Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
File: o3U2my1LsuLe3maGRTE-NE5vHMA.mft (raw, json)
Hash identifier: +w3e9j6SKuopDKxIOf+96k7TTwUwz6y49/XparGSueg=
Subject key identifier: E8:95:E0:26:23:AE:4A:D8:A5:6C:CC:EE:A3:A9:94:E9:A0:6F:5C:10
Authority key identifier: A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
Certificate issuer: /CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Certificate serial: 019C76A20401B1A4E27C9FFD21A5DF5F8F71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
Manifest number: 182F
Signing time: Thu 19 Feb 2026 16:00:55 +0000
Manifest this update: Thu 19 Feb 2026 16:00:55 +0000
Manifest next update: Fri 20 Feb 2026 16:00:55 +0000
Files and hashes: 1: cqrDqsllU4angXR7ZhiixighcHI.roa (hash: fhOWug7UyzusWzCmpcbK8cX3/PPspaEdcPiG9KdZ6F4=)
2: o3U2my1LsuLe3maGRTE-NE5vHMA.crl (hash: EBIs34GxDP7x+94TGStnJDz+S30T+Ya2zH/FGU/yhBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Feb 2026 15:25:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:76:a2:04:01:b1:a4:e2:7c:9f:fd:21:a5:df:5f:8f:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Validity
Not Before: Feb 19 16:00:55 2026 GMT
Not After : Feb 20 16:00:55 2026 GMT
Subject: CN=e895e02623ae4ad8a56ccceea3a994e9a06f5c10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2c:87:55:7a:7d:c6:1a:e4:ea:64:fa:bc:8e:
b1:6f:e9:3e:18:40:27:3f:09:28:79:4a:8e:2f:8f:
c3:b2:1c:bf:1f:58:e5:91:b1:52:ed:f6:06:b7:46:
66:f9:2f:c3:10:a1:41:84:85:a8:27:f8:e9:e1:89:
07:a1:ec:fa:51:0c:72:8e:13:e7:90:c2:54:b8:6e:
59:fc:42:e5:16:e0:b2:76:a0:5f:59:4a:6d:dd:96:
8b:df:e2:3a:73:02:5e:2b:2b:27:ee:02:36:36:bb:
fa:8e:22:1b:73:c5:3c:7a:ba:0a:5d:f2:8a:ec:2f:
3e:d6:e4:3c:75:71:6f:3f:27:ee:ba:13:52:a0:2a:
55:76:6d:94:65:e8:0b:0f:35:01:13:f6:a9:6f:c9:
68:5b:13:fe:01:c1:c6:d7:4e:91:57:5c:b9:09:56:
4a:a6:af:31:e6:81:7b:69:97:5b:ce:f7:f7:f6:71:
30:0a:29:bc:16:cb:be:9e:3f:df:bb:47:11:62:00:
fe:19:cd:50:82:d6:64:5e:fc:d4:da:59:e3:e9:1d:
69:0d:49:94:ac:55:38:92:04:27:64:dc:81:e3:74:
10:d4:4f:b1:be:2d:8b:77:6e:9a:e7:cf:41:d4:04:
c1:42:8c:a6:3f:33:13:86:77:9a:d3:e9:34:d0:56:
a6:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:95:E0:26:23:AE:4A:D8:A5:6C:CC:EE:A3:A9:94:E9:A0:6F:5C:10
X509v3 Authority Key Identifier:
keyid:A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:17:70:91:9d:51:6b:53:14:8e:4d:53:11:38:a8:ec:47:35:
54:1e:b5:a0:3c:79:88:65:47:3b:47:0b:96:85:7b:a3:b8:44:
10:53:6d:54:79:8f:4c:a7:25:19:5d:94:22:a8:b3:f4:e3:71:
59:2c:5b:db:89:ca:0e:c1:c4:8e:f0:63:8c:db:0d:f4:31:d8:
ff:bd:86:c6:bf:91:87:c8:98:59:f4:76:07:47:b9:d3:4c:c0:
ae:eb:87:d9:49:da:cc:9f:20:b8:2b:f1:2f:79:60:71:7c:76:
bc:3e:61:33:22:fb:b8:42:1e:54:e5:2e:85:81:5e:42:98:a8:
47:96:b4:b2:f9:10:3c:d5:ea:99:8f:fb:9a:86:9d:d7:5a:7f:
41:ee:05:97:77:f9:b3:41:72:f7:8b:ea:8a:23:c3:70:ff:e5:
ef:ab:f6:6a:0c:59:14:1c:fd:5d:77:f2:31:71:76:f1:a3:d5:
6f:c0:01:07:ae:6c:38:ab:4b:5c:ee:d5:1a:6b:ad:dc:b9:59:
74:93:d5:50:ed:10:0b:f3:cd:08:a9:2c:59:46:08:b2:92:fb:
11:94:8e:b7:96:13:19:54:88:61:67:2f:65:0a:11:3c:2c:95:
68:19:aa:14:af:14:17:db:ee:26:fd:dd:61:a1:33:c6:6c:86:
6b:09:a8:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 22:18:28 2026 by rpki-client