Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft
File: oJRwOdnwgKQn91JcXQZvbPYhNPM.mft (raw, json)
Hash identifier: jRx36znVSAFpCFd0KmhX9QlrnW4UZySZbEnXSdjv/RU=
Subject key identifier: 96:EA:2E:4B:C7:3C:D5:E6:EA:CE:82:AB:11:73:38:03:58:B6:79:EF
Authority key identifier: A0:94:70:39:D9:F0:80:A4:27:F7:52:5C:5D:06:6F:6C:F6:21:34:F3
Certificate issuer: /CN=a0947039d9f080a427f7525c5d066f6cf62134f3
Certificate serial: 019D39AE89F5AF3D4BF2D2F942940F1E1E43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJRwOdnwgKQn91JcXQZvbPYhNPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft
Manifest number: 0A0A
Signing time: Sun 29 Mar 2026 13:00:33 +0000
Manifest this update: Sun 29 Mar 2026 13:00:33 +0000
Manifest next update: Mon 30 Mar 2026 13:00:33 +0000
Files and hashes: 1: YQbAqJ7asgFGYO3z_k0v9YgK57g.roa (hash: RmvGtF2+R8JrPIka6fJbEr327La/wJJ+N/n7t1M8mPI=)
2: oJRwOdnwgKQn91JcXQZvbPYhNPM.crl (hash: AAeN5+S2V+Z59ea5qIE78u65zss42r/1hjZf9T2ga3w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJRwOdnwgKQn91JcXQZvbPYhNPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:89:f5:af:3d:4b:f2:d2:f9:42:94:0f:1e:1e:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0947039d9f080a427f7525c5d066f6cf62134f3
Validity
Not Before: Mar 29 13:00:33 2026 GMT
Not After : Mar 30 13:00:33 2026 GMT
Subject: CN=96ea2e4bc73cd5e6eace82ab1173380358b679ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:11:69:d3:a5:83:c9:52:fe:d7:94:91:dc:d7:
a1:88:b3:5b:4d:56:0f:c2:aa:6e:2c:90:c8:d4:e6:
30:6a:fd:96:54:9b:19:53:db:15:8c:72:4d:d9:45:
ce:50:e5:91:a8:de:3b:6b:b7:49:c2:5d:c6:f3:9a:
21:48:00:19:01:44:a6:80:e2:7d:b4:53:ae:b6:3b:
5c:5f:95:9d:67:4d:41:7e:d0:44:12:66:4e:5d:2b:
ec:6f:a1:87:2e:23:e6:d3:78:37:fe:62:67:cd:46:
90:df:52:04:bb:a1:f9:8b:0f:c0:31:ee:5a:42:b5:
f8:09:e1:e2:44:21:dc:20:24:6f:b3:8d:2c:de:4d:
b3:38:1c:34:6d:55:38:2e:4c:55:42:a0:e8:be:cf:
55:3d:fb:cf:67:fa:4e:6c:84:6b:76:67:30:f1:2a:
66:b4:4e:20:18:11:aa:2b:4e:2e:79:16:9c:bd:50:
75:eb:36:aa:6d:c6:a6:8b:03:6d:19:8b:2d:02:16:
d8:af:8b:97:46:fc:97:c0:aa:cf:67:bc:46:45:4a:
be:7c:4f:9c:f8:f3:7e:f8:8c:a9:41:25:ac:da:34:
12:34:5c:f4:df:ea:7a:9f:9b:1f:26:9c:19:1b:8e:
9a:28:65:d8:fb:c1:e9:f4:a0:0e:1a:5b:6f:6b:33:
d3:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:EA:2E:4B:C7:3C:D5:E6:EA:CE:82:AB:11:73:38:03:58:B6:79:EF
X509v3 Authority Key Identifier:
keyid:A0:94:70:39:D9:F0:80:A4:27:F7:52:5C:5D:06:6F:6C:F6:21:34:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJRwOdnwgKQn91JcXQZvbPYhNPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:40:60:fe:13:a9:2b:4e:d9:d1:d9:fe:a6:6f:4a:10:87:b7:
d6:5e:52:37:fa:9e:05:cc:24:df:8e:ab:8e:bf:d9:de:12:94:
05:a1:46:8c:6d:81:ca:23:02:57:38:6a:42:b5:45:2f:78:9b:
41:93:dc:b0:e4:3a:b1:ed:fe:04:eb:3f:86:5d:b3:fc:2d:0c:
78:d6:75:6c:11:9d:0c:63:60:be:bc:3d:e7:68:b6:18:6f:ab:
69:1d:2c:77:50:7e:fa:24:c8:40:95:7c:e4:53:6f:2b:c5:eb:
a1:64:59:fc:09:c3:0e:dc:93:4d:65:9d:24:e6:eb:db:4d:51:
89:84:d4:9a:24:60:37:65:cf:c8:91:e9:a6:74:a2:da:38:29:
8e:33:e0:7f:bc:32:f3:11:2d:77:08:62:1a:0d:fc:8a:b7:b0:
c8:a6:4b:c1:c5:fc:40:13:d3:87:d8:5f:1c:39:20:2d:c1:97:
21:27:ef:bf:ed:df:57:1b:24:72:46:a5:32:6f:f9:04:52:62:
ad:00:38:5d:81:54:c1:16:bd:ea:4a:84:81:d9:d9:2e:f1:ca:
9e:52:ef:c3:c8:6b:96:49:4b:12:40:e1:62:fc:cf:96:db:b3:
b7:13:f3:0f:55:1a:c9:33:58:d5:90:1e:82:fa:9c:5a:18:a4:
3d:1d:33:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:57:52 2026 by rpki-client