Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
File: o05gF-H-A5MnjChZ9DBDsx7myJo.mft (raw, json)
Hash identifier: H4l52O7oDootYWkFnsjK+ZN7GsIYGk99euS6yvXOmbQ=
Subject key identifier: 6B:A0:BE:E2:A4:2E:60:AF:B3:0F:8E:E2:3D:69:6C:4F:2B:14:0B:8F
Authority key identifier: A3:4E:60:17:E1:FE:03:93:27:8C:28:59:F4:30:43:B3:1E:E6:C8:9A
Certificate issuer: /CN=a34e6017e1fe0393278c2859f43043b31ee6c89a
Certificate serial: 019D389BDEDFA748F88C19B721F6E1631CE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
Manifest number: 0554
Signing time: Sun 29 Mar 2026 08:00:32 +0000
Manifest this update: Sun 29 Mar 2026 08:00:32 +0000
Manifest next update: Mon 30 Mar 2026 08:00:32 +0000
Files and hashes: 1: o05gF-H-A5MnjChZ9DBDsx7myJo.crl (hash: Tvr50PNNlBmO7igoGZe5JgTSlSRxS1nno4dy6iyMZ+c=)
2: qkKMvBvdUjtoHS7LZo_ml5EWjhU.roa (hash: OdU1OVMFb9qYyAUFIV2T8Avxl/qa1QKVRGQ2UMicsP8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:de:df:a7:48:f8:8c:19:b7:21:f6:e1:63:1c:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a34e6017e1fe0393278c2859f43043b31ee6c89a
Validity
Not Before: Mar 29 08:00:32 2026 GMT
Not After : Mar 30 08:00:32 2026 GMT
Subject: CN=6ba0bee2a42e60afb30f8ee23d696c4f2b140b8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b3:41:8e:7e:2e:ca:1c:ad:ee:58:a3:6f:58:
5e:55:7d:fb:b4:29:db:2f:cc:7a:a1:5c:c9:fa:a0:
8c:4e:27:4d:c6:cd:0c:6f:6b:bd:dd:2c:34:e4:85:
b7:66:de:57:2d:f2:2e:35:ca:9d:9c:4e:63:9e:ca:
0c:1f:1f:c9:c5:f5:ae:db:b5:6b:26:9c:2a:71:a1:
f1:42:80:88:25:8e:31:66:62:43:26:0e:aa:58:c9:
e0:93:11:fa:c8:53:d2:5f:d9:65:16:ae:ab:37:35:
b2:36:85:b7:d9:29:f1:40:6e:c3:07:5f:86:e8:89:
1d:93:42:25:67:bd:34:a3:9d:1e:74:bf:29:30:c3:
fb:49:a3:92:84:13:1b:e9:a2:9a:47:ef:78:4a:50:
a4:ec:72:42:24:e1:74:6d:e2:37:00:37:07:a5:e8:
62:52:d9:b7:63:03:66:0e:d0:dc:43:55:0b:85:90:
8d:2c:3b:e0:b8:56:1d:be:8f:78:a7:bb:76:2b:72:
ed:97:88:9d:f0:d4:64:16:2f:2d:8a:c5:ba:ce:77:
0c:cc:1f:6d:ed:fa:76:4d:1e:c2:1d:8d:b2:25:10:
af:21:d5:db:b4:37:0f:82:9f:bf:3b:dc:66:96:a6:
77:23:78:0b:05:80:94:bb:ec:09:71:7a:15:eb:49:
ff:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:A0:BE:E2:A4:2E:60:AF:B3:0F:8E:E2:3D:69:6C:4F:2B:14:0B:8F
X509v3 Authority Key Identifier:
keyid:A3:4E:60:17:E1:FE:03:93:27:8C:28:59:F4:30:43:B3:1E:E6:C8:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:bb:ec:f3:85:1e:2a:fa:7e:c0:12:e8:e4:ef:60:a3:d5:1e:
