Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
File: oQIHcvYouPtR80dRNrd_60smmL4.mft (raw, json)
Hash identifier: NLloap2EBZUf116wkG1Whee1ziCls+tRTLDn/X9aXV8=
Subject key identifier: C8:9D:F6:11:BB:0B:AF:40:02:A1:81:50:E6:55:61:11:0D:B4:D2:9C
Authority key identifier: A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
Certificate issuer: /CN=a1020772f628b8fb51f3475136b77feb4b2698be
Certificate serial: 019D37C0723C2C6671F47DE7239D7C208C2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
Manifest number: 14D7
Signing time: Sun 29 Mar 2026 04:00:52 +0000
Manifest this update: Sun 29 Mar 2026 04:00:52 +0000
Manifest next update: Mon 30 Mar 2026 04:00:52 +0000
Files and hashes: 1: n38Xqr0qqFJ7oGfHYhb-VaYtVsU.roa (hash: +D4AMbYExvYotaGN2taivxR0S26uQ3AxgVQRHrzxbnw=)
2: oQIHcvYouPtR80dRNrd_60smmL4.crl (hash: P0GUaJsHwI5Hcwn97DgtdGUp6Qh20H8xcjA6pvrPLSg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:72:3c:2c:66:71:f4:7d:e7:23:9d:7c:20:8c:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1020772f628b8fb51f3475136b77feb4b2698be
Validity
Not Before: Mar 29 04:00:52 2026 GMT
Not After : Mar 30 04:00:52 2026 GMT
Subject: CN=c89df611bb0baf4002a18150e65561110db4d29c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:af:6b:d9:b2:15:ea:f9:9f:bd:6c:f4:6e:22:
b3:3c:6b:5d:35:2b:85:33:a0:87:7a:65:af:8b:7d:
6f:9c:81:b3:1a:d3:74:47:a2:ef:2c:a4:67:d8:e0:
41:83:94:93:98:22:ec:22:1a:ef:9c:de:93:7a:30:
f1:02:e5:ca:35:ce:20:5b:e8:ac:10:48:84:b0:8e:
0b:d2:2b:ef:6a:a9:7b:66:8c:08:7d:4c:9e:4a:15:
a1:c2:41:f0:f2:81:d6:58:4f:48:9b:5c:c0:24:2b:
68:0f:1e:9c:ee:60:b3:2f:41:63:a0:91:22:9a:1b:
7a:f2:ba:ed:57:d4:a1:31:27:05:76:f3:94:a5:6e:
d3:26:7b:2a:5f:99:fc:c4:2a:c8:32:dc:5c:45:76:
e5:bc:6d:e9:15:c2:30:2a:e0:e3:fc:8f:fd:8f:cd:
a0:ac:be:30:4e:32:89:e1:15:5d:92:61:2a:25:ad:
83:4b:cc:44:f8:d1:f6:ba:f3:f8:54:b6:a7:a0:50:
a5:eb:54:da:85:02:01:57:c1:7a:5d:44:68:4e:ea:
e4:32:bc:34:32:d7:ad:39:42:5a:cf:8a:b6:76:85:
a0:ad:a2:89:2c:ef:d2:47:d0:9f:d7:db:22:74:29:
25:94:b2:ed:90:d1:6e:a9:0d:76:8f:e1:55:3e:d4:
cd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:9D:F6:11:BB:0B:AF:40:02:A1:81:50:E6:55:61:11:0D:B4:D2:9C
X509v3 Authority Key Identifier:
keyid:A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:a4:18:f5:95:ae:97:cd:65:4f:e2:ff:cc:1c:bf:e2:d9:01:
64:1f:eb:d4:fa:8e:47:f0:1f:f0:68:03:3b:5d:78:b3:15:d4:
1f:c5:99:31:3f:f8:e6:db:d1:b2:62:1d:5f:01:38:9d:6f:03:
b0:89:11:fe:f1:fd:71:ca:2c:21:45:3d:ec:4e:52:de:06:9e:
b8:7d:d9:0c:df:dd:ea:21:56:22:35:f6:07:61:b9:24:a9:2c:
bf:de:f4:24:2d:65:8a:05:93:fc:bf:db:47:b4:4b:c9:13:aa:
e6:33:80:9b:66:b7:94:d4:a3:3b:94:15:00:2f:ac:b8:c8:49:
b0:13:23:f3:16:3a:b8:d7:9f:af:15:57:9f:aa:0c:79:ca:6e:
b0:0e:0e:66:f1:ae:ff:0e:5b:96:9a:62:96:3f:fb:a1:b1:34:
72:79:49:0d:9e:df:80:83:0c:ae:68:fa:13:d4:5b:df:95:a5:
5a:39:33:53:f1:fc:cf:a8:fc:e7:38:72:54:8e:f9:75:4e:7b:
a9:ba:cd:c3:a9:03:42:68:4f:9a:55:8b:42:82:8e:f1:d0:ba:
a1:53:bb:a0:58:ca:4e:ba:95:0e:24:60:bb:5d:78:30:e6:ec:
5b:dc:26:c9:7d:f7:cb:92:52:ff:88:d0:ec:ca:ea:7e:09:f4:
36:f7:99:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:33:20 2026 by rpki-client