Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
File: oNki4v4kvSzaeToqrcEzYlAM2bE.mft (raw, json)
Hash identifier: Qb699nJf5j3NzHLri9V2YSEgVVtSB8pOrJWa21C+JeE=
Subject key identifier: E9:89:09:BF:8C:67:08:ED:91:84:F7:4D:E6:34:E7:38:46:73:D7:07
Authority key identifier: A0:D9:22:E2:FE:24:BD:2C:DA:79:3A:2A:AD:C1:33:62:50:0C:D9:B1
Certificate issuer: /CN=a0d922e2fe24bd2cda793a2aadc13362500cd9b1
Certificate serial: 019D38D3A7C1F22F02C3E22A5520ECE837A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
Manifest number: 0E92
Signing time: Sun 29 Mar 2026 09:01:28 +0000
Manifest this update: Sun 29 Mar 2026 09:01:28 +0000
Manifest next update: Mon 30 Mar 2026 09:01:28 +0000
Files and hashes: 1: oNki4v4kvSzaeToqrcEzYlAM2bE.crl (hash: 5skzAgsmtxfWPHyjYLs2xPoW8VTj0wZz3/IcR20RXag=)
2: zSlKzVB4Na3PSrvxBdB_0eJnzzM.roa (hash: cuiATN6CsW6UrYic6PJvMAevjZeViQMrG4aNtH1vYrg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:a7:c1:f2:2f:02:c3:e2:2a:55:20:ec:e8:37:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d922e2fe24bd2cda793a2aadc13362500cd9b1
Validity
Not Before: Mar 29 09:01:28 2026 GMT
Not After : Mar 30 09:01:28 2026 GMT
Subject: CN=e98909bf8c6708ed9184f74de634e7384673d707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9e:2f:18:fd:3c:b7:d1:c3:6c:90:5d:62:24:
a9:1d:1b:f5:41:21:e2:73:e3:cb:fa:13:d5:18:53:
cf:05:d2:d6:be:9b:c7:03:8b:38:d4:9a:97:53:fd:
05:8e:70:51:15:81:81:9a:93:7b:f2:d5:c7:7f:ea:
95:44:5c:56:3f:b3:f8:30:39:b2:aa:4e:9c:40:41:
7d:65:ff:81:a9:86:78:54:07:31:26:62:c0:71:55:
17:13:b6:52:0a:f7:00:77:c1:25:be:12:ba:55:bc:
1f:aa:9e:0e:2d:98:08:28:c7:3d:f9:ad:2e:e8:98:
7a:60:4c:45:2e:28:99:02:6b:bb:bf:fe:9a:d8:80:
6c:51:54:0e:41:9c:82:43:2b:fa:6b:92:6d:0d:17:
58:fa:2f:61:44:1c:e1:d1:d8:4a:fc:fa:29:09:01:
93:40:6a:c5:d8:7c:58:8a:9d:f3:d6:07:1c:a2:3b:
25:27:0a:b0:b7:ba:ea:d9:18:7f:d2:49:cb:44:f4:
18:e0:50:8f:23:04:06:ff:ec:73:f3:c3:ab:fd:dd:
dc:50:60:e9:1d:a7:e1:3c:28:68:c2:a5:ed:d2:44:
27:41:c9:a8:97:7e:90:37:49:25:e9:e8:90:78:7f:
cf:c4:67:ab:3b:30:06:d7:d6:e5:d0:d2:d4:37:91:
5d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:89:09:BF:8C:67:08:ED:91:84:F7:4D:E6:34:E7:38:46:73:D7:07
X509v3 Authority Key Identifier:
keyid:A0:D9:22:E2:FE:24:BD:2C:DA:79:3A:2A:AD:C1:33:62:50:0C:D9:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:bb:8f:f1:00:cb:b4:c6:f3:85:d5:71:45:0c:af:00:83:c7:
da:97:64:b2:5e:5e:c7:7e:17:00:90:13:7b:2f:e3:07:22:58:
17:d6:fd:a3:ad:dc:72:ff:d2:9e:cc:9d:6b:72:76:21:82:9f:
d2:68:e8:96:02:e4:ed:b9:40:a6:29:b7:d4:59:63:ca:47:c0:
d6:f7:c5:9c:be:cc:98:5c:45:27:0b:f8:83:46:ee:fc:0a:14:
08:ae:9a:2b:95:d1:09:f4:17:fc:9b:70:31:3d:87:39:05:09:
30:72:06:25:c3:68:fa:d7:c8:8e:d8:67:e4:d5:28:9c:6f:0d:
f2:a3:8f:6b:13:a1:24:2d:11:83:99:05:78:a3:b7:63:2a:4b:
29:e0:38:3f:5f:75:3b:dc:09:b0:d1:d0:a7:45:f0:85:8a:f3:
9d:6a:9c:3a:d0:92:6a:2c:55:f8:30:b5:41:82:a5:ae:fa:2d:
ca:54:d4:66:d5:ba:c9:c2:fb:a0:40:cc:89:f4:d4:aa:37:76:
b8:8e:19:2b:5c:01:f6:dc:a6:94:6a:dd:24:42:8c:84:b9:19:
8a:73:a4:1c:c9:94:f5:09:a0:72:56:60:44:83:56:18:68:0b:
42:e8:02:a3:db:3a:bd:30:53:89:8f:d8:b9:79:25:99:cd:57:
1a:2d:a7:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0406fB8i8Cw+IqVSDs6DeiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZDkyMmUyZmUyNGJkMmNkYTc5M2EyYWFkYzEzMzYyNTAw
Y2Q5YjEwHhcNMjYwMzI5MDkwMTI4WhcNMjYwMzMwMDkwMTI4WjAzMTEwLwYDVQQD
EyhlOTg5MDliZjhjNjcwOGVkOTE4NGY3NGRlNjM0ZTczODQ2NzNkNzA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZ4vGP08t9HDbJBdYiSpHRv1QSHi
c+PL+hPVGFPPBdLWvpvHA4s41JqXU/0FjnBRFYGBmpN78tXHf+qVRFxWP7P4MDmy
qk6cQEF9Zf+BqYZ4VAcxJmLAcVUXE7ZSCvcAd8ElvhK6Vbwfqp4OLZgIKMc9+a0u
6Jh6YExFLiiZAmu7v/6a2IBsUVQOQZyCQyv6a5JtDRdY+i9hRBzh0dhK/PopCQGT
QGrF2HxYip3z1gccojslJwqwt7rq2Rh/0knLRPQY4FCPIwQG/+xz88Or/d3cUGDp
HafhPChowqXt0kQnQcmol36QN0kl6eiQeH/PxGerOzAG19bl0NLUN5FdiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOmJCb+MZwjtkYT3TeY05zhGc9cHMB8GA1UdIwQY
MBaAFKDZIuL+JL0s2nk6Kq3BM2JQDNmxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb05raTR2NGt2U3phZVRvcXJjRXpZbEFNMmJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi9kNGZjNGMtNDgxNS00ZTU2LWJmNzMt
NGE2YWNlMjZiOTcyLzEvb05raTR2NGt2U3phZVRvcXJjRXpZbEFNMmJFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi9kNGZjNGMtNDgxNS00ZTU2LWJmNzMtNGE2YWNlMjZiOTcy
LzEvb05raTR2NGt2U3phZVRvcXJjRXpZbEFNMmJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmruP8QDL
tMbzhdVxRQyvAIPH2pdksl5ex34XAJATey/jByJYF9b9o63ccv/Snsyda3J2IYKf
0mjolgLk7blApim31FljykfA1vfFnL7MmFxFJwv4g0bu/AoUCK6aK5XRCfQX/Jtw
MT2HOQUJMHIGJcNo+tfIjthn5NUonG8N8qOPaxOhJC0Rg5kFeKO3YypLKeA4P191
O9wJsNHQp0XwhYrznWqcOtCSaixV+DC1QYKlrvotylTUZtW6ycL7oEDMifTUqjd2
uI4ZK1wB9tymlGrdJEKMhLkZinOkHMmU9QmgclZgRINWGGgLQugCo9s6vTBTiY/Y
uXklmc1XGi2nYA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:36 2026 by rpki-client