Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
File: oeqN4xzspVgDzzrxTUpyea6ERtA.mft (raw, json)
Hash identifier: 2YdEPWhvKonaLVXnx3kYla5xxuqc822k0FHPJpwVVks=
Subject key identifier: A9:78:5D:4B:F6:47:31:75:08:C7:97:21:66:AE:FC:A5:A2:77:20:08
Authority key identifier: A1:EA:8D:E3:1C:EC:A5:58:03:CF:3A:F1:4D:4A:72:79:AE:84:46:D0
Certificate issuer: /CN=a1ea8de31ceca55803cf3af14d4a7279ae8446d0
Certificate serial: 019CE749941C6A3A418087161C7EE376E26B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
Manifest number: 1531
Signing time: Fri 13 Mar 2026 13:01:24 +0000
Manifest this update: Fri 13 Mar 2026 13:01:24 +0000
Manifest next update: Sat 14 Mar 2026 13:01:24 +0000
Files and hashes: 1: 0BJKSsJW7qiVAHXCjZXJq3R-Kpk.roa (hash: r7csimlTjHrK6Lrz57cYuylUp8cy5+rV8BLjohqs/qU=)
2: oeqN4xzspVgDzzrxTUpyea6ERtA.crl (hash: 6Qm2S5D/0O3UhRD2U86wArBuSx98Vbz2q/YC3/aBNJc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 13:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e7:49:94:1c:6a:3a:41:80:87:16:1c:7e:e3:76:e2:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1ea8de31ceca55803cf3af14d4a7279ae8446d0
Validity
Not Before: Mar 13 13:01:24 2026 GMT
Not After : Mar 14 13:01:24 2026 GMT
Subject: CN=a9785d4bf647317508c7972166aefca5a2772008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c5:39:ba:74:33:9b:8c:b2:92:3c:77:e3:83:
ac:48:88:7c:bb:7c:9e:8a:c1:7a:c7:aa:52:77:5f:
19:fc:d5:c3:17:c6:f2:44:ee:0e:ba:44:77:dc:2a:
fd:59:4a:e3:1a:4d:2f:ba:0d:c5:5e:5d:19:5a:33:
d1:fd:a9:45:74:f1:8b:43:c9:ea:36:98:49:7b:66:
88:c7:f1:bd:83:55:cd:87:22:6a:3e:12:f6:53:26:
0d:08:c2:ac:ea:b8:54:81:44:7b:65:42:1f:ba:a9:
34:59:93:ee:ab:31:d6:f1:8e:16:c0:d2:d6:99:18:
46:56:4a:3b:2b:cc:2e:24:7b:22:ba:f1:e6:23:98:
2c:ba:86:8e:db:b9:65:99:d5:95:ba:df:3e:8a:2e:
5a:62:d8:9d:07:aa:da:99:e2:a6:a1:c8:e9:04:41:
d9:3b:12:be:88:f0:bd:e9:45:b9:15:50:18:5b:6e:
73:8c:b2:2f:95:69:c4:a9:87:03:d4:6d:23:04:ee:
a3:70:60:5d:19:bf:aa:16:49:a8:ed:fa:ed:12:08:
ad:67:da:e0:03:6b:79:c7:a2:27:72:90:9c:ad:e7:
b2:82:65:d5:4d:5a:2f:33:39:d9:5e:db:17:a1:7b:
55:2f:dc:1b:8b:fa:d5:83:6c:1d:00:7d:b7:ae:67:
39:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:78:5D:4B:F6:47:31:75:08:C7:97:21:66:AE:FC:A5:A2:77:20:08
X509v3 Authority Key Identifier:
keyid:A1:EA:8D:E3:1C:EC:A5:58:03:CF:3A:F1:4D:4A:72:79:AE:84:46:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:ef:8d:dd:40:05:6b:f7:ce:9e:ae:e7:ac:1b:c1:be:09:dd:
75:e7:13:9b:ad:e8:77:e2:cc:75:2c:99:b2:24:af:d6:0b:31:
3d:6c:a7:27:53:f2:ae:5b:33:9d:5d:e0:81:28:ee:d5:3d:c0:
a5:0c:41:82:ca:14:49:fd:9c:2a:56:3c:5c:f6:67:dd:1d:ef:
dd:29:1d:e5:de:46:9b:31:e8:ec:0c:44:3a:6f:06:7c:d1:b3:
e0:12:e0:95:92:90:1e:7a:28:79:c3:11:db:d1:d9:6b:31:d5:
4c:f3:b1:8e:a0:5c:8f:2b:2c:11:78:8b:db:cb:60:ce:26:c4:
af:c3:90:d5:5f:49:5b:01:d6:d6:3a:8f:10:0a:c2:d8:21:8c:
5e:4d:a8:05:0f:32:ca:4c:28:d5:39:cb:af:0d:ee:bc:e0:c1:
22:ed:09:09:41:ed:f5:d1:bb:43:0a:de:e4:14:6d:70:4a:5b:
dc:7c:62:db:b1:3d:01:75:95:24:7e:09:9a:ce:4c:83:b5:2f:
28:2a:c2:f0:c4:84:13:1e:71:2f:9b:e8:2e:10:0b:64:50:f8:
c0:7b:97:c3:cd:63:30:34:4e:a9:ce:8f:08:ac:a4:ed:30:c6:
ae:1c:d7:f9:d1:d0:6a:6e:b0:73:dc:ff:b8:59:13:ec:ba:de:
2a:c4:fa:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZznSZQcajpBgIcWHH7jduJrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExZWE4ZGUzMWNlY2E1NTgwM2NmM2FmMTRkNGE3Mjc5YWU4
NDQ2ZDAwHhcNMjYwMzEzMTMwMTI0WhcNMjYwMzE0MTMwMTI0WjAzMTEwLwYDVQQD
EyhhOTc4NWQ0YmY2NDczMTc1MDhjNzk3MjE2NmFlZmNhNWEyNzcyMDA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApcU5unQzm4yykjx344OsSIh8u3ye
isF6x6pSd18Z/NXDF8byRO4OukR33Cr9WUrjGk0vug3FXl0ZWjPR/alFdPGLQ8nq
NphJe2aIx/G9g1XNhyJqPhL2UyYNCMKs6rhUgUR7ZUIfuqk0WZPuqzHW8Y4WwNLW
mRhGVko7K8wuJHsiuvHmI5gsuoaO27llmdWVut8+ii5aYtidB6rameKmocjpBEHZ
OxK+iPC96UW5FVAYW25zjLIvlWnEqYcD1G0jBO6jcGBdGb+qFkmo7frtEgitZ9rg
A2t5x6IncpCcreeygmXVTVovMznZXtsXoXtVL9wbi/rVg2wdAH23rmc5uQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKl4XUv2RzF1CMeXIWau/KWidyAIMB8GA1UdIwQY
MBaAFKHqjeMc7KVYA8868U1KcnmuhEbQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2VxTjR4enNwVmdEenpyeFRVcHllYTZFUnRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9jYTk5ZDgtODUyNy00NWI4LWFmNmEt
NzY1MjYyZjI5ZWFmLzEvb2VxTjR4enNwVmdEenpyeFRVcHllYTZFUnRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9jYTk5ZDgtODUyNy00NWI4LWFmNmEtNzY1MjYyZjI5ZWFm
LzEvb2VxTjR4enNwVmdEenpyeFRVcHllYTZFUnRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiu+N3UAF
a/fOnq7nrBvBvgnddecTm63od+LMdSyZsiSv1gsxPWynJ1PyrlsznV3ggSju1T3A
pQxBgsoUSf2cKlY8XPZn3R3v3Skd5d5GmzHo7AxEOm8GfNGz4BLglZKQHnooecMR
29HZazHVTPOxjqBcjyssEXiL28tgzibEr8OQ1V9JWwHW1jqPEArC2CGMXk2oBQ8y
ykwo1TnLrw3uvODBIu0JCUHt9dG7Qwre5BRtcEpb3Hxi27E9AXWVJH4Jms5Mg7Uv
KCrC8MSEEx5xL5voLhALZFD4wHuXw81jMDROqc6PCKyk7TDGrhzX+dHQam6wc9z/
uFkT7LreKsT6gQ==
-----END CERTIFICATE-----
Generated at Fri Mar 13 20:59:15 2026 by rpki-client