Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
File: oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft (raw, json)
Hash identifier: k7Mf5Ypgr8aQ5GkEgl7bylYej9Ag0P3Z+H8Ytyx7wPk=
Subject key identifier: 92:65:3A:A6:8B:19:8F:8D:F2:D5:EF:1B:60:DC:F4:3B:67:F3:4C:F5
Authority key identifier: A1:5D:95:96:B7:A5:EF:08:89:A7:39:71:00:0D:12:63:0D:AC:A9:A6
Certificate issuer: /CN=a15d9596b7a5ef0889a73971000d12630daca9a6
Certificate serial: 019D39779A8FE2F516303B333F9D78F37141
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
Manifest number: 06D5
Signing time: Sun 29 Mar 2026 12:00:32 +0000
Manifest this update: Sun 29 Mar 2026 12:00:32 +0000
Manifest next update: Mon 30 Mar 2026 12:00:32 +0000
Files and hashes: 1: fcv9CeFZofVzFIT0OS1kEqSLEro.roa (hash: mwt6iTwv8E5A7UEcMz2+LqSnC9Jb0HshexX8iDEURr4=)
2: oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl (hash: hTsDU6Dv5npQAdFqrG6BDilIl9Ae4ft/7CYirDHHeb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 12:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:9a:8f:e2:f5:16:30:3b:33:3f:9d:78:f3:71:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15d9596b7a5ef0889a73971000d12630daca9a6
Validity
Not Before: Mar 29 12:00:32 2026 GMT
Not After : Mar 30 12:00:32 2026 GMT
Subject: CN=92653aa68b198f8df2d5ef1b60dcf43b67f34cf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:96:e8:38:87:c1:f6:8f:d9:53:a7:01:5c:f4:
41:7c:02:73:92:4f:c4:a0:4f:90:4d:3e:94:bb:9a:
f2:d1:b4:12:4a:2a:21:2e:71:32:59:df:94:3f:22:
4d:92:30:d2:d7:1f:02:af:b7:07:77:7d:4d:97:cf:
aa:0f:2a:db:b1:48:6f:e0:64:ed:bb:a5:da:53:04:
7b:f6:8d:ec:1a:81:c9:ce:21:2c:17:a9:17:36:c6:
3b:be:06:26:a5:07:95:8d:6d:5b:dc:08:1f:a5:6e:
0b:6a:1f:ff:3b:1b:53:82:d7:a9:72:1c:7b:03:1a:
63:3a:5b:bc:69:5c:64:d6:04:bf:c6:99:21:35:fa:
13:fd:44:22:48:b6:a8:a8:5a:f9:88:8a:fc:81:1b:
94:30:c2:ff:6f:89:f7:4c:c5:7e:b9:ca:99:b9:b2:
35:61:6f:0a:d5:f6:f3:e7:6a:c7:70:fc:5f:36:5c:
b3:4d:6b:5e:31:76:87:ce:4d:52:d2:62:50:8a:95:
37:f9:c5:91:d7:20:be:3a:2f:35:46:37:5e:f9:2b:
90:e1:e0:a2:d9:e5:d5:9e:fa:4d:9d:23:8d:63:93:
54:45:2d:e9:eb:e3:97:9b:31:7d:87:6d:6a:46:6b:
36:35:92:ad:ee:cf:e4:c3:f2:b7:9d:80:43:60:a7:
42:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:65:3A:A6:8B:19:8F:8D:F2:D5:EF:1B:60:DC:F4:3B:67:F3:4C:F5
X509v3 Authority Key Identifier:
keyid:A1:5D:95:96:B7:A5:EF:08:89:A7:39:71:00:0D:12:63:0D:AC:A9:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:aa:01:9b:5c:13:df:04:42:10:64:f0:3a:4d:a7:f0:87:3d:
