNR7seLLK6eG67E.mft (raw, json)
Hash identifier: jzvPAppTX8wrjDrTeq6lBTfLtMU3T7ZxZIStTxvxN0s=
Subject key identifier: B1:44:F2:32:40:96:27:D5:B9:90:CE:A7:81:4D:99:36:56:3D:9D:8F
Authority key identifier: A2:00:18:64:8C:7A:FA:14:44:64:D4:7B:B1:E2:CB:2B:A7:86:EB:B1
Certificate issuer: /CN=a20018648c7afa144464d47bb1e2cb2ba786ebb1
Certificate serial: 019E314E92667DAB607EDB1DF580A1158354
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogAYZIx6-hREZNR7seLLK6eG67E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft
Manifest number: 0619
Signing time: Sat 16 May 2026 15:01:33 +0000
Manifest this update: Sat 16 May 2026 15:01:33 +0000
Manifest next update: Sun 17 May 2026 15:01:33 +0000
Files and hashes: 1: jcjuL1I-OfryfxagoMIECR7PHIk.roa (hash: 5XSd5VpigrDBs0g/CxzhzwapRFsuoQY90r59IHVRXrA=)
2: ogAYZIx6-hREZNR7seLLK6eG67E.crl (hash: l8lMCWKT3KhkVKC23cnkFXxc9odPU6hNxNLrt6mkOEs=)
3: okAiKYw_e6QZvczizc6rlRpUxK4.roa (hash: y34ynPJrPUC/f+ZX4ZIuMeW7p+J1n4LsqB74LxIVy4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft
rsync://rpki.ripe.net/repository/DEFAULT/ogAYZIx6-hREZNR7seLLK6eG67E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:4e:92:66:7d:ab:60:7e:db:1d:f5:80:a1:15:83:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a20018648c7afa144464d47bb1e2cb2ba786ebb1
Validity
Not Before: May 16 15:01:33 2026 GMT
Not After : May 17 15:01:33 2026 GMT
Subject: CN=b144f232409627d5b990cea7814d9936563d9d8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:bc:0b:00:03:cd:84:64:7e:99:6b:01:0c:a2:
cc:11:45:51:4f:26:8c:95:6d:05:ab:ba:73:00:4c:
39:8f:bb:a7:4b:d3:78:8f:e5:c7:2b:73:d0:d2:1c:
c7:8c:f3:af:30:d7:13:c9:1f:5b:65:d9:26:12:22:
7b:4a:07:db:4c:fa:64:29:e9:51:f1:bc:37:a0:21:
a2:c6:40:f5:0e:49:49:e3:d4:06:e5:1d:00:85:6b:
30:1e:b5:da:3d:6b:ec:5b:7b:02:52:20:ba:2f:92:
0e:ae:9f:4e:91:94:81:86:91:ee:51:3e:33:bd:a6:
04:2a:b6:3f:61:8e:3b:5d:6c:a5:78:b1:07:41:8a:
77:b0:05:00:e7:c8:84:4b:cc:c8:0c:2c:eb:e3:33:
26:46:5d:2d:c0:a8:ed:c2:06:08:99:cb:5d:8b:15:
77:90:0f:df:c7:e8:ab:f7:77:a4:99:be:04:99:06:
b0:72:f8:89:73:ff:bb:d7:8b:9b:10:2f:2b:21:b4:
10:3d:4e:f4:bc:bc:fd:b8:80:da:f0:f9:76:c9:c6:
70:14:25:7d:11:30:0a:11:de:1e:38:e0:6d:e1:f0:
70:98:70:d1:ea:79:b0:7a:c4:22:68:c1:9e:cc:17:
51:12:bb:7e:a7:f4:43:51:59:da:20:7d:f4:53:f5:
49:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:44:F2:32:40:96:27:D5:B9:90:CE:A7:81:4D:99:36:56:3D:9D:8F
X509v3 Authority Key Identifier:
keyid:A2:00:18:64:8C:7A:FA:14:44:64:D4:7B:B1:E2:CB:2B:A7:86:EB:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogAYZIx6-hREZNR7seLLK6eG67E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:6f:6f:c4:a2:37:03:4f:52:07:df:1b:41:86:e4:73:26:e6:
7f:20:81:9a:ac:fe:81:4f:50:67:41:00:cd:5e:de:b8:2e:e1:
52:85:7a:77:6c:23:12:7e:c3:b5:f2:33:fd:f0:f2:85:de:96:
cb:ed:1b:49:7b:0b:84:75:d4:0d:97:25:a0:58:64:21:7e:c4:
54:05:42:b9:db:3c:6f:5f:45:7b:d6:54:e3:db:e5:97:19:1e:
cd:05:42:b1:85:ff:12:95:3a:53:a6:bb:0b:f2:5f:89:e2:f1:
16:68:a9:1e:51:14:8b:52:08:68:d9:27:f5:50:b9:68:ed:cf:
e2:43:6a:20:11:6b:dc:b6:87:5b:6d:5c:49:16:60:7e:a8:5f:
b1:3d:0c:38:af:09:48:c7:13:ba:b5:60:04:7f:cc:ee:87:42:
b3:69:f9:c9:fe:26:0f:4c:a6:ab:a8:76:76:ed:06:31:5e:1b:
63:e8:9a:2e:a8:06:38:b8:3c:8e:65:1c:dd:f3:80:e2:15:eb:
a2:3a:90:91:92:db:0f:c5:c5:cc:cf:e1:53:65:dd:f4:89:4b:
7e:72:1c:06:71:0c:9c:05:44:09:aa:39:d5:2f:d1:47:c4:9f:
54:8c:ff:8a:4c:ca:76:5c:1d:b3:91:49:41:9d:1f:0d:15:82:
06:58:24:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4xTpJmfatgftsd9YChFYNUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyMDAxODY0OGM3YWZhMTQ0NDY0ZDQ3YmIxZTJjYjJiYTc4
NmViYjEwHhcNMjYwNTE2MTUwMTMzWhcNMjYwNTE3MTUwMTMzWjAzMTEwLwYDVQQD
EyhiMTQ0ZjIzMjQwOTYyN2Q1Yjk5MGNlYTc4MTRkOTkzNjU2M2Q5ZDhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAibwLAAPNhGR+mWsBDKLMEUVRTyaM
lW0Fq7pzAEw5j7unS9N4j+XHK3PQ0hzHjPOvMNcTyR9bZdkmEiJ7SgfbTPpkKelR
8bw3oCGixkD1DklJ49QG5R0AhWswHrXaPWvsW3sCUiC6L5IOrp9OkZSBhpHuUT4z
vaYEKrY/YY47XWyleLEHQYp3sAUA58iES8zIDCzr4zMmRl0twKjtwgYImctdixV3
kA/fx+ir93ekmb4EmQawcviJc/+714ubEC8rIbQQPU70vLz9uIDa8Pl2ycZwFCV9
ETAKEd4eOOBt4fBwmHDR6nmwesQiaMGezBdRErt+p/RDUVnaIH30U/VJjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLFE8jJAlifVuZDOp4FNmTZWPZ2PMB8GA1UdIwQY
MBaAFKIAGGSMevoURGTUe7HiyyunhuuxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2dBWVpJeDYtaFJFWk5SN3NlTExLNmVHNjdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS84M2E3N2QtOWNhZC00MGRlLWFiZWQt
YzRkNDJiN2Y2MjcwLzEvb2dBWVpJeDYtaFJFWk5SN3NlTExLNmVHNjdFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS84M2E3N2QtOWNhZC00MGRlLWFiZWQtYzRkNDJiN2Y2Mjcw
LzEvb2dBWVpJeDYtaFJFWk5SN3NlTExLNmVHNjdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2G9vxKI3
A09SB98bQYbkcybmfyCBmqz+gU9QZ0EAzV7euC7hUoV6d2wjEn7DtfIz/fDyhd6W
y+0bSXsLhHXUDZcloFhkIX7EVAVCuds8b19Fe9ZU49vllxkezQVCsYX/EpU6U6a7
C/JfieLxFmipHlEUi1IIaNkn9VC5aO3P4kNqIBFr3LaHW21cSRZgfqhfsT0MOK8J
SMcTurVgBH/M7odCs2n5yf4mD0ymq6h2du0GMV4bY+iaLqgGOLg8jmUc3fOA4hXr
ojqQkZLbD8XFzM/hU2Xd9IlLfnIcBnEMnAVECao51S/RR8SfVIz/ikzKdlwds5FJ
QZ0fDRWCBlgkHA==
-----END CERTIFICATE-----
Generated at Sat May 16 20:20:04 2026 by rpki-client