Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
File: oED5aPpS5ssv5lcQlwD6B0wZC4U.mft (raw, json)
Hash identifier: UfpGUxMbNGIB4xtoVYDsYYdawfAHNniTcxbiTiaZYu4=
Subject key identifier: BD:56:1A:E3:A1:DC:07:23:92:5F:01:6E:69:93:E2:50:59:0E:23:B2
Authority key identifier: A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
Certificate issuer: /CN=a040f968fa52e6cb2fe657109700fa074c190b85
Certificate serial: 019D37F749579753B6ECF114C667F3DA45C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
Manifest number: 083A
Signing time: Sun 29 Mar 2026 05:00:46 +0000
Manifest this update: Sun 29 Mar 2026 05:00:46 +0000
Manifest next update: Mon 30 Mar 2026 05:00:46 +0000
Files and hashes: 1: oED5aPpS5ssv5lcQlwD6B0wZC4U.crl (hash: SSV96oGc92Iek65TtqY1RTgtK9N5oPskygG5C9K2f94=)
2: x2674gpeOOkrgbaldgBcetLScA0.roa (hash: slI9OZiOgpY/PPO59egGhNigxJguaSBoswQUZlXaUCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:49:57:97:53:b6:ec:f1:14:c6:67:f3:da:45:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a040f968fa52e6cb2fe657109700fa074c190b85
Validity
Not Before: Mar 29 05:00:46 2026 GMT
Not After : Mar 30 05:00:46 2026 GMT
Subject: CN=bd561ae3a1dc0723925f016e6993e250590e23b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:20:ee:18:4f:ab:de:c9:8a:c0:6d:9e:21:00:
76:e8:d4:0d:b6:a4:91:24:7b:c2:6e:db:d3:5f:39:
7f:f5:78:9a:ac:88:49:53:9d:c2:d2:9b:69:f4:d0:
d5:20:63:30:e9:d1:67:18:ea:ba:d0:03:1c:9b:66:
b6:9a:4c:55:49:29:01:90:20:04:23:69:1a:cf:4d:
a8:bc:99:6c:13:67:8c:c2:87:2e:f4:45:6d:af:c0:
88:30:b9:5e:47:d1:ee:d6:e7:bb:f9:d1:c0:bc:6a:
f7:62:78:e4:d0:63:92:b5:20:4d:a3:5d:77:27:0a:
5b:0b:cf:ae:cd:4f:51:a1:ef:0e:3f:b9:0f:ed:92:
70:e7:f0:a2:b0:42:8d:2f:fd:10:94:da:93:a9:ee:
98:64:b6:69:32:0d:1d:4d:9f:1a:16:54:06:ad:2e:
2b:b2:bc:83:3f:25:2b:a8:07:c3:d4:a9:db:38:5a:
4d:1e:11:2b:bc:d6:42:d6:ad:52:ca:c4:6b:ed:3e:
24:d4:a9:af:67:26:08:67:f4:bd:b1:b2:db:d5:ee:
39:23:8c:78:d7:18:d5:7f:a9:aa:dd:15:cc:1e:4d:
b9:3a:0a:2d:79:ea:95:fe:b4:5e:27:bb:f1:59:fc:
27:32:15:5c:16:7c:6a:0a:b0:48:90:bf:68:07:34:
23:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:56:1A:E3:A1:DC:07:23:92:5F:01:6E:69:93:E2:50:59:0E:23:B2
X509v3 Authority Key Identifier:
keyid:A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:a3:eb:1d:17:eb:4c:d0:21:09:90:38:75:91:c3:b8:67:4d:
fa:5a:d7:45:02:83:a7:2b:e0:23:5d:f9:31:c9:03:ee:8e:71:
f4:c7:3b:f5:38:1c:af:de:4e:73:b5:0f:c1:41:b6:ad:21:22:
4a:04:7f:b0:73:8c:b4:00:ca:f1:b4:d7:cc:4a:f2:0c:b0:48:
30:f7:e7:b1:f3:30:a5:57:ac:6a:c1:49:d2:34:c7:00:3b:dd:
6a:b3:98:d8:31:db:55:74:e7:0f:ae:04:b6:8a:b1:83:c0:25:
2a:dc:6a:ba:cd:bf:80:38:a7:26:c1:ec:58:6e:d1:f2:5a:bc:
65:6f:0c:33:e4:b5:f9:18:19:c8:10:ce:e9:e1:a0:ea:ca:80:
da:a2:38:f4:5e:bf:7b:cd:f4:48:48:0a:eb:db:12:fd:21:d0:
d0:0e:e9:d0:6d:2c:9b:59:c2:80:21:b8:d2:26:5e:72:3c:d5:
33:fc:b6:ce:f4:95:64:38:1a:37:17:a0:c2:ce:26:37:98:45:
09:78:75:4b:24:c6:e3:bf:65:d7:44:0b:09:48:7e:56:7d:08:
7b:56:53:ae:bf:f1:c0:3e:34:1f:30:21:4f:24:cb:fe:80:36:
ee:0f:dd:fd:3a:1e:fd:d6:15:19:bc:31:88:8b:62:f7:fb:64:
7d:47:9d:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0390lXl1O27PEUxmfz2kXGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwNDBmOTY4ZmE1MmU2Y2IyZmU2NTcxMDk3MDBmYTA3NGMx
OTBiODUwHhcNMjYwMzI5MDUwMDQ2WhcNMjYwMzMwMDUwMDQ2WjAzMTEwLwYDVQQD
EyhiZDU2MWFlM2ExZGMwNzIzOTI1ZjAxNmU2OTkzZTI1MDU5MGUyM2IyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4CDuGE+r3smKwG2eIQB26NQNtqSR
JHvCbtvTXzl/9XiarIhJU53C0ptp9NDVIGMw6dFnGOq60AMcm2a2mkxVSSkBkCAE
I2kaz02ovJlsE2eMwocu9EVtr8CIMLleR9Hu1ue7+dHAvGr3Ynjk0GOStSBNo113
JwpbC8+uzU9Roe8OP7kP7ZJw5/CisEKNL/0QlNqTqe6YZLZpMg0dTZ8aFlQGrS4r
sryDPyUrqAfD1KnbOFpNHhErvNZC1q1SysRr7T4k1KmvZyYIZ/S9sbLb1e45I4x4
1xjVf6mq3RXMHk25OgoteeqV/rReJ7vxWfwnMhVcFnxqCrBIkL9oBzQj5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL1WGuOh3Acjkl8BbmmT4lBZDiOyMB8GA1UdIwQY
MBaAFKBA+Wj6UubLL+ZXEJcA+gdMGQuFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0VENWFQcFM1c3N2NWxjUWx3RDZCMHdaQzRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC84OTU1MDItNGUxNC00OTYzLWEzMDUt
M2I2YjBhNTU1NWVmLzEvb0VENWFQcFM1c3N2NWxjUWx3RDZCMHdaQzRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC84OTU1MDItNGUxNC00OTYzLWEzMDUtM2I2YjBhNTU1NWVm
LzEvb0VENWFQcFM1c3N2NWxjUWx3RDZCMHdaQzRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR6PrHRfr
TNAhCZA4dZHDuGdN+lrXRQKDpyvgI135MckD7o5x9Mc79Tgcr95Oc7UPwUG2rSEi
SgR/sHOMtADK8bTXzEryDLBIMPfnsfMwpVesasFJ0jTHADvdarOY2DHbVXTnD64E
toqxg8AlKtxqus2/gDinJsHsWG7R8lq8ZW8MM+S1+RgZyBDO6eGg6sqA2qI49F6/
e830SEgK69sS/SHQ0A7p0G0sm1nCgCG40iZecjzVM/y2zvSVZDgaNxegws4mN5hF
CXh1SyTG479l10QLCUh+Vn0Ie1ZTrr/xwD40HzAhTyTL/oA27g/d/Toe/dYVGbwx
iIti9/tkfUedgw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:34:40 2026 by rpki-client