Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
File: oUx52o8IwpnEYya3m55CTkmmh1s.mft (raw, json)
Hash identifier: rj1HAagjsSap/bDjTdP0VYFeDqCzACb0lvrp3GxJgY4=
Subject key identifier: 17:D9:73:42:07:79:09:4D:D7:4A:50:97:E1:3A:B1:8C:B1:B0:E3:09
Authority key identifier: A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
Certificate issuer: /CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Certificate serial: 019D3A538C1626450F0727F6AC641F8F14F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
Manifest number: 1820
Signing time: Sun 29 Mar 2026 16:00:46 +0000
Manifest this update: Sun 29 Mar 2026 16:00:46 +0000
Manifest next update: Mon 30 Mar 2026 16:00:46 +0000
Files and hashes: 1: oUx52o8IwpnEYya3m55CTkmmh1s.crl (hash: UB6sfcBxW7lgHM15wllhNYTgzTGCjbnFC+rKQJGk9p0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:53:8c:16:26:45:0f:07:27:f6:ac:64:1f:8f:14:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Validity
Not Before: Mar 29 16:00:46 2026 GMT
Not After : Mar 30 16:00:46 2026 GMT
Subject: CN=17d973420779094dd74a5097e13ab18cb1b0e309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:92:cf:33:aa:02:28:96:b3:25:27:72:7e:e0:
7b:56:d1:04:7d:46:ab:a0:40:44:c0:5a:45:e6:31:
7c:b5:9a:44:03:8c:9e:00:81:a1:e2:67:29:ad:52:
71:88:5b:ef:ba:71:2a:43:cd:00:01:ee:b1:5a:70:
fb:35:ee:38:97:f3:07:28:00:bb:0f:6d:6d:60:ec:
d0:29:34:c1:67:b7:aa:b6:5e:41:c4:33:2d:7c:ef:
59:4a:ab:46:f6:c8:47:7e:b8:60:7a:91:47:29:ab:
e8:5b:a3:8c:94:62:1c:7f:dc:af:ce:58:4a:03:dd:
2f:72:3a:09:bd:4f:5f:09:d4:8a:bd:ff:5a:83:8a:
73:f3:6f:f2:da:b0:d8:0f:6e:5f:31:45:9f:d2:3f:
fa:14:5a:39:b6:c3:4d:53:cf:e3:e0:9b:f9:24:a7:
3a:f6:9a:97:61:29:f4:c8:0b:a4:c3:73:54:0a:c2:
f1:2b:6a:be:51:83:8e:c0:20:63:c4:45:31:40:5e:
f2:1c:8d:90:2a:16:e2:04:8d:97:22:77:da:27:b7:
79:76:4b:a5:c6:8e:ab:c6:31:89:40:e1:54:01:14:
d5:17:59:91:b7:57:37:b5:e7:63:69:41:48:f3:86:
5d:59:75:46:a6:41:42:5b:c0:a5:61:22:25:40:4a:
f1:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:D9:73:42:07:79:09:4D:D7:4A:50:97:E1:3A:B1:8C:B1:B0:E3:09
X509v3 Authority Key Identifier:
keyid:A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:78:8d:fc:94:da:c7:f0:3c:dd:3f:10:78:47:6a:32:08:37:
6b:51:10:b0:4a:6a:c4:b7:17:43:fb:cf:9d:9d:a6:02:43:e8:
3c:01:b7:58:07:40:41:8d:74:fc:ef:74:5e:6d:68:84:b1:45:
b0:a1:fc:8f:b7:2e:33:b5:fb:b7:4c:3d:3b:1c:e6:70:a6:b8:
2e:de:42:b8:f1:8c:6d:66:99:ee:fe:e2:d1:87:9d:c5:10:ef:
7a:48:44:b5:1a:18:fc:a7:70:6b:c9:5b:9d:5a:af:5f:00:78:
4e:95:5f:fe:69:d3:67:4a:ea:1f:a6:25:d4:fc:e3:cc:30:72:
42:79:ef:22:ab:27:35:3a:bf:15:30:7a:c4:37:69:f0:ef:84:
d5:87:b3:06:60:11:92:f7:f7:bc:64:16:df:b7:97:30:e9:07:
01:7a:71:87:cf:be:ca:05:c6:8c:3d:82:bb:0e:b6:9e:50:5c:
4b:83:a5:e8:9f:14:51:6e:2f:13:34:b7:3a:ba:07:a4:d8:5b:
0d:bb:c0:81:73:86:8b:5b:1f:8c:39:50:e5:05:12:81:12:79:
c2:99:16:3c:ef:86:45:96:1a:33:49:ee:b5:ba:5a:2f:99:0b:
21:0f:41:e1:f8:23:33:9e:c5:24:73:7e:fe:52:af:12:ec:5f:
51:40:a3:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:35:49 2026 by rpki-client