Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.mft
File: of0WwkfPRm7tMaMEu48X-jIVqqo.mft (raw, json)
Hash identifier: j/JQJZv+UMb8k/a0NUAWoUkJrfiofCiD7Kpy3c9nAgY=
Subject key identifier: 95:5A:2B:76:10:B3:75:F6:70:24:45:69:9A:9F:B8:40:8A:45:A1:27
Authority key identifier: A1:FD:16:C2:47:CF:46:6E:ED:31:A3:04:BB:8F:17:FA:32:15:AA:AA
Certificate issuer: /CN=a1fd16c247cf466eed31a304bb8f17fa3215aaaa
Certificate serial: 019D37C09110F867498F809C0DD95933D776
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/of0WwkfPRm7tMaMEu48X-jIVqqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 04:01:00 +0000
Manifest this update: Sun 29 Mar 2026 04:01:00 +0000
Manifest next update: Mon 30 Mar 2026 04:01:00 +0000
Files and hashes: 1: 3X66D8rd_nYfhEI9M4q9SKmLMaM.roa (hash: hH7Y3DCETnMnnmJRKV+CQ8Ci7Hnqb3mZqszadLViFz4=)
2: of0WwkfPRm7tMaMEu48X-jIVqqo.crl (hash: ogKPCONuNVEy8S6tQ5GnCPAUK1O7A5VIAwrZ3fVRdms=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/of0WwkfPRm7tMaMEu48X-jIVqqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:91:10:f8:67:49:8f:80:9c:0d:d9:59:33:d7:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1fd16c247cf466eed31a304bb8f17fa3215aaaa
Validity
Not Before: Mar 29 04:01:00 2026 GMT
Not After : Mar 30 04:01:00 2026 GMT
Subject: CN=955a2b7610b375f6702445699a9fb8408a45a127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f7:ff:f1:26:e5:6a:51:d3:51:80:57:34:2b:
1b:87:4f:a9:05:2e:79:31:3e:56:3c:f7:60:29:ff:
b5:8e:c3:40:31:42:27:cc:63:0f:1d:b6:5b:d8:cb:
c8:32:d9:9e:5c:bf:8a:c9:1e:8b:b8:10:96:6e:9d:
e0:80:11:8c:45:bb:35:64:a3:c3:14:68:fa:d1:b9:
0f:eb:d0:37:d4:65:b0:56:19:c1:7c:61:f4:75:83:
16:93:93:cd:73:3c:d0:6e:8f:00:0a:25:fe:c6:54:
13:9e:8e:f7:bb:33:a6:79:7f:7f:2a:04:79:a0:14:
c1:27:2a:31:52:6e:9c:d0:40:93:2c:23:3f:a0:dc:
e3:da:ea:63:d7:68:51:d0:cd:89:ed:60:4b:7e:46:
cc:95:6b:c0:72:08:df:dd:3a:14:e0:16:d1:8d:89:
24:37:8b:8e:ee:45:22:a6:55:0f:d2:ca:e5:48:50:
31:37:ac:ce:e8:08:c2:8a:b7:1a:6e:48:50:a5:d8:
41:b1:43:cc:51:bf:c0:18:08:2e:6a:b8:dc:05:71:
6d:b8:70:2e:78:3f:7f:a5:47:18:1d:64:01:43:26:
e4:eb:ad:f0:b7:e3:94:d7:87:fb:57:17:87:0f:cd:
df:29:22:3c:19:e0:b6:98:0c:c1:eb:1f:1e:d2:8e:
eb:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:5A:2B:76:10:B3:75:F6:70:24:45:69:9A:9F:B8:40:8A:45:A1:27
X509v3 Authority Key Identifier:
keyid:A1:FD:16:C2:47:CF:46:6E:ED:31:A3:04:BB:8F:17:FA:32:15:AA:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/of0WwkfPRm7tMaMEu48X-jIVqqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:0b:f6:f4:85:24:5f:bd:aa:a3:90:fd:62:18:2c:48:18:ed:
7a:76:39:9d:a2:a0:3e:20:7c:04:b1:e8:26:a8:65:09:52:8b:
e0:eb:62:a4:01:bf:d1:23:c8:3d:7d:d4:4f:95:fc:c4:e8:26:
02:3e:c5:c1:f6:da:34:44:77:46:2c:6c:6d:a5:3f:95:82:f3:
e4:65:7f:d9:a1:7c:a2:67:fa:38:da:b7:57:92:a4:40:70:ee:
79:22:db:a0:53:9f:b1:15:e6:e4:eb:3c:25:16:d8:c3:88:75:
65:32:13:c5:cf:a3:2f:51:a6:d8:b9:d1:13:c3:7c:97:63:3f:
b1:3e:ac:b0:08:ab:b4:d0:a0:68:59:f3:f7:18:50:ec:bf:68:
68:7b:a6:38:38:6e:58:ad:a3:b4:85:5d:38:28:98:c3:4e:8b:
a3:06:f4:04:49:77:80:2d:79:43:bb:66:1b:8a:f2:2e:f9:0e:
62:d7:7b:53:cc:85:c2:f8:c4:9d:48:da:ff:69:eb:d1:74:9d:
04:be:3d:e4:e6:d5:43:d2:7b:a6:d4:67:f8:35:5f:8d:7b:59:
56:bd:69:91:36:d3:a6:a9:43:80:84:32:79:dd:12:a2:00:ff:
1d:6c:35:5c:0e:6f:28:4a:a5:98:f1:fa:90:cb:9e:77:59:c4:
c3:61:21:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:16 2026 by rpki-client