Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
File: oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft (raw, json)
Hash identifier: 23yvAVJSAm4bDbAPtz7zIMrS/GtOR8N3s9UUcb8Ax9E=
Subject key identifier: 50:B4:75:DE:D7:C6:AA:FE:44:01:2F:73:5E:F3:5D:B6:B8:BD:60:37
Authority key identifier: A1:65:52:82:BE:41:9D:21:22:2B:50:6F:B7:A3:68:C3:FE:5D:B2:3D
Certificate issuer: /CN=a1655282be419d21222b506fb7a368c3fe5db23d
Certificate serial: 019D397828AA9FBA3A95218ED3623A768A6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 12:01:09 +0000
Manifest this update: Sun 29 Mar 2026 12:01:09 +0000
Manifest next update: Mon 30 Mar 2026 12:01:09 +0000
Files and hashes: 1: OU2kt5pP9LNwwlGwfRZGFyH5hzI.roa (hash: 6flWuRYE3Zk0uPFYWYiQzcnSra7IhOrzHZC3EVLgp5s=)
2: oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl (hash: xT+ajesraHhbZHTYLHWQQ77ydhvM3z8Gn0z1MUM9T2s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:78:28:aa:9f:ba:3a:95:21:8e:d3:62:3a:76:8a:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1655282be419d21222b506fb7a368c3fe5db23d
Validity
Not Before: Mar 29 12:01:09 2026 GMT
Not After : Mar 30 12:01:09 2026 GMT
Subject: CN=50b475ded7c6aafe44012f735ef35db6b8bd6037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4f:24:c5:c5:6e:1e:fe:ef:75:c2:f9:12:13:
5e:ae:ff:e0:9c:27:78:6d:e0:2c:67:f6:c1:7a:7b:
7f:56:d8:6a:f9:a1:d6:78:39:2d:e9:8c:0c:d8:22:
c9:79:de:7a:49:3d:0c:3f:63:60:de:9e:ad:96:28:
d6:ee:8e:dd:6c:26:5c:8d:2b:3d:d6:b1:69:18:d6:
68:3d:c2:c2:5d:89:12:74:69:da:7c:36:fc:06:f0:
a2:c6:a8:f3:32:89:96:dd:78:d6:bb:b6:7f:35:b2:
1c:0c:c4:e5:80:34:a1:25:68:1d:de:a2:ff:85:7f:
0b:76:a5:b8:c7:93:2e:29:71:bd:2b:92:dc:81:0c:
85:82:76:72:54:3c:b8:d4:c9:a7:52:67:e0:68:1f:
a7:19:5d:6b:b5:4c:e2:db:9c:4d:21:f7:d4:4a:eb:
bf:2a:db:f9:b6:3c:54:d6:85:ed:b8:52:f3:2e:35:
3c:ad:3d:57:11:a8:c2:7f:d0:6d:52:1a:26:fe:e0:
ed:59:6b:c4:c4:b8:fd:11:8b:c1:69:5d:dc:39:9e:
a1:7e:a9:90:2b:3e:d3:08:03:48:aa:1a:80:fb:95:
d6:3a:a0:6f:13:f5:4d:0c:b5:bb:95:1a:0d:5e:7e:
a0:3a:4f:a5:97:e4:77:48:6d:15:32:1a:1f:60:77:
bf:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:B4:75:DE:D7:C6:AA:FE:44:01:2F:73:5E:F3:5D:B6:B8:BD:60:37
X509v3 Authority Key Identifier:
keyid:A1:65:52:82:BE:41:9D:21:22:2B:50:6F:B7:A3:68:C3:FE:5D:B2:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWVSgr5BnSEiK1Bvt6Now_5dsj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8062a9-7f47-44ea-abb7-91dbc9f0e8db/1/oWVSgr5BnSEiK1Bvt6Now_5dsj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:ad:10:71:61:72:1d:9a:3e:60:7b:99:93:90:f4:f0:a5:88:
89:f6:a5:bd:bb:f3:4c:bd:d7:98:fa:67:fd:39:30:72:7e:07:
c9:78:14:ab:ca:36:47:b6:de:bc:81:b2:ce:b3:5e:1c:f8:87:
15:91:a3:73:37:f1:88:e3:20:3a:c4:73:42:02:7e:bc:0d:df:
79:4a:fe:b2:44:a6:ab:78:a8:22:c2:66:8c:90:b2:08:23:5e:
0c:3e:97:33:91:a8:98:8d:e6:a8:9a:30:e3:05:75:a5:35:66:
0f:ed:bb:a9:78:c2:11:6a:c9:5e:09:dc:32:d5:18:af:f3:69:
e3:f5:0c:32:c6:ab:a6:4d:23:d6:a6:82:fd:a6:1e:f1:7c:cf:
89:83:bf:fc:63:c7:42:08:5c:71:07:e0:4f:dc:44:86:26:d7:
52:08:02:32:9c:f5:f4:86:3f:94:49:54:e4:5c:18:e2:cd:4a:
a7:7a:96:2c:29:d6:b0:50:19:00:54:0b:5c:01:42:2e:28:53:
1f:34:25:4a:4d:5b:88:c3:df:45:7b:1b:56:f9:b0:04:88:44:
0f:04:1a:db:97:16:57:51:5f:cb:87:bb:08:e7:0a:69:3f:9f:
78:6f:c6:9f:81:d2:c8:fb:37:a7:15:db:60:57:23:75:72:30:
44:0a:3a:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05eCiqn7o6lSGO02I6dopqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNjU1MjgyYmU0MTlkMjEyMjJiNTA2ZmI3YTM2OGMzZmU1
ZGIyM2QwHhcNMjYwMzI5MTIwMTA5WhcNMjYwMzMwMTIwMTA5WjAzMTEwLwYDVQQD
Eyg1MGI0NzVkZWQ3YzZhYWZlNDQwMTJmNzM1ZWYzNWRiNmI4YmQ2MDM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA008kxcVuHv7vdcL5EhNerv/gnCd4
beAsZ/bBent/Vthq+aHWeDkt6YwM2CLJed56ST0MP2Ng3p6tlijW7o7dbCZcjSs9
1rFpGNZoPcLCXYkSdGnafDb8BvCixqjzMomW3XjWu7Z/NbIcDMTlgDShJWgd3qL/
hX8LdqW4x5MuKXG9K5LcgQyFgnZyVDy41MmnUmfgaB+nGV1rtUzi25xNIffUSuu/
Ktv5tjxU1oXtuFLzLjU8rT1XEajCf9BtUhom/uDtWWvExLj9EYvBaV3cOZ6hfqmQ
Kz7TCANIqhqA+5XWOqBvE/VNDLW7lRoNXn6gOk+ll+R3SG0VMhofYHe/pwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFC0dd7Xxqr+RAEvc17zXba4vWA3MB8GA1UdIwQY
MBaAFKFlUoK+QZ0hIitQb7ejaMP+XbI9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1dWU2dyNUJuU0VpSzFCdnQ2Tm93XzVkc2owLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS84MDYyYTktN2Y0Ny00NGVhLWFiYjct
OTFkYmM5ZjBlOGRiLzEvb1dWU2dyNUJuU0VpSzFCdnQ2Tm93XzVkc2owLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS84MDYyYTktN2Y0Ny00NGVhLWFiYjctOTFkYmM5ZjBlOGRi
LzEvb1dWU2dyNUJuU0VpSzFCdnQ2Tm93XzVkc2owLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARq0QcWFy
HZo+YHuZk5D08KWIifalvbvzTL3XmPpn/Tkwcn4HyXgUq8o2R7bevIGyzrNeHPiH
FZGjczfxiOMgOsRzQgJ+vA3feUr+skSmq3ioIsJmjJCyCCNeDD6XM5GomI3mqJow
4wV1pTVmD+27qXjCEWrJXgncMtUYr/Np4/UMMsarpk0j1qaC/aYe8XzPiYO//GPH
QghccQfgT9xEhibXUggCMpz19IY/lElU5FwY4s1Kp3qWLCnWsFAZAFQLXAFCLihT
HzQlSk1biMPfRXsbVvmwBIhEDwQa25cWV1Ffy4e7COcKaT+feG/Gn4HSyPs3pxXb
YFcjdXIwRAo6fA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 18:46:58 2026 by rpki-client