eb:f0:b4:70:a5:f7:d4:69:c9:72:3a:8b:75:77:8f:0c:31:fb:
12:16:60:b5:43:7b:42:c7:d1:78:66:3d:88:2e:82:06:bd:d7:
49:3b:a9:44:25:0a:e4:d8:b1:95:1d:8e:20:08:40:1e:cb:9d:
49:12:03:08:fb:43:3a:eb:9a:d7:c6:29:b3:79:1d:3d:3f:71:
f8:ce:a0:65:3f:9d:93:51:2c:aa:d8:47:f1:db:bc:71:a4:58:
d6:50:00:c5:4b:86:3d:bd:ee:66:48:26:33:02:69:a7:65:da:
09:d6:1e:2d:53:f9:2a:22:c2:d6:b6:bf:b6:9f:39:2f:f4:e4:
0f:8d:b4:c2:bc:bf:67:2b:2b:3e:8e:ec:90:70:0c:50:96:4c:
40:39:5d:c3:44:52:85:2a:1d:f8:bd:32:3c:f4:d9:73:3b:05:
e9:2f:25:d7:35:45:7e:6b:88:f7:e3:f2:96:46:d2:7d:69:e7:
6a:79:f8:77:e1:82:b8:78:08:a6:bd:47:86:70:ff:35:7f:c3:
36:aa:ce:73:f5:82:10:a5:72:50:1f:11:c2:b6:fb:61:07:6c:
05:1b:02:43:2f:bb:be:92:a4:cd:37:af:d9:2f:d7:7e:e1:8e:
71:8c:32:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04m97fp0j4jBm3IfbhYxzpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzNGU2MDE3ZTFmZTAzOTMyNzhjMjg1OWY0MzA0M2IzMWVl
NmM4OWEwHhcNMjYwMzI5MDgwMDMyWhcNMjYwMzMwMDgwMDMyWjAzMTEwLwYDVQQD
Eyg2YmEwYmVlMmE0MmU2MGFmYjMwZjhlZTIzZDY5NmM0ZjJiMTQwYjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAubNBjn4uyhyt7lijb1heVX37tCnb
L8x6oVzJ+qCMTidNxs0Mb2u93Sw05IW3Zt5XLfIuNcqdnE5jnsoMHx/JxfWu27Vr
JpwqcaHxQoCIJY4xZmJDJg6qWMngkxH6yFPSX9llFq6rNzWyNoW32SnxQG7DB1+G
6Ikdk0IlZ700o50edL8pMMP7SaOShBMb6aKaR+94SlCk7HJCJOF0beI3ADcHpehi
Utm3YwNmDtDcQ1ULhZCNLDvguFYdvo94p7t2K3Ltl4id8NRkFi8tisW6zncMzB9t
7fp2TR7CHY2yJRCvIdXbtDcPgp+/O9xmlqZ3I3gLBYCUu+wJcXoV60n/9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGugvuKkLmCvsw+O4j1pbE8rFAuPMB8GA1UdIwQY
MBaAFKNOYBfh/gOTJ4woWfQwQ7Me5siaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzA1Z0YtSC1BNU1uakNoWjlEQkRzeDdteUpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC82ZDYyNWMtN2U2MC00NTIzLTk0OTEt
ZDExMjI5OWZmNjk1LzEvbzA1Z0YtSC1BNU1uakNoWjlEQkRzeDdteUpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC82ZDYyNWMtN2U2MC00NTIzLTk0OTEtZDExMjI5OWZmNjk1
LzEvbzA1Z0YtSC1BNU1uakNoWjlEQkRzeDdteUpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmrvs84Ue
Kvp+wBLo5O9go9Ue6/C0cKX31GnJcjqLdXePDDH7EhZgtUN7QsfReGY9iC6CBr3X
STupRCUK5NixlR2OIAhAHsudSRIDCPtDOuua18Yps3kdPT9x+M6gZT+dk1EsqthH
8du8caRY1lAAxUuGPb3uZkgmMwJpp2XaCdYeLVP5KiLC1ra/tp85L/TkD420wry/
ZysrPo7skHAMUJZMQDldw0RShSod+L0yPPTZczsF6S8l1zVFfmuI9+PylkbSfWnn
ann4d+GCuHgIpr1HhnD/NX/DNqrOc/WCEKVyUB8Rwrb7YQdsBRsCQy+7vpKkzTev
2S/XfuGOcYwyyg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:21 2026 by rpki-client