Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
File: oJ1luSb910PaW0c9NBhf4QGwWig.mft (raw, json)
Hash identifier: 2eLSYm5d7v70t88rTG9xjP+OOM1Sx3lxutvIxwQup5s=
Subject key identifier: 6C:89:42:21:0C:C0:25:71:01:21:59:8C:CB:9A:80:72:7F:01:3D:F5
Authority key identifier: A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
Certificate issuer: /CN=a09d65b926fdd743da5b473d34185fe101b05a28
Certificate serial: 019D371BFE0CC04E7A659CFA206E8430BE26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 01:01:14 +0000
Manifest this update: Sun 29 Mar 2026 01:01:14 +0000
Manifest next update: Mon 30 Mar 2026 01:01:14 +0000
Files and hashes: 1: jvhBNJv-kjTUWe2w73IOrhsH8ZM.roa (hash: QuobanihGf2Vt3kAlHWHavYrnvmF3ftRBf2VjsfIBoY=)
2: oJ1luSb910PaW0c9NBhf4QGwWig.crl (hash: 95Zeg5wSiqiyoJhy8YeSEcmaWC8mzsPu57dzj1decl0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:fe:0c:c0:4e:7a:65:9c:fa:20:6e:84:30:be:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09d65b926fdd743da5b473d34185fe101b05a28
Validity
Not Before: Mar 29 01:01:14 2026 GMT
Not After : Mar 30 01:01:14 2026 GMT
Subject: CN=6c8942210cc025710121598ccb9a80727f013df5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a9:92:ec:70:92:6c:f8:f8:ed:3e:d5:a3:b0:
12:ee:22:5e:ce:dc:7f:1e:b2:be:d6:79:a7:b8:9c:
80:b0:1c:0a:fd:5b:0f:44:23:8a:ec:0e:29:9b:26:
01:94:e1:65:24:04:83:ee:7c:6b:69:3c:f8:0d:77:
32:ab:87:dd:08:80:a6:ba:2b:8e:89:3f:d5:62:0d:
8f:6c:76:83:71:db:7a:8b:cc:82:56:59:1d:88:8c:
5d:c3:ec:96:19:ec:37:61:d7:1c:0d:ec:a9:a0:24:
76:db:25:6e:51:1f:78:00:a3:7f:98:81:9c:89:d2:
26:49:b7:c7:ad:ea:69:fd:20:aa:b2:ec:a0:1e:cc:
6c:08:c2:1a:02:05:91:e6:80:94:22:5e:8a:01:5a:
91:40:4a:1c:80:c6:e7:9f:c5:60:30:f8:79:20:6e:
09:e5:0f:85:78:25:44:3f:b7:32:c6:14:cd:94:1b:
89:33:c4:48:17:f3:fc:ab:cb:b1:25:5a:47:d2:4e:
73:cf:b6:a0:bf:73:f0:8a:a6:26:0f:a7:6d:19:b6:
03:3d:0f:1e:9a:da:69:7c:6d:24:36:4d:ca:22:db:
87:ff:20:a2:0f:b9:be:1e:61:cd:5c:92:83:f7:bd:
c2:3a:08:db:9e:95:d6:69:d9:14:ad:37:17:8e:fc:
92:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:89:42:21:0C:C0:25:71:01:21:59:8C:CB:9A:80:72:7F:01:3D:F5
X509v3 Authority Key Identifier:
keyid:A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:e2:4c:94:b4:f3:40:cc:f2:fc:b4:7d:8a:1c:c9:f2:f2:20:
1c:b8:33:30:d8:ff:b2:2f:7b:43:42:eb:dc:46:2b:00:10:58:
83:d8:26:2f:1d:fd:91:6a:c8:14:30:f3:31:ab:2b:a4:85:35:
2b:15:d4:66:6c:34:bc:72:02:89:01:88:86:35:4d:cc:ce:51:
ce:72:c8:15:c7:bf:29:5e:87:44:c9:b3:c2:52:be:1f:c6:32:
ff:de:3c:26:ef:36:5a:0c:56:cb:fb:94:d1:da:6f:96:0c:3b:
95:f5:b3:ef:6e:44:10:4c:28:cb:5c:3f:0d:fb:49:d9:18:07:
85:3c:a6:a9:7a:7e:83:87:eb:1f:42:8d:8b:fa:b0:63:8b:36:
0d:5c:be:f2:de:fc:5f:b6:0b:c3:38:e9:b7:2c:f6:71:24:a9:
cf:75:30:dd:70:e6:c8:bb:ae:ab:7c:02:b2:ab:7a:8b:f1:6d:
ff:c6:30:34:74:3e:23:de:a7:20:89:a0:b8:fa:33:c0:c9:61:
d5:2c:a3:59:ce:42:ce:fa:8a:ad:10:c0:20:32:89:0b:f7:81:
f4:87:74:dc:10:eb:87:79:a2:43:5d:f4:26:1b:3f:b0:0e:ad:
5d:ab:42:ac:ab:06:84:1f:bc:bd:d5:4e:0e:71:a5:d5:90:2b:
89:7e:da:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:46 2026 by rpki-client