Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.mft
File: oQ80HTq1Y7n8QJgK58F0AsIV7yo.mft (raw, json)
Hash identifier: vvKzh7NpEH0H8c8oJVq+ZQJHMzTlKny7ppqm7SuMbdg=
Subject key identifier: 74:76:D5:3B:4A:5C:96:60:4E:21:EB:4A:A9:6A:37:10:6B:B9:6F:0F
Authority key identifier: A1:0F:34:1D:3A:B5:63:B9:FC:40:98:0A:E7:C1:74:02:C2:15:EF:2A
Certificate issuer: /CN=a10f341d3ab563b9fc40980ae7c17402c215ef2a
Certificate serial: 019D3865BF4122E78A25B8AEFDD2C16CA3DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oQ80HTq1Y7n8QJgK58F0AsIV7yo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.mft
Manifest number: 188B
Signing time: Sun 29 Mar 2026 07:01:25 +0000
Manifest this update: Sun 29 Mar 2026 07:01:25 +0000
Manifest next update: Mon 30 Mar 2026 07:01:25 +0000
Files and hashes: 1: oQ80HTq1Y7n8QJgK58F0AsIV7yo.crl (hash: ws0bdffXKWh+VTR3t4+JceKgHYXrD9UJLncV7gmig+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.mft
rsync://rpki.ripe.net/repository/DEFAULT/oQ80HTq1Y7n8QJgK58F0AsIV7yo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:bf:41:22:e7:8a:25:b8:ae:fd:d2:c1:6c:a3:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a10f341d3ab563b9fc40980ae7c17402c215ef2a
Validity
Not Before: Mar 29 07:01:25 2026 GMT
Not After : Mar 30 07:01:25 2026 GMT
Subject: CN=7476d53b4a5c96604e21eb4aa96a37106bb96f0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:02:92:5c:83:dd:2b:06:1e:86:53:6d:76:ce:
63:b0:48:54:be:10:eb:2f:65:60:e8:05:27:ad:ba:
99:95:58:95:f0:ba:61:3f:aa:7d:bf:66:10:3d:ac:
a0:c0:5d:f1:d4:17:a9:9b:18:15:cb:27:21:4a:f7:
f3:c5:91:c1:8d:67:de:76:a7:e4:26:88:fe:bc:14:
9c:d5:39:39:75:2c:f8:8c:fe:0b:58:70:ea:dc:15:
25:95:da:07:29:d0:74:53:0e:46:ec:cb:b8:2f:aa:
09:b6:ec:c8:f5:c0:04:06:d3:ab:7d:c7:c7:80:08:
68:6d:8c:fc:de:da:f4:df:e0:de:d6:50:f4:bb:14:
79:38:16:8e:8d:5c:d2:c1:bf:63:48:02:fe:8c:d0:
5c:d0:c0:a8:10:80:0a:d2:ff:5e:f6:ed:38:b7:e8:
70:43:15:33:24:29:55:7d:03:64:c6:07:42:68:56:
2c:12:26:8b:ff:ec:a0:a7:e3:9e:a5:d2:12:a9:e2:
36:fa:eb:53:d6:38:40:1c:68:92:90:32:94:12:8b:
2d:17:13:dc:65:0f:2b:54:91:d7:35:b9:38:65:08:
6c:34:bf:62:09:bc:02:6d:cd:25:c7:34:17:af:eb:
57:2b:a5:a0:e2:77:02:97:2e:35:14:82:89:e2:ac:
bc:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:76:D5:3B:4A:5C:96:60:4E:21:EB:4A:A9:6A:37:10:6B:B9:6F:0F
X509v3 Authority Key Identifier:
keyid:A1:0F:34:1D:3A:B5:63:B9:FC:40:98:0A:E7:C1:74:02:C2:15:EF:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oQ80HTq1Y7n8QJgK58F0AsIV7yo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:7e:4b:fd:98:c4:6a:b2:d7:f1:b8:64:5f:0e:16:c7:a2:fb:
d0:e4:d0:1c:d6:5a:30:90:4e:28:0a:1e:ff:04:f9:18:87:f3:
f1:88:f9:ba:59:1d:ea:9a:ec:9c:e4:1c:df:4c:89:ea:9f:42:
69:e4:e0:67:55:b0:5a:97:0f:a9:a1:39:7f:c6:e3:04:ba:11:
24:50:24:6f:30:c4:ca:ab:88:dc:5e:37:da:2b:6c:fb:e8:06:
1e:72:e7:6f:0f:7e:a7:d7:ba:e2:ba:1b:26:74:0d:2a:1e:8d:
a3:9a:db:56:be:8b:00:6f:6f:60:72:33:92:4c:ac:51:2f:12:
ba:3e:a3:83:a7:32:21:73:17:97:09:ea:49:09:88:45:c2:23:
0c:68:14:9e:52:d2:66:f4:14:27:a0:c0:26:7f:a4:dc:8a:3e:
f4:cb:2c:4e:e0:c0:75:a9:87:ab:21:75:ce:5e:f9:be:3e:cd:
80:c3:16:f1:d6:24:e4:89:4e:21:a3:5f:44:9e:60:5a:11:e7:
17:5e:c9:9c:f7:b6:c8:0b:ea:ff:6b:62:42:d5:f4:e6:3b:71:
3f:cc:05:5a:1a:9c:0c:13:9a:da:d3:6e:52:29:15:a1:c2:ec:
d8:f9:f4:c7:0f:eb:a1:f2:1c:fc:6b:64:d6:5c:8e:0e:94:12:
d6:59:b4:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:50:12 2026 by rpki-client