Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
File: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft (raw, json)
Hash identifier: sG7Z2z6Uoz+NKU69+DBt9hrmLyb4tTkcM2MCIBTqfVE=
Subject key identifier: A5:A6:36:48:D2:D4:8E:04:6A:9B:73:81:1D:CB:97:B0:65:7C:06:0E
Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
Certificate issuer: /CN=a09fda047b3a0b1c820435e699388660da32c63f
Certificate serial: 019D359B4642B95897032DF11394D036BFBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
Manifest number: 07E9
Signing time: Sat 28 Mar 2026 18:01:01 +0000
Manifest this update: Sat 28 Mar 2026 18:01:01 +0000
Manifest next update: Sun 29 Mar 2026 18:01:01 +0000
Files and hashes: 1: T3IIdcu9O4RqtWN63OnvjHlxoHA.roa (hash: mcKH90gzUrsNVUfzI9EqajlTYUwudYLzyU2jnBM19/w=)
2: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl (hash: HLt7gMZpS6UBk+bX/wkk/yc3rn7WKN4vdAWMqdC2MPA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:35:9b:46:42:b9:58:97:03:2d:f1:13:94:d0:36:bf:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f
Validity
Not Before: Mar 28 18:01:01 2026 GMT
Not After : Mar 29 18:01:01 2026 GMT
Subject: CN=a5a63648d2d48e046a9b73811dcb97b0657c060e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:56:0f:56:1b:a0:e8:ff:61:2a:31:ae:a4:54:
c0:d3:ee:db:9d:0d:6f:33:57:47:c0:00:3e:18:83:
c7:ff:75:da:f0:6b:5c:27:84:48:0e:e9:4b:cd:15:
e1:b0:28:b0:97:06:48:74:9e:45:7b:c2:a5:a7:85:
f7:6b:08:0a:75:c6:47:03:5e:72:92:51:70:79:83:
03:59:6d:46:07:16:7c:0c:0b:c2:45:35:bc:d0:61:
31:96:89:d7:75:31:f0:53:50:cf:96:02:83:ae:38:
b0:71:5b:91:d6:3c:ac:c5:d0:93:29:7f:b5:44:ed:
02:fc:62:88:d6:ac:59:25:86:40:f8:7d:7d:42:da:
7b:7d:1b:ba:b6:a9:68:93:19:f8:7f:9c:d9:ee:d8:
5b:98:56:5a:16:aa:74:e0:c9:ee:6f:ba:23:ad:4f:
62:24:19:d0:af:1b:83:79:f2:33:25:41:6b:0a:4d:
f7:83:24:74:0d:a8:70:08:45:a1:d0:b9:65:d9:f9:
76:06:6f:9c:3f:07:fd:dc:80:5f:dc:29:12:09:4f:
18:2e:62:da:96:ff:9b:a8:ba:cc:c4:2b:59:25:2b:
4e:44:88:12:0f:45:56:20:fa:17:0b:78:06:e5:f1:
14:d0:1e:3b:3d:9f:2c:eb:55:0f:f5:78:e2:76:56:
26:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:A6:36:48:D2:D4:8E:04:6A:9B:73:81:1D:CB:97:B0:65:7C:06:0E
X509v3 Authority Key Identifier:
keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:7e:6c:31:f3:74:af:f1:63:02:a4:4d:ac:1b:cd:0e:5e:b3:
33:91:e5:7f:18:b8:f2:ff:e6:7f:dd:24:e9:d8:90:97:a6:7e:
f8:b4:0c:50:c8:61:65:27:69:97:b4:80:1a:2a:ba:d9:43:bf:
64:9b:8a:54:ac:f7:8b:a8:3f:ec:ef:f8:18:a6:a3:54:50:94:
c5:d4:68:b6:41:fe:1a:c3:d7:d9:82:71:66:a8:80:17:5b:d3:
81:cd:47:96:08:12:11:fe:50:7f:15:07:25:02:87:2f:0f:22:
cf:5a:a4:f5:e7:17:bd:35:a4:4c:1b:84:b5:df:e1:4a:ad:31:
4a:81:88:e7:06:55:f6:82:99:84:2d:e6:5f:b2:12:20:37:1a:
d9:ac:5d:3d:5b:b8:8e:94:98:ee:0a:da:df:90:82:3c:65:e9:
0f:b1:99:d0:9f:39:5e:ee:33:1a:d6:4e:46:db:50:49:ec:ff:
f4:12:0f:d6:1c:d8:6a:e7:3f:ec:28:53:5c:ff:9e:11:21:92:
78:b7:d2:3d:3e:e9:9b:57:64:4f:42:80:b8:1a:e2:ce:ed:b0:
b0:e5:2c:0e:ba:52:74:e7:b7:3b:e8:12:ab:9e:00:05:83:3a:
0b:a6:ef:a7:d7:0c:7b:1c:8c:8e:56:04:9a:52:ef:4b:bd:1b:
ed:5a:ae:d4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ01m0ZCuViXAy3xE5TQNr+/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwOWZkYTA0N2IzYTBiMWM4MjA0MzVlNjk5Mzg4NjYwZGEz
MmM2M2YwHhcNMjYwMzI4MTgwMTAxWhcNMjYwMzI5MTgwMTAxWjAzMTEwLwYDVQQD
EyhhNWE2MzY0OGQyZDQ4ZTA0NmE5YjczODExZGNiOTdiMDY1N2MwNjBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1VYPVhug6P9hKjGupFTA0+7bnQ1v
M1dHwAA+GIPH/3Xa8GtcJ4RIDulLzRXhsCiwlwZIdJ5Fe8Klp4X3awgKdcZHA15y
klFweYMDWW1GBxZ8DAvCRTW80GExlonXdTHwU1DPlgKDrjiwcVuR1jysxdCTKX+1
RO0C/GKI1qxZJYZA+H19Qtp7fRu6tqlokxn4f5zZ7thbmFZaFqp04Mnub7ojrU9i
JBnQrxuDefIzJUFrCk33gyR0DahwCEWh0Lll2fl2Bm+cPwf93IBf3CkSCU8YLmLa
lv+bqLrMxCtZJStORIgSD0VWIPoXC3gG5fEU0B47PZ8s61UP9XjidlYm5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKWmNkjS1I4EaptzgR3Ll7BlfAYOMB8GA1UdIwQY
MBaAFKCf2gR7OgscggQ15pk4hmDaMsY/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi84YjRkMzItMDM2NS00ZGFhLTlkNWIt
Mjk5MjBlNTE2N2Q5LzEvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi84YjRkMzItMDM2NS00ZGFhLTlkNWItMjk5MjBlNTE2N2Q5
LzEvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbX5sMfN0
r/FjAqRNrBvNDl6zM5Hlfxi48v/mf90k6diQl6Z++LQMUMhhZSdpl7SAGiq62UO/
ZJuKVKz3i6g/7O/4GKajVFCUxdRotkH+GsPX2YJxZqiAF1vTgc1HlggSEf5QfxUH
JQKHLw8iz1qk9ecXvTWkTBuEtd/hSq0xSoGI5wZV9oKZhC3mX7ISIDca2axdPVu4
jpSY7gra35CCPGXpD7GZ0J85Xu4zGtZORttQSez/9BIP1hzYauc/7ChTXP+eESGS
eLfSPT7pm1dkT0KAuBrizu2wsOUsDrpSdOe3O+gSq54ABYM6C6bvp9cMexyMjlYE
mlLvS70b7Vqu1A==
-----END CERTIFICATE-----
Generated at Sat Mar 28 21:46:39 2026 by rpki-client