Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
File: 8oxp2pTIXt1I2cH9jjMq477mYAQ.mft (raw, json)
Hash identifier: sL7CO0pmX1UmEmCT/+FY9Z7juUsEQ6Bho8fFKw+NyTo=
Subject key identifier: AB:6B:77:10:76:F7:5F:D6:A0:12:D4:6A:75:D4:DB:40:C6:9B:42:BA
Authority key identifier: F2:8C:69:DA:94:C8:5E:DD:48:D9:C1:FD:8E:33:2A:E3:BE:E6:60:04
Certificate issuer: /CN=f28c69da94c85edd48d9c1fd8e332ae3bee66004
Certificate serial: 019D386601E15EE87F56767FE64CB683124B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
Manifest number: 115A
Signing time: Sun 29 Mar 2026 07:01:42 +0000
Manifest this update: Sun 29 Mar 2026 07:01:42 +0000
Manifest next update: Mon 30 Mar 2026 07:01:42 +0000
Files and hashes: 1: 5AGKlldahfI2UQwePdR7aOZv59k.roa (hash: yineAINt5f0q9Dc8di7gq2DzeIUdj6NUc5yoND8zPYQ=)
2: 8oxp2pTIXt1I2cH9jjMq477mYAQ.crl (hash: Aut6mTo8bnEza9zr2Eb+CIlQEa9hQS02Sy8rzSaylqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:01:e1:5e:e8:7f:56:76:7f:e6:4c:b6:83:12:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f28c69da94c85edd48d9c1fd8e332ae3bee66004
Validity
Not Before: Mar 29 07:01:42 2026 GMT
Not After : Mar 30 07:01:42 2026 GMT
Subject: CN=ab6b771076f75fd6a012d46a75d4db40c69b42ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5c:fe:bd:d8:ab:cb:c8:9f:fb:48:ed:79:4d:
48:ae:81:fe:c3:64:5a:80:d7:63:c1:01:53:74:bf:
58:73:51:d2:3b:ba:c5:ca:91:8c:bc:12:12:2e:f0:
42:43:14:4b:e3:50:a6:0c:56:ec:27:8a:72:18:1c:
94:23:f2:81:a0:f9:dc:9b:8c:b8:c0:22:a7:3d:a2:
b1:e8:d5:70:18:29:27:2d:e9:3e:68:d7:e7:a1:ad:
88:2f:61:4e:4e:cc:ec:05:b6:a7:03:47:64:c0:e0:
2b:dc:60:b0:e6:41:36:68:5e:69:fa:4c:74:68:ff:
cb:00:52:b4:99:69:56:d3:9c:b6:97:75:4e:61:e1:
82:38:80:78:01:ee:7f:20:52:b0:fc:0d:55:56:4d:
fc:d7:d4:99:25:d9:ea:77:12:b9:02:f9:db:53:fd:
5d:76:04:71:db:f5:fe:d6:96:1e:99:f7:c2:87:fc:
ec:ee:eb:f5:53:e7:8e:42:1a:23:f9:ab:10:d7:20:
e3:ef:b2:f5:f3:ff:a3:86:21:8c:cb:c1:88:8f:f7:
bc:b0:a8:0c:d8:7c:2e:04:6e:9b:68:d3:e8:5c:83:
7a:1e:d8:83:b7:26:37:86:a0:33:1d:8a:3f:e9:88:
c0:8c:fc:13:48:5d:33:6d:65:92:b2:81:c1:48:ef:
b8:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:6B:77:10:76:F7:5F:D6:A0:12:D4:6A:75:D4:DB:40:C6:9B:42:BA
X509v3 Authority Key Identifier:
keyid:F2:8C:69:DA:94:C8:5E:DD:48:D9:C1:FD:8E:33:2A:E3:BE:E6:60:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:75:1d:19:77:29:ac:3e:bc:f9:0c:7c:56:fc:74:b1:77:ff:
65:0c:64:1b:30:39:4e:96:59:a5:fb:bd:dd:55:c4:19:d2:e2:
86:53:5e:ad:bf:59:4f:07:6e:05:e0:4d:e1:bd:1a:fc:2b:c4:
91:95:39:2a:3e:31:04:5a:29:99:ab:1a:bf:07:2e:ce:f0:27:
0e:f8:cd:db:83:47:95:83:7f:3f:2a:8f:a1:6a:df:75:30:43:
fe:2f:52:1d:45:8b:93:9f:84:d4:7b:f9:06:f3:ff:b3:67:b7:
3d:b0:94:1b:13:02:a1:fe:50:9a:5b:59:31:12:ce:b4:c9:c5:
fa:a8:a6:49:d8:72:0b:e8:a8:36:5c:d6:3a:76:b3:56:af:87:
7e:a7:18:5b:a8:93:cd:df:36:21:6e:87:b7:c3:99:d0:9d:c7:
1d:6f:fe:70:7d:1b:e0:28:17:7a:9c:8f:fe:ed:87:d8:f8:6e:
ce:5a:7a:60:1c:4e:a7:b3:92:1a:57:cb:a0:74:f8:47:70:ac:
c3:f6:e3:5b:a1:35:d8:1a:4d:89:05:f7:9a:fb:f5:44:34:80:
cc:a7:21:27:7c:fc:ef:8c:14:a4:c1:29:0c:0d:67:06:2f:5c:
04:57:70:2d:bc:69:a1:15:20:ea:40:24:81:27:b6:57:70:81:
ad:b7:b5:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:03:51 2026 by rpki-client