Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft
File: oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft (raw, json)
Hash identifier: XUHYf+UY1K0N9l+/gNXs9T93GaJ/deNMQluRA/FpQiA=
Subject key identifier: 77:70:32:36:3F:63:8C:DF:8C:EA:4E:41:81:68:8E:AE:E1:82:69:98
Authority key identifier: A0:A2:2F:CB:54:A0:91:D6:91:3F:FE:9F:AF:B9:83:C5:7A:4A:C2:2C
Certificate issuer: /CN=a0a22fcb54a091d6913ffe9fafb983c57a4ac22c
Certificate serial: 019DD05185B80EE6BA04BA3F6266D61620ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKIvy1SgkdaRP_6fr7mDxXpKwiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft
Manifest number: 0A33
Signing time: Mon 27 Apr 2026 19:01:36 +0000
Manifest this update: Mon 27 Apr 2026 19:01:36 +0000
Manifest next update: Tue 28 Apr 2026 19:01:36 +0000
Files and hashes: 1: Mob9EPRgvBzo4H6hbqTT2HdD3JA.roa (hash: kvdg8wCS9egZQzAgHG4zTvTOgP+Bu8A9k8hcSeFomOA=)
2: oKIvy1SgkdaRP_6fr7mDxXpKwiw.crl (hash: F5zgrwmvGcJbJIH9XAw8/y9U6GQ9efw0Jxx7Cwy88JY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKIvy1SgkdaRP_6fr7mDxXpKwiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d0:51:85:b8:0e:e6:ba:04:ba:3f:62:66:d6:16:20:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a22fcb54a091d6913ffe9fafb983c57a4ac22c
Validity
Not Before: Apr 27 19:01:36 2026 GMT
Not After : Apr 28 19:01:36 2026 GMT
Subject: CN=777032363f638cdf8cea4e4181688eaee1826998
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ad:99:3b:6b:3c:bc:54:8d:04:3b:c8:48:8f:
31:10:7b:bb:d4:08:da:9b:cd:93:83:ca:ed:c7:b5:
99:a3:a3:53:6e:a7:39:81:24:56:f8:6b:26:ae:7d:
31:14:ec:6c:19:96:02:98:be:8f:db:f1:95:5b:b2:
f7:18:ea:72:1f:ba:05:e1:99:3c:84:4e:5c:03:ec:
61:84:6f:d3:3a:69:81:d7:15:90:05:26:a4:0f:2f:
45:95:57:30:03:9d:81:46:08:4d:e1:22:83:ec:21:
9c:cb:9d:ff:34:67:bf:fc:04:47:c6:17:8f:9d:7f:
55:71:a5:6d:07:bc:b9:79:3b:2e:00:f1:1e:df:08:
98:10:ef:88:ea:17:8c:1c:27:e5:b3:70:33:16:47:
59:f1:66:d5:7f:a7:15:8b:c2:35:fc:6c:ec:0d:0b:
de:df:6e:7c:4b:f9:04:ba:04:78:03:d2:d2:f8:50:
3a:53:22:81:4b:0b:0c:23:a5:20:07:da:6c:69:30:
e6:dd:9f:f8:cc:2d:d7:ba:8f:43:4a:39:e6:28:df:
f6:8c:b5:29:e4:57:ed:b6:ef:19:4a:ab:0c:7d:37:
b9:f7:b7:3a:00:10:46:57:c4:32:5e:38:ac:49:3f:
76:6e:ae:13:1f:3d:06:3b:ec:ac:39:18:bf:fd:22:
5a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:70:32:36:3F:63:8C:DF:8C:EA:4E:41:81:68:8E:AE:E1:82:69:98
X509v3 Authority Key Identifier:
keyid:A0:A2:2F:CB:54:A0:91:D6:91:3F:FE:9F:AF:B9:83:C5:7A:4A:C2:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKIvy1SgkdaRP_6fr7mDxXpKwiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:fc:c5:78:70:63:8e:bc:13:60:fd:48:f3:e2:05:d1:db:dc:
b5:5b:03:e5:8f:31:dc:de:20:85:98:d2:44:f2:83:94:06:2d:
cb:f0:95:10:77:bc:a2:ef:5d:1e:02:fd:04:49:ed:ca:d6:e3:
e8:dd:d9:6c:2a:d2:1f:e7:aa:1f:3c:de:bf:04:1a:e9:2e:17:
cf:aa:07:24:fb:05:03:c6:d2:e0:db:10:84:d1:39:55:76:58:
d1:4a:5a:a8:96:86:ee:af:b5:8f:57:d1:ef:a7:20:82:16:81:
31:ba:f6:86:9b:a7:47:d7:e4:2a:24:42:d5:47:9a:ef:73:73:
94:67:51:a2:b2:c4:49:68:b6:7f:a0:dd:38:3f:09:7d:40:69:
1d:33:cb:e4:79:ab:1e:be:d7:34:a0:ad:8c:13:9f:dd:db:47:
c9:f5:46:f1:f2:b6:ec:c3:c4:a6:35:8b:2f:4c:1e:67:56:0b:
85:dc:b5:98:c1:da:24:06:c0:d5:9b:06:d3:53:32:d1:93:b4:
a1:00:b1:94:eb:eb:ca:5f:f3:5c:8c:92:27:70:76:57:03:67:
12:37:4b:1d:8c:7a:da:a7:7e:a4:11:d7:e8:ca:ea:d0:73:da:
35:6c:f7:01:b3:5d:f5:52:38:c3:ee:83:80:6a:24:39:d0:a1:
cb:c3:ca:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 03:23:39 2026 by rpki-client