Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.mft
File: obceuN8XHmQvGyuQQZAB8fxEXk0.mft (raw, json)
Hash identifier: 9E9NsSBxiI/COxK0ArqSfzlbKJv6CmqIPlJMEINM+sc=
Subject key identifier: A9:05:15:E3:00:22:D2:6A:FE:DD:D1:5A:7F:0D:EB:1F:58:09:FB:80
Authority key identifier: A1:B7:1E:B8:DF:17:1E:64:2F:1B:2B:90:41:90:01:F1:FC:44:5E:4D
Certificate issuer: /CN=a1b71eb8df171e642f1b2b90419001f1fc445e4d
Certificate serial: 019D3941C1DE76B4EEA593A3897651CC0D63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obceuN8XHmQvGyuQQZAB8fxEXk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.mft
Manifest number: 1156
Signing time: Sun 29 Mar 2026 11:01:43 +0000
Manifest this update: Sun 29 Mar 2026 11:01:43 +0000
Manifest next update: Mon 30 Mar 2026 11:01:43 +0000
Files and hashes: 1: obceuN8XHmQvGyuQQZAB8fxEXk0.crl (hash: 4ngLBjAmbfn7MWyUj1GXDksEOyM4PUc/i30ycWCoW0U=)
2: xlLzehGeb23GwrEYVRV1RxUYUhY.roa (hash: c1c4Sj/u0qy2xja1j0e40LLkcNGc0g4Li0sbH5urZJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/obceuN8XHmQvGyuQQZAB8fxEXk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 11:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:c1:de:76:b4:ee:a5:93:a3:89:76:51:cc:0d:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1b71eb8df171e642f1b2b90419001f1fc445e4d
Validity
Not Before: Mar 29 11:01:43 2026 GMT
Not After : Mar 30 11:01:43 2026 GMT
Subject: CN=a90515e30022d26afeddd15a7f0deb1f5809fb80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:37:94:1e:b6:d1:5e:b9:bb:99:b2:28:56:00:
ff:39:e9:b7:45:3d:3f:97:5b:32:5c:df:d7:0f:6f:
a7:c4:76:4e:04:1c:9d:6e:cc:8e:b6:60:1f:93:12:
ee:54:ee:fd:81:13:72:d6:6e:db:d9:08:ff:86:7f:
b7:99:54:65:13:ae:01:69:27:96:09:98:72:4a:2e:
ca:ee:5b:29:73:c4:b3:67:bc:3e:4e:77:64:21:ef:
14:10:20:62:c7:17:b8:8f:fc:6c:56:4a:bc:32:e7:
05:37:58:b6:f3:23:40:a5:b1:c7:a8:7d:b3:c9:67:
02:57:0a:1f:15:f1:6b:b5:c5:9e:ff:f0:75:dd:34:
a6:09:c4:29:79:b3:ab:80:e2:f0:e1:94:fa:41:0b:
d6:7b:da:c2:c2:c8:59:f8:6b:bb:02:c2:32:d8:cd:
6f:b5:95:93:7c:05:0e:f5:91:83:99:90:26:a3:63:
0c:20:74:54:04:a5:64:2d:c1:5a:2e:0c:84:cd:21:
7f:de:e5:d5:cc:0e:76:f7:d3:7e:f5:bd:97:06:5c:
61:76:dc:71:14:83:1f:10:50:a8:42:75:4b:a7:80:
bc:41:ea:27:9b:57:d4:c7:ed:43:f4:99:70:e9:81:
cd:f7:33:fc:71:16:dc:7e:df:70:34:94:34:13:1b:
d2:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:05:15:E3:00:22:D2:6A:FE:DD:D1:5A:7F:0D:EB:1F:58:09:FB:80
X509v3 Authority Key Identifier:
keyid:A1:B7:1E:B8:DF:17:1E:64:2F:1B:2B:90:41:90:01:F1:FC:44:5E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obceuN8XHmQvGyuQQZAB8fxEXk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:0b:b1:a0:ad:3c:30:7b:38:40:1e:7b:f7:84:b0:a0:ce:99:
43:1a:53:5b:59:1c:25:11:0d:3a:1b:eb:c1:36:70:ae:b0:6a:
64:24:e6:e3:6f:62:2c:93:f9:dd:08:ca:23:fc:fe:8c:06:93:
69:48:da:7f:e2:d9:13:17:a9:88:e5:52:29:61:b1:95:9c:18:
c5:d7:94:c3:27:9b:a0:8a:40:00:2b:90:0d:53:9d:d1:07:85:
f1:e4:6f:71:39:00:7d:cd:7f:2c:99:2e:af:f9:df:75:34:97:
2e:b7:78:fc:29:28:47:5d:3f:07:21:08:e5:fb:55:92:29:af:
b6:bc:b6:4b:e6:3a:27:92:a8:95:ee:72:65:4e:95:46:eb:58:
99:52:46:e1:14:18:08:27:56:5e:24:63:65:4c:30:97:99:03:
b1:60:a2:d6:ae:4a:32:92:26:37:70:53:0d:a1:d1:aa:df:7a:
56:fb:62:0d:60:17:c0:ac:50:db:16:2a:a3:f7:07:f9:1e:a0:
ef:2f:a5:dd:9f:85:13:a2:47:a6:21:f6:4f:17:4a:e4:9e:92:
5b:b4:1b:e6:ff:61:a9:64:01:bf:86:12:22:d4:02:37:2d:d9:
fe:59:c8:77:95:8e:31:77:1c:bd:dd:2f:32:7e:a4:7c:3a:1e:
4b:48:15:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QcHedrTupZOjiXZRzA1jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExYjcxZWI4ZGYxNzFlNjQyZjFiMmI5MDQxOTAwMWYxZmM0
NDVlNGQwHhcNMjYwMzI5MTEwMTQzWhcNMjYwMzMwMTEwMTQzWjAzMTEwLwYDVQQD
EyhhOTA1MTVlMzAwMjJkMjZhZmVkZGQxNWE3ZjBkZWIxZjU4MDlmYjgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmzeUHrbRXrm7mbIoVgD/Oem3RT0/
l1syXN/XD2+nxHZOBBydbsyOtmAfkxLuVO79gRNy1m7b2Qj/hn+3mVRlE64BaSeW
CZhySi7K7lspc8SzZ7w+TndkIe8UECBixxe4j/xsVkq8MucFN1i28yNApbHHqH2z
yWcCVwofFfFrtcWe//B13TSmCcQpebOrgOLw4ZT6QQvWe9rCwshZ+Gu7AsIy2M1v
tZWTfAUO9ZGDmZAmo2MMIHRUBKVkLcFaLgyEzSF/3uXVzA5299N+9b2XBlxhdtxx
FIMfEFCoQnVLp4C8Qeonm1fUx+1D9Jlw6YHN9zP8cRbcft9wNJQ0ExvS1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKkFFeMAItJq/t3RWn8N6x9YCfuAMB8GA1UdIwQY
MBaAFKG3HrjfFx5kLxsrkEGQAfH8RF5NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2JjZXVOOFhIbVF2R3l1UVFaQUI4ZnhFWGswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9mMDg4YmQtNTAyOS00OTAzLTk2MTYt
MDY3MmVhMDQ0MGJiLzEvb2JjZXVOOFhIbVF2R3l1UVFaQUI4ZnhFWGswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9mMDg4YmQtNTAyOS00OTAzLTk2MTYtMDY3MmVhMDQ0MGJi
LzEvb2JjZXVOOFhIbVF2R3l1UVFaQUI4ZnhFWGswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEwuxoK08
MHs4QB5794SwoM6ZQxpTW1kcJRENOhvrwTZwrrBqZCTm429iLJP53QjKI/z+jAaT
aUjaf+LZExepiOVSKWGxlZwYxdeUwyeboIpAACuQDVOd0QeF8eRvcTkAfc1/LJku
r/nfdTSXLrd4/CkoR10/ByEI5ftVkimvtry2S+Y6J5Kole5yZU6VRutYmVJG4RQY
CCdWXiRjZUwwl5kDsWCi1q5KMpImN3BTDaHRqt96VvtiDWAXwKxQ2xYqo/cH+R6g
7y+l3Z+FE6JHpiH2TxdK5J6SW7Qb5v9hqWQBv4YSItQCNy3Z/lnId5WOMXccvd0v
Mn6kfDoeS0gV1g==
-----END CERTIFICATE-----
Generated at Sun Mar 29 19:50:32 2026 by rpki-client