Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
File: oeqN4xzspVgDzzrxTUpyea6ERtA.mft (raw, json)
Hash identifier: +PhG0ULDQx9gEBHaNMtnJGNgEhMQLrZ7hyVthEngLI0=
Subject key identifier: 35:13:3F:06:23:46:51:76:DB:F9:F3:BC:02:C0:99:E8:B1:49:03:C7
Authority key identifier: A1:EA:8D:E3:1C:EC:A5:58:03:CF:3A:F1:4D:4A:72:79:AE:84:46:D0
Certificate issuer: /CN=a1ea8de31ceca55803cf3af14d4a7279ae8446d0
Certificate serial: 019DD0F66E4753B9016FB913575BD9BCD950
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
Manifest number: 15AA
Signing time: Mon 27 Apr 2026 22:01:44 +0000
Manifest this update: Mon 27 Apr 2026 22:01:44 +0000
Manifest next update: Tue 28 Apr 2026 22:01:44 +0000
Files and hashes: 1: 0BJKSsJW7qiVAHXCjZXJq3R-Kpk.roa (hash: r7csimlTjHrK6Lrz57cYuylUp8cy5+rV8BLjohqs/qU=)
2: oeqN4xzspVgDzzrxTUpyea6ERtA.crl (hash: q/Ay5bDpsbDeHT2q6plEejY8lLuouVhduh7bzxPOyak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d0:f6:6e:47:53:b9:01:6f:b9:13:57:5b:d9:bc:d9:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1ea8de31ceca55803cf3af14d4a7279ae8446d0
Validity
Not Before: Apr 27 22:01:44 2026 GMT
Not After : Apr 28 22:01:44 2026 GMT
Subject: CN=35133f0623465176dbf9f3bc02c099e8b14903c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a7:b2:02:86:9e:06:89:e5:01:2f:d4:3e:24:
cc:98:bc:ae:22:2c:75:5c:67:ad:14:f9:f8:c1:e4:
0b:bb:08:87:95:74:c4:a1:55:9e:5e:3b:c0:b6:e0:
13:86:06:58:a4:e2:9b:65:1c:15:2c:72:14:c6:4c:
24:8c:69:86:54:da:ed:6d:a6:c3:47:8f:99:ef:7b:
ef:c5:c1:e6:a9:a3:eb:6c:f7:b4:12:3c:9d:c8:b2:
0b:a0:24:4e:71:06:7c:ad:ec:e7:c3:37:2a:a3:a7:
95:83:7e:29:0d:f7:ef:58:b0:bd:a0:6b:c6:e1:52:
07:b6:87:b0:20:3e:34:67:50:e2:17:06:ba:0d:75:
22:11:04:23:d1:fb:ab:26:b1:2c:35:bc:ce:18:74:
17:66:c3:4c:bf:97:dd:13:c0:88:92:fb:94:0a:74:
c2:58:06:9c:ac:da:cf:12:c4:fc:0a:3c:e2:0f:b7:
c6:36:16:ed:25:4d:23:91:52:29:29:44:88:39:02:
6a:af:df:f2:10:c0:b5:25:83:01:fb:59:30:60:f3:
64:76:88:4f:19:a5:b0:38:4c:f5:bd:2c:01:7b:7f:
8f:ae:46:72:94:ea:39:84:2f:2e:3b:02:a0:45:c8:
83:48:aa:2b:3b:a5:11:a8:6f:09:5a:b9:fa:bb:82:
71:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:13:3F:06:23:46:51:76:DB:F9:F3:BC:02:C0:99:E8:B1:49:03:C7
X509v3 Authority Key Identifier:
keyid:A1:EA:8D:E3:1C:EC:A5:58:03:CF:3A:F1:4D:4A:72:79:AE:84:46:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oeqN4xzspVgDzzrxTUpyea6ERtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ca99d8-8527-45b8-af6a-765262f29eaf/1/oeqN4xzspVgDzzrxTUpyea6ERtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:b2:18:a9:1b:7b:78:4f:d2:20:be:cc:d2:90:0d:13:c5:0a:
c6:eb:a5:75:97:97:69:91:88:60:31:ee:a6:71:ae:6c:db:69:
b4:30:d9:20:e2:65:43:b5:b2:49:2e:e2:15:77:10:06:13:d4:
b7:58:2e:3c:22:22:23:d3:25:fc:a6:25:33:84:88:c3:92:90:
01:70:c7:b9:36:08:64:7a:96:ce:c2:bb:43:dc:0b:5e:44:d8:
63:7e:85:81:4d:e2:5e:fc:14:fc:4f:12:9c:48:97:63:3a:8f:
c7:6b:46:8e:14:84:ef:aa:42:4b:ba:38:36:0d:a5:68:cc:35:
1e:30:33:ba:27:f2:50:a0:d1:41:c3:c8:da:d7:5d:5f:06:6f:
b8:98:81:a4:9d:7d:71:c0:e6:dc:eb:ca:c2:f9:92:03:93:99:
cf:2a:8d:d4:5d:4e:62:a3:8b:10:c6:d6:b1:2b:50:df:63:ab:
ef:18:60:62:28:da:c0:c2:af:c6:ff:0c:cc:14:4a:73:26:19:
2c:eb:02:fa:ed:81:7d:5e:d2:ec:8a:7c:d4:27:29:1d:b7:a5:
e5:ee:ab:2e:4b:54:05:3b:68:1d:bb:7c:b8:81:96:4b:3f:86:
f0:74:ca:e8:70:27:93:2a:52:eb:dc:61:66:94:8f:db:72:61:
9e:61:13:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 02:10:09 2026 by rpki-client