Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
File: oKFURB35Yj7rWhlhONIb71gktEE.mft (raw, json)
Hash identifier: 4ap0W1qMPvjVPw3vbJYwpzMo80YmG8vth8l8O7U40K8=
Subject key identifier: 76:1F:14:AB:E7:11:17:03:89:5D:FD:71:EF:98:C5:0B:0B:05:49:F7
Authority key identifier: A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41
Certificate issuer: /CN=a0a154441df9623eeb5a196138d21bef5824b441
Certificate serial: 019D3940FB395440B8B9E948DA8DB24D855C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
Manifest number: 1897
Signing time: Sun 29 Mar 2026 11:00:53 +0000
Manifest this update: Sun 29 Mar 2026 11:00:53 +0000
Manifest next update: Mon 30 Mar 2026 11:00:53 +0000
Files and hashes: 1: 1Ci6CgQlWtwRj4abWotGCgJ_WbE.roa (hash: 21FDHL6tsfpOVwV9wPtKykM8GJxDD9usWaIS/proET0=)
2: IOO3IGbg3gm00rI1vRsCU8sKWe8.roa (hash: 0AcGRGmbErLkr9vaJN/WU2nLbROdp3GeVVZZ5PGFvPU=)
3: WlSa4s52rbN1YrdI2sTxISuXgVs.roa (hash: UFrSiCT3Ok3mVBZnw8kOQNxyLA+lThdQN1709llpw+A=)
4: oKFURB35Yj7rWhlhONIb71gktEE.crl (hash: vxV5JT2TZTG4oQRTNiRZduRHofcc85HUxM/B15UCDi4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:fb:39:54:40:b8:b9:e9:48:da:8d:b2:4d:85:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a154441df9623eeb5a196138d21bef5824b441
Validity
Not Before: Mar 29 11:00:53 2026 GMT
Not After : Mar 30 11:00:53 2026 GMT
Subject: CN=761f14abe7111703895dfd71ef98c50b0b0549f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4a:a1:26:1e:85:bd:1f:6a:1c:8b:d0:e6:b1:
e3:56:1f:97:21:fd:26:aa:de:25:3a:bc:82:9d:56:
cc:a2:a7:29:77:ab:95:a3:35:c4:87:97:9d:3a:ec:
e4:89:5a:77:39:35:60:89:b9:8c:64:68:26:59:55:
5a:52:50:72:a1:eb:6a:9c:5e:18:35:53:88:41:8e:
83:45:4d:f4:1a:a0:5f:68:06:b3:0a:eb:78:16:0a:
44:b7:22:74:a3:01:c3:84:b5:97:35:0a:52:19:e8:
13:a8:cc:be:f6:ab:b2:af:8e:ff:7f:63:48:c1:8c:
22:f5:ec:68:f0:77:d6:a4:4c:13:51:52:f4:32:19:
b0:1b:e7:5e:b4:5b:6b:57:c0:2c:d0:4e:87:31:7e:
1c:9b:d0:78:42:ff:38:d9:19:6c:0a:db:b9:51:8a:
cf:42:0c:4f:f3:50:62:e0:95:9d:e6:01:0e:35:e7:
e9:3c:ae:f3:a5:20:d0:48:0d:5a:5a:6e:c7:92:3b:
48:5d:4c:5f:e9:67:0e:bd:57:7e:8e:94:5a:eb:98:
57:81:c6:aa:d9:60:23:99:6c:06:98:48:99:76:c1:
1f:1d:58:53:28:db:17:5a:02:49:e1:84:6b:47:49:
e9:7c:b7:ce:3f:82:6d:46:ba:87:4a:b9:ff:4d:d5:
50:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:1F:14:AB:E7:11:17:03:89:5D:FD:71:EF:98:C5:0B:0B:05:49:F7
X509v3 Authority Key Identifier:
keyid:A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:3f:b0:32:86:fc:e2:35:41:5a:a4:b5:ea:5d:1d:a3:54:c1:
d7:88:10:4f:3d:14:6d:b7:6d:57:73:18:71:fb:4b:7d:05:4c:
c9:51:cf:26:88:bc:76:4e:43:8c:e0:c3:6a:bb:8c:c7:6b:87:
12:c6:f0:8e:7c:76:5a:d9:30:73:fc:de:fa:bb:c7:e3:79:cf:
a3:8f:62:d6:07:e6:aa:81:36:69:10:f3:01:a5:a0:99:ea:ab:
49:67:22:50:8d:c1:d1:e3:66:e6:70:c4:1a:2a:3e:6e:57:23:
48:c6:3f:11:cd:98:dd:9e:2a:2b:a1:57:9c:e5:e7:70:2c:14:
29:f9:10:b9:05:c9:37:54:31:3a:e7:4d:07:e5:bd:b5:70:b9:
5c:21:c9:7c:f8:0a:1e:9b:b9:8e:be:d2:7f:c9:66:97:72:d0:
6a:65:1c:18:5f:4d:5a:ed:d4:70:61:0a:b2:a2:3e:c6:8b:64:
bd:26:ef:82:b7:00:5f:e9:4c:1f:7f:e9:cc:1b:90:39:56:a6:
af:55:c6:da:98:5d:4f:24:c5:6c:aa:3f:b7:32:ae:c1:f5:bc:
f6:d5:ad:d5:d9:91:d1:cc:94:b9:2d:e2:63:44:2a:37:4b:00:
6c:ff:e6:d5:4b:5f:d3:0f:b4:7a:9d:5a:87:4d:0a:d2:35:d6:
c0:74:38:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:34:56 2026 by rpki-client