Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
File: obtQVKF8yU__wrwpWhW_74qQQwo.mft (raw, json)
Hash identifier: 3YwIn4CB9F7MLIU4M4e65K5uGJHa9eoZkwf6FfqKKpE=
Subject key identifier: 14:44:0D:BB:F5:14:EE:C8:5F:74:59:86:9B:4A:B3:B9:19:44:AC:38
Authority key identifier: A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A
Certificate issuer: /CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
Certificate serial: 019D382DE8B70863CC32389D8DB09FF6DEFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
Manifest number: 08A4
Signing time: Sun 29 Mar 2026 06:00:25 +0000
Manifest this update: Sun 29 Mar 2026 06:00:25 +0000
Manifest next update: Mon 30 Mar 2026 06:00:25 +0000
Files and hashes: 1: TERthLcTXSHdWMsqlfOOJwKh2_0.asa (hash: hMMFvY1d+bWPtpG5FeE2i0f2zSyXMOEIbRla1EHp4YU=)
2: obtQVKF8yU__wrwpWhW_74qQQwo.crl (hash: CzoHzonq7I+lv2dR0p3f5kNQuYuUwr7EEfmdndPUmCc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2d:e8:b7:08:63:cc:32:38:9d:8d:b0:9f:f6:de:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
Validity
Not Before: Mar 29 06:00:25 2026 GMT
Not After : Mar 30 06:00:25 2026 GMT
Subject: CN=14440dbbf514eec85f7459869b4ab3b91944ac38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:7b:e3:da:f8:48:3c:54:a4:91:dc:ef:66:c8:
37:9b:4c:0f:59:f3:3d:46:e5:55:8f:de:46:95:4b:
6a:c1:b4:7e:24:8a:d1:b8:9f:6d:c8:00:a0:36:62:
e5:a0:a8:d8:d8:cf:b3:4b:65:ce:6f:b2:04:1f:bf:
7f:4b:a3:84:4d:65:08:b2:72:4b:cc:63:06:65:98:
75:3a:f4:36:80:26:11:2b:bf:98:eb:c0:b6:8a:3a:
49:fb:a4:19:d1:54:0c:85:58:9d:0f:e8:ac:dd:c3:
7e:74:e9:b5:61:e7:fc:af:72:91:e9:35:a3:3a:34:
24:23:0e:47:75:b9:c2:fa:10:76:e9:ab:df:9c:8e:
82:69:cb:28:ab:c4:fd:b9:aa:0b:51:9a:71:6e:8e:
3d:74:dd:fe:3a:71:54:69:36:8b:41:c3:b3:28:ab:
8f:7d:88:6f:51:ba:05:f6:45:7e:85:0f:ea:47:4a:
94:0c:d2:ab:f1:2b:7a:b3:53:58:cc:15:8a:63:66:
04:38:16:ec:a2:74:90:f7:91:2b:38:30:81:d4:ff:
6e:59:9e:08:67:00:39:e0:9c:77:b8:f7:24:86:a6:
b4:70:b5:37:b2:99:38:48:4b:fd:13:31:ee:c4:83:
95:fc:ab:8f:ae:2c:9d:60:f6:0f:af:8d:44:bd:54:
17:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:44:0D:BB:F5:14:EE:C8:5F:74:59:86:9B:4A:B3:B9:19:44:AC:38
X509v3 Authority Key Identifier:
keyid:A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:26:f9:03:ae:bb:63:c9:55:88:85:0d:46:70:c0:0b:23:a6:
7c:0c:11:05:03:32:a9:44:d3:ca:5f:da:25:47:9f:49:13:d5:
0b:63:ea:44:3f:b9:fd:e0:26:76:c7:f1:7c:ce:67:8e:31:f8:
d3:84:f3:0a:12:a7:36:3c:db:30:e4:ce:22:92:3f:44:13:d4:
34:b1:84:18:34:bd:81:b1:67:1d:57:cd:9a:3b:43:66:a3:7b:
31:5b:d2:a0:90:f9:54:8c:4c:97:61:7c:14:a2:c4:ce:90:eb:
10:ac:65:7f:a0:0c:2d:02:cb:d7:2c:7a:a4:de:41:46:d0:92:
38:f8:37:64:aa:8f:b6:b4:21:78:c9:b9:01:aa:6e:c3:23:0e:
e5:8f:29:16:91:13:c3:98:10:5f:88:a3:88:a1:82:d7:87:02:
fd:ab:12:fa:f5:eb:cf:02:6c:06:b2:fe:bd:f2:17:fa:5f:cd:
25:8c:a0:36:21:74:0d:0d:36:69:e9:98:30:4c:cf:ce:a3:a9:
69:a7:1e:9f:84:ff:8a:5d:36:3b:1a:30:6b:82:63:e9:e2:7c:
7b:82:46:0f:f3:e4:62:28:94:bc:0c:ac:7c:c4:64:ca:ce:ac:
da:c8:d9:37:e4:0b:6e:84:8d:85:bf:73:bb:e9:7f:9a:a7:56:
44:d6:74:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:27:34 2026 by rpki-client