31:73:e9:b9:ed:16:93:80:ed:d7:b7:af:d0:23:df:87:66:e8:
f2:2b:dd:02:ad:e8:c8:d1:7e:e1:3c:71:55:0a:b2:21:c4:a9:
50:55:63:b1:82:38:fd:93:5e:5c:30:78:cf:2f:ff:05:a3:1e:
e7:e9:a6:0c:bf:5a:a5:84:f5:21:88:55:f9:c1:7f:4f:ce:d5:
76:c2:ed:1f:b6:8c:b2:2e:66:a7:c9:ac:83:1b:b6:a4:25:3a:
83:27:84:df:87:48:d8:b4:b3:4e:e6:55:a4:cd:fb:dd:8b:a0:
80:08:d0:66:f0:0a:b5:f8:8f:e4:ea:3b:25:46:be:3b:95:63:
cd:be:68:c0:f4:69:4c:a1:75:0e:c7:93:71:c4:c2:a9:d5:8e:
32:3f:4d:44:22:eb:51:e2:07:e8:d3:7b:52:21:d0:1d:ac:f3:
54:0e:eb:22:0f:bb:53:1b:5d:8f:56:1d:15:19:3f:f1:7d:08:
67:63:c8:d9:dc:fc:df:44:d2:10:de:81:1b:92:0f:f8:55:a6:
ee:9f:12:44:03:20:05:28:de:08:92:fc:d9:e5:fe:9a:6f:08:
37:84:62:20:32:75:73:f3:a3:af:bd:23:01:b6:6f:15:a0:22:
54:38:39:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05d5qP4vUWMDszP51483FBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNWQ5NTk2YjdhNWVmMDg4OWE3Mzk3MTAwMGQxMjYzMGRh
Y2E5YTYwHhcNMjYwMzI5MTIwMDMyWhcNMjYwMzMwMTIwMDMyWjAzMTEwLwYDVQQD
Eyg5MjY1M2FhNjhiMTk4ZjhkZjJkNWVmMWI2MGRjZjQzYjY3ZjM0Y2Y1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5boOIfB9o/ZU6cBXPRBfAJzkk/E
oE+QTT6Uu5ry0bQSSiohLnEyWd+UPyJNkjDS1x8Cr7cHd31Nl8+qDyrbsUhv4GTt
u6XaUwR79o3sGoHJziEsF6kXNsY7vgYmpQeVjW1b3AgfpW4Lah//OxtTgtepchx7
AxpjOlu8aVxk1gS/xpkhNfoT/UQiSLaoqFr5iIr8gRuUMML/b4n3TMV+ucqZubI1
YW8K1fbz52rHcPxfNlyzTWteMXaHzk1S0mJQipU3+cWR1yC+Oi81Rjde+SuQ4eCi
2eXVnvpNnSONY5NURS3p6+OXmzF9h21qRms2NZKt7s/kw/K3nYBDYKdCXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJJlOqaLGY+N8tXvG2Dc9Dtn80z1MB8GA1UdIwQY
MBaAFKFdlZa3pe8Iiac5cQANEmMNrKmmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1YyVmxyZWw3d2lKcHpseEFBMFNZdzJzcWFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9jZjU0MGYtOTdkNi00MTQyLWI2MDMt
MzExMjQ2N2JiYzg4LzEvb1YyVmxyZWw3d2lKcHpseEFBMFNZdzJzcWFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9jZjU0MGYtOTdkNi00MTQyLWI2MDMtMzExMjQ2N2JiYzg4
LzEvb1YyVmxyZWw3d2lKcHpseEFBMFNZdzJzcWFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApKoBm1wT
3wRCEGTwOk2n8Ic9MXPpue0Wk4Dt17ev0CPfh2bo8ivdAq3oyNF+4TxxVQqyIcSp
UFVjsYI4/ZNeXDB4zy//BaMe5+mmDL9apYT1IYhV+cF/T87VdsLtH7aMsi5mp8ms
gxu2pCU6gyeE34dI2LSzTuZVpM373YuggAjQZvAKtfiP5Oo7JUa+O5Vjzb5owPRp
TKF1DseTccTCqdWOMj9NRCLrUeIH6NN7UiHQHazzVA7rIg+7Uxtdj1YdFRk/8X0I
Z2PI2dz830TSEN6BG5IP+FWm7p8SRAMgBSjeCJL82eX+mm8IN4RiIDJ1c/Ojr70j
AbZvFaAiVDg5gQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 21:22:03 2026 by rpki-client