Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.mft
File: osiREA5QD7XGTzDxYD_lRdq0kBY.mft (raw, json)
Hash identifier: e+cWhGFUR5jIcRBb8PZ7McTPaA/VdpyOlJmK6zZvvuk=
Subject key identifier: 16:1B:D3:3B:CB:11:27:A6:A4:62:6F:98:23:A6:06:7F:8B:05:98:6E
Authority key identifier: A2:C8:91:10:0E:50:0F:B5:C6:4F:30:F1:60:3F:E5:45:DA:B4:90:16
Certificate issuer: /CN=a2c891100e500fb5c64f30f1603fe545dab49016
Certificate serial: 019D28BB7A599F1124272BD06D2B3CB83851
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/osiREA5QD7XGTzDxYD_lRdq0kBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.mft
Manifest number: 0C79
Signing time: Thu 26 Mar 2026 06:01:08 +0000
Manifest this update: Thu 26 Mar 2026 06:01:08 +0000
Manifest next update: Fri 27 Mar 2026 06:01:08 +0000
Files and hashes: 1: LrvP2Z0cjFRqmLYiApVT3jJ98UU.roa (hash: 5YQBrYuaiVtBkE+i+x1V3fP75u5I8cFtQ+HuRNndJN4=)
2: osiREA5QD7XGTzDxYD_lRdq0kBY.crl (hash: GqGqU94IKJk4waZ0AjK06BNq+A7RAg9DU/WhDWLbhXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/osiREA5QD7XGTzDxYD_lRdq0kBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:7a:59:9f:11:24:27:2b:d0:6d:2b:3c:b8:38:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2c891100e500fb5c64f30f1603fe545dab49016
Validity
Not Before: Mar 26 06:01:08 2026 GMT
Not After : Mar 27 06:01:08 2026 GMT
Subject: CN=161bd33bcb1127a6a4626f9823a6067f8b05986e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9f:5f:40:f3:0f:40:69:ea:c3:11:5f:ba:bb:
c8:ce:a0:c0:25:a6:86:58:3f:e9:b3:b6:5f:a3:2c:
64:b9:29:1f:18:5f:f9:35:65:6d:b6:3d:bc:b5:a8:
f8:e9:d6:89:cd:82:50:e1:3a:87:b3:c0:e4:b7:9e