Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
File: oynU0nVy71pqbb7NeS7vmM6QcW0.mft (raw, json)
Hash identifier: BycIFt7bUbXVmp7vJ1ct8QBIcF35Qtzd8Hyi0uVptwc=
Subject key identifier: 10:52:E0:5B:B3:2C:09:82:57:B6:8C:73:0F:BD:3C:58:E9:C5:B5:A6
Authority key identifier: A3:29:D4:D2:75:72:EF:5A:6A:6D:BE:CD:79:2E:EF:98:CE:90:71:6D
Certificate issuer: /CN=a329d4d27572ef5a6a6dbecd792eef98ce90716d
Certificate serial: 019D38D374FFA80EB219FE732888B87132DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 09:01:15 +0000
Manifest this update: Sun 29 Mar 2026 09:01:15 +0000
Manifest next update: Mon 30 Mar 2026 09:01:15 +0000
Files and hashes: 1: XYUJ8YEpWRVKnEs1lud3ZGRwErY.roa (hash: ODygtNmaduKQgGbNRUfrQ+Q4mGtK3q6vsVkBCLpr8rg=)
2: oynU0nVy71pqbb7NeS7vmM6QcW0.crl (hash: d8+Nrbbjv3lbSmckrT/0HhK0Ggd+Gm+oRW7BCht6IW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:74:ff:a8:0e:b2:19:fe:73:28:88:b8:71:32:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a329d4d27572ef5a6a6dbecd792eef98ce90716d
Validity
Not Before: Mar 29 09:01:15 2026 GMT
Not After : Mar 30 09:01:15 2026 GMT
Subject: CN=1052e05bb32c098257b68c730fbd3c58e9c5b5a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5e:d0:4e:4a:8e:7d:f2:11:b1:bb:0e:e1:5c:
11:32:9a:af:51:2b:7c:ce:9c:d1:73:0c:f1:d2:c6:
3c:c1:00:73:10:b4:03:7b:77:9c:ed:c3:3f:3f:84:
d8:6a:ae:a2:7f:37:08:74:f8:3b:bb:b0:89:94:f2:
83:de:bc:de:6d:b3:35:0b:6e:2c:9d:aa:fa:42:c1:
ed:4c:02:d6:06:0b:39:90:77:d8:85:56:de:c5:14:
8c:48:97:0b:63:84:13:5a:45:9a:16:11:3d:dc:e7:
fa:cf:0e:2e:67:4e:75:57:dd:35:87:6b:0a:74:1f:
b9:9f:84:82:e1:c6:14:37:e6:4c:ba:05:65:62:d4:
fd:be:a9:69:6b:e5:7a:84:8b:f7:21:f6:7d:7d:d5:
95:16:a8:bc:49:61:af:f6:1b:38:96:2e:d5:9c:da:
d7:77:60:ca:73:81:de:f2:7c:2c:3a:44:45:da:2e:
a4:7d:4a:87:0d:f0:95:e1:2f:d1:96:31:8a:c4:e3:
5d:97:05:56:94:d9:46:ba:28:87:f9:a7:81:8e:ce:
24:7b:62:f4:1e:fb:e3:1b:3b:0e:23:cb:ce:86:af:
5f:7d:62:55:9e:c0:18:44:cd:65:08:e2:5e:ad:0d:
c2:7b:2b:92:46:d5:8b:a2:db:4d:56:c0:61:e2:84:
94:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:52:E0:5B:B3:2C:09:82:57:B6:8C:73:0F:BD:3C:58:E9:C5:B5:A6
X509v3 Authority Key Identifier:
keyid:A3:29:D4:D2:75:72:EF:5A:6A:6D:BE:CD:79:2E:EF:98:CE:90:71:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:84:17:09:39:28:26:6c:1e:62:d0:b4:2d:a1:47:98:53:19:
a3:e7:cc:76:2c:4a:e1:c3:7e:9e:04:32:ac:cd:3b:cb:b6:31:
bc:09:f4:f3:c3:9d:b0:50:c7:26:9c:e3:35:fc:08:42:a6:5d:
49:33:d7:75:2f:5e:cd:1e:67:6f:d7:e5:8e:73:65:89:30:20:
e1:6c:3b:81:64:f8:5d:69:7e:c1:a0:ea:80:8c:58:03:cd:b9:
70:84:88:6f:7a:94:8c:4f:2c:51:ea:d8:c4:24:f9:71:c8:82:
77:68:b5:00:d4:6e:98:44:39:83:87:9a:50:52:c7:3d:ce:ca:
fc:9f:92:84:0a:1e:1d:65:32:3a:11:68:13:f6:59:7e:91:94:
d1:35:76:a4:ff:03:53:dd:f6:15:ec:bc:21:9b:cd:48:bc:dc:
23:c5:8a:fe:dd:b9:37:7e:09:0f:f7:ea:2a:91:66:5e:e9:cb:
0a:80:d3:e7:03:18:eb:5a:50:14:76:f6:41:2f:54:74:0c:52:
9d:b1:0f:6e:e9:db:b1:c1:06:31:eb:7c:df:a4:89:cf:d7:a7:
5f:ba:69:52:e1:28:45:42:a2:77:e5:aa:88:31:1e:22:d7:a9:
e0:a0:65:34:3e:f8:dc:d7:c3:90:ee:9e:8e:f6:56:96:ce:c7:
79:ca:15:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:03:47 2026 by rpki-client