Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/453ce9-7389-4951-a76e-890d0bbea624/1/OAonDZR7c0BD17LSUhTx3DDwEd8.mft
File: OAonDZR7c0BD17LSUhTx3DDwEd8.mft (raw, json)
Hash identifier: ILVSUUwedQBREioCP4+ZCrIwhiAvmEhfUFvjjRjR7jQ=
Subject key identifier: 1D:27:D9:EE:C6:64:9E:2F:42:B0:8F:35:E0:A3:6A:2A:E5:C6:48:3B
Authority key identifier: 38:0A:27:0D:94:7B:73:40:43:D7:B2:D2:52:14:F1:DC:30:F0:11:DF
Certificate issuer: /CN=380a270d947b734043d7b2d25214f1dc30f011df
Certificate serial: 019D37C07D444BF112E8C783838EC253DFA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OAonDZR7c0BD17LSUhTx3DDwEd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/453ce9-7389-4951-a76e-890d0bbea624/1/OAonDZR7c0BD17LSUhTx3DDwEd8.mft
Manifest number: 90
Signing time: Sun 29 Mar 2026 04:00:55 +0000
Manifest this update: Sun 29 Mar 2026 04:00:55 +0000
Manifest next update: Mon 30 Mar 2026 04:00:55 +0000
Files and hashes: 1: NxhSUvfOXXEFbfZPGuAjsjHBuoA.asa (hash: lQuAqzmZHKPPnlJhgUigZTqLHkETETb1Ge6jDBuicw4=)
2: OAonDZR7c0BD17LSUhTx3DDwEd8.crl (hash: G7J+PypKMz9/0ghPmuUhipFmYow0XRMsqpDNIvUB+VE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/453ce9-7389-4951-a76e-890d0bbea624/1/OAonDZR7c0BD17LSUhTx3DDwEd8.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/453ce9-7389-4951-a76e-890d0bbea624/1/OAonDZR7c0BD17LSUhTx3DDwEd8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OAonDZR7c0BD17LSUhTx3DDwEd8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:7d:44:4b:f1:12:e8:c7:83:83:8e:c2:53:df:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380a270d947b734043d7b2d25214f1dc30f011df
Validity
Not Before: Mar 29 04:00:55 2026 GMT
Not After : Mar 30 04:00:55 2026 GMT
Subject: CN=1d27d9eec6649e2f42b08f35e0a36a2ae5c6483b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:da:13:8c:51:05:5c:c6:b0:9c:9b:be:fc:2d:
9e:2d:b0:b8:40:23:56:cf:eb:ba:54:a8:0b:a2:07:
29:aa:df:a6:15:1c:c2:a1:15:79:1b:b6:94:05:0d:
bf:bc:5f:fa:db:54:19:fc:20:e4:c3:a5:7e:94:67:
f3:2a:43:90:2c:c6:4b:d8:16:00:56:c6:22:05:cb:
6c:d1:b0:4f:51:21:1d:ec:5a:3c:2c:fb:67:4b:45:
11:5d:7b:78:5c:f7:31:cd:a4:21:5c:b1:45:42:68:
23:c6:5c:b3:b1:17:a5:ce:87:28:80:bd:f4:a3:39:
11:38:2f:1c:a9:af:2a:d6:2b:b0:20:03:0b:00:17:
fa:23:59:5a:b2:e2:2e:b1:a9:3e:a9:63:70:6a:38:
4c:d5:0c:8f:e2:4f:4f:82:fe:30:ba:fa:cc:54:50:
a1:62:73:f6:e5:0f:63:07:24:66:d5:f6:34:e3:7b:
b5:92:d0:e2:bd:c0:c2:4a:36:73:4b:c8:d5:d2:8f:
ed:aa:8f:90:88:71:51:ac:e6:18:00:13:7a:26:d4:
99:62:32:94:3e:98:8e:66:f3:96:cc:aa:61:99:68:
bd:2f:5d:e9:5a:71:52:28:60:08:bb:f0:4b:81:6e:
67:1a:a4:ce:9c:1f:2d:de:4f:0c:13:7e:32:ff:bc:
08:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:27:D9:EE:C6:64:9E:2F:42:B0:8F:35:E0:A3:6A:2A:E5:C6:48:3B
X509v3 Authority Key Identifier:
keyid:38:0A:27:0D:94:7B:73:40:43:D7:B2:D2:52:14:F1:DC:30:F0:11:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OAonDZR7c0BD17LSUhTx3DDwEd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/453ce9-7389-4951-a76e-890d0bbea624/1/OAonDZR7c0BD17LSUhTx3DDwEd8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/453ce9-7389-4951-a76e-890d0bbea624/1/OAonDZR7c0BD17LSUhTx3DDwEd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:70:4d:0f:f8:9f:8d:3e:16:83:74:49:35:53:74:55:26:26:
99:66:e4:63:f3:c0:43:11:25:76:8d:98:f5:64:12:57:9d:85:
06:07:00:64:5f:9a:4d:78:53:6a:a1:be:08:89:d0:95:46:2a:
54:bc:71:5d:fa:60:1d:73:0b:d0:63:e4:0a:4e:9d:78:40:9a:
1c:ca:0e:ed:34:05:a6:05:9d:ea:0b:de:b0:f4:28:c3:8f:ef:
6a:3c:28:1c:2a:5b:30:0b:73:50:75:a4:26:71:53:79:19:98:
06:be:26:b0:81:bf:b9:21:0a:a6:03:4b:2e:f5:24:a0:13:d8:
0f:10:69:19:20:b5:0b:69:b2:41:c1:79:ee:9b:93:cd:62:9b:
53:54:e2:9e:15:72:07:e9:85:e5:c6:92:78:b0:a4:61:28:6d:
72:11:63:10:1a:4a:53:0f:55:bc:f7:67:c7:21:af:eb:2d:ad:
37:ea:06:5d:25:f5:a4:5c:a3:3a:bb:90:38:fa:37:84:a1:67:
78:65:f6:a2:40:cf:b2:54:06:de:41:35:83:82:33:b1:10:93:
f3:11:ce:fd:03:d4:64:8f:87:ac:ca:8c:74:49:f5:7a:a3:7b:
77:e6:a9:ef:61:66:98:f0:12:df:66:a6:79:d8:2e:ac:d8:7e:
cb:96:e3:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:34:44 2026 by rpki-client