Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft
File: oN9_W2YYvaI8g77RG0QgQfH7RW0.mft (raw, json)
Hash identifier: 9xP1r3nJtDZ3OxrVo/MOtryyPw8LJS4B9C6m2+8vsPs=
Subject key identifier: 54:34:3D:AB:FC:58:54:AB:3A:F5:88:85:3A:B9:92:27:CD:2F:4E:B4
Authority key identifier: A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
Certificate issuer: /CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Certificate serial: 019D085437D8BA8040DB7735B3F8B69CFE07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft
Manifest number: 1138
Signing time: Thu 19 Mar 2026 23:00:30 +0000
Manifest this update: Thu 19 Mar 2026 23:00:30 +0000
Manifest next update: Fri 20 Mar 2026 23:00:30 +0000
Files and hashes: 1: We9JlhRC7AnuKdXNeDiRVJR3cSQ.roa (hash: aCm3hVdiPu8wrcYehfXy6dGkmo0BNiZb3dnL5cg7bd0=)
2: dNqWn8LLbtUjse_iEIk0LyE_w9U.roa (hash: pyT41frLnr8b4Y4mOhVh340WexYxDekl72v7q/1e+g4=)
3: oN9_W2YYvaI8g77RG0QgQfH7RW0.crl (hash: Vz/WgErP3M+Wz3vLzYCguR1tr6ijCNDnEAuB1R/1Kso=)
4: ovUvt1pWliISM3HaoCAcadW0xKw.roa (hash: H639MxSrvwDoO2fDDqrmu0kQ4erJQr6FKFxoVbpwHPU=)
5: pzkAsevaRgjEYyiE9vP5vLFmiuQ.roa (hash: nO/grxvmKZkvhDphy8GQW/Icm/R4FkLHljLabsv3llQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Mar 2026 23:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:08:54:37:d8:ba:80:40:db:77:35:b3:f8:b6:9c:fe:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Validity
Not Before: Mar 19 23:00:30 2026 GMT
Not After : Mar 20 23:00:30 2026 GMT
Subject: CN=54343dabfc5854ab3af588853ab99227cd2f4eb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c0:34:3e:d0:43:fa:fd:a0:60:75:bd:f3:61:
9c:35:38:bf:b5:d3:19:da:a6:96:db:ef:ed:a2:16:
c1:7f:08:61:63:16:f8:ed:d7:ba:46:a4:22:ef:88:
fb:fc:eb:a1:a8:71:32:a3:85:4a:01:94:ea:22:a4:
be:58:79:fe:b8:43:40:8f:8b:39:6e:f5:b3:9c:42:
d4:e4:cd:01:30:6d:30:8a:cd:20:d5:3e:64:39:29:
cd:f5:97:f6:31:5c:ee:d9:33:bf:3b:02:04:9d:98:
0c:30:89:17:2f:ca:9e:0d:3c:48:09:d3:66:8b:6a:
03:70:6a:70:0a:c5:c3:d9:80:bf:f0:d0:a1:12:49:
67:0a:e1:3e:38:d6:ec:1f:ca:ca:58:86:9a:50:8a:
b6:60:e5:e5:50:dc:d1:c2:51:b2:34:f5:5c:87:76:
0b:c1:82:ec:0e:76:48:87:bb:c5:44:bc:de:49:15:
2a:ef:bc:cb:eb:a3:48:2c:bf:fe:ff:b8:d6:aa:4d:
e3:c3:fd:9a:7a:9e:8d:89:42:68:1f:3a:77:be:60:
eb:29:96:e8:a0:53:e4:56:06:44:95:ae:24:a9:76:
7a:ed:d0:7a:62:ee:96:7f:56:cf:02:f3:c1:40:72:
bc:96:72:e6:c1:1c:58:6d:c5:c5:b2:64:eb:00:c0:
f6:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:34:3D:AB:FC:58:54:AB:3A:F5:88:85:3A:B9:92:27:CD:2F:4E:B4
X509v3 Authority Key Identifier:
keyid:A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:74:c9:b5:36:0c:ec:9d:10:34:c0:b0:22:4f:cb:89:cf:eb:
c7:ad:99:03:f5:da:87:cd:0a:77:a5:5e:7a:2f:56:07:83:d1:
7c:c7:e7:28:9b:f7:56:70:55:db:69:4b:e7:d7:c2:ce:0e:3c:
76:f8:6b:bb:be:7d:c5:63:45:a8:a9:6b:b9:aa:e8:d6:85:07:
39:b5:78:93:93:ee:58:5b:64:03:89:62:36:26:d1:0d:ab:f7:
32:22:1e:11:d6:8d:40:e4:f9:d2:f1:96:ba:b7:20:61:b6:61:
75:0e:d6:92:58:78:29:46:11:94:55:f8:77:c8:3b:c4:ff:e0:
53:c5:ad:25:db:ae:2a:ee:8f:71:6d:72:9f:ed:16:6a:41:b6:
75:9d:06:43:4f:76:74:b8:2f:67:1d:99:6e:5a:27:9e:2f:62:
01:8c:8e:ae:af:3d:7e:bc:97:08:18:3b:53:aa:59:2f:10:6f:
3c:2d:cf:97:0c:c8:93:0b:e8:33:c9:28:06:b9:34:ad:06:95:
68:88:1b:f4:da:a2:3e:f9:f5:35:9c:32:4c:20:1c:40:b1:41:
1c:39:d7:56:c5:c5:64:95:0f:23:24:cf:93:09:5b:5f:ac:63:
bf:f9:e9:40:41:61:bd:01:a9:f3:e4:0f:f6:98:8d:b0:a4:95:
db:6d:87:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 20 10:32:24 2026 by rpki-client