Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.mft
File: oheIwIqkN9EWXOy9aP2xlaFd-gg.mft (raw, json)
Hash identifier: 16G2esubH8gDCrny+IHvL+2CbtxWuruiqF9izkMv07I=
Subject key identifier: 93:FE:18:3B:C5:89:02:2A:81:65:74:16:9E:B6:D4:2A:BB:D3:E9:07
Authority key identifier: A2:17:88:C0:8A:A4:37:D1:16:5C:EC:BD:68:FD:B1:95:A1:5D:FA:08
Certificate issuer: /CN=a21788c08aa437d1165cecbd68fdb195a15dfa08
Certificate serial: 019D382E445EB651007DF73CF921D89BAC73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oheIwIqkN9EWXOy9aP2xlaFd-gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 06:00:49 +0000
Manifest this update: Sun 29 Mar 2026 06:00:49 +0000
Manifest next update: Mon 30 Mar 2026 06:00:49 +0000
Files and hashes: 1: MuBqNt1syXndOYY-i5CsiyzlTpI.roa (hash: ePoNVRZGhSsK8En0WwtEIpiiLLOOy80WDIwT7dGHkIU=)
2: oheIwIqkN9EWXOy9aP2xlaFd-gg.crl (hash: uEDco5a05A9d+ipu/kXSdGL7H1sYJm6I83IFuahDBwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oheIwIqkN9EWXOy9aP2xlaFd-gg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:44:5e:b6:51:00:7d:f7:3c:f9:21:d8:9b:ac:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a21788c08aa437d1165cecbd68fdb195a15dfa08
Validity
Not Before: Mar 29 06:00:49 2026 GMT
Not After : Mar 30 06:00:49 2026 GMT
Subject: CN=93fe183bc589022a816574169eb6d42abbd3e907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:29:6b:4b:55:16:c7:53:29:8d:8d:0b:ab:dc:
f1:a0:27:fe:e8:d1:eb:36:d1:5d:e6:7d:72:3c:45:
69:e2:73:5b:08:3c:d1:8d:c2:9e:65:aa:9d:06:a6:
70:00:b3:55:3e:9d:ba:5d:8d:81:e3:2e:08:ca:1d:
1e:f7:c0:d6:70:01:6f:fd:a7:df:f5:09:46:58:70:
6f:d4:c1:51:8b:ad:2c:bc:31:b4:1e:cf:fb:54:c0:
11:6f:1c:34:25:87:ab:2c:f3:75:ff:ad:36:ea:65:
fb:71:12:4b:85:78:dd:77:97:53:e0:69:3f:14:69:
8c:23:f7:eb:0a:27:f7:c9:29:c7:8e:d5:70:38:cb:
0e:04:8e:63:72:75:f6:8d:12:48:a1:30:53:98:58:
24:44:87:42:ca:70:e5:34:8d:08:11:c2:cc:ef:1f:
a1:91:4f:56:11:24:1f:7f:f1:70:4d:a5:99:d9:9e:
09:3f:81:fc:8f:09:ef:bd:4f:1e:1b:5a:18:e8:5e:
8f:4e:d7:94:c3:26:69:72:77:71:13:e9:2b:41:5b:
42:a9:a4:b7:bc:14:cc:9d:41:0d:fe:b7:01:1c:76:
9d:10:6b:6a:ac:8e:ea:8c:96:8c:b6:10:db:ec:c7:
0e:9b:9e:36:2d:c9:02:04:ae:57:83:bc:06:67:0b:
cd:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:FE:18:3B:C5:89:02:2A:81:65:74:16:9E:B6:D4:2A:BB:D3:E9:07
X509v3 Authority Key Identifier:
keyid:A2:17:88:C0:8A:A4:37:D1:16:5C:EC:BD:68:FD:B1:95:A1:5D:FA:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oheIwIqkN9EWXOy9aP2xlaFd-gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:f2:b3:bc:a6:2c:f7:b3:25:3f:36:52:d9:a1:72:85:34:6a:
e0:f9:b9:f7:05:37:28:d1:b2:08:1e:bd:a6:29:9c:8f:a4:3c:
99:19:18:4f:8f:c5:02:93:d7:03:79:73:9c:8d:e3:52:4d:a3:
7a:45:02:64:67:d8:8f:c7:91:c2:d2:b8:5b:65:8e:bd:fe:97:
d9:9e:3f:52:c0:4f:66:7b:27:c5:1e:0b:91:01:be:a1:44:ff:
2b:ab:a7:94:55:d5:13:b3:94:18:bb:ba:3e:33:7c:dc:7a:7d:
f1:19:54:86:d8:d5:ab:df:ac:04:6d:b6:86:55:f9:91:8f:e1:
7b:3d:18:29:fa:79:37:7d:3e:bc:52:65:14:bd:73:97:28:a1:
4a:00:0c:bc:a4:8c:2c:ca:01:1b:9a:63:a4:f3:9d:ca:27:98:
81:8f:4f:6b:1d:45:47:7a:76:3e:ff:bd:bc:c5:9b:d8:ff:9b:
f5:d7:9c:23:51:50:2b:e9:e6:f6:b4:9b:92:cf:a2:3b:7a:60:
32:96:0f:bf:84:62:92:93:b3:27:36:e8:81:28:c4:84:53:78:
eb:87:81:0a:fe:97:41:b7:82:43:66:11:ec:ca:97:6b:88:d6:
1d:d7:c5:1e:b3:91:90:30:cf:5a:c0:52:cd:35:0c:06:2c:4e:
69:ae:99:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:46 2026 by rpki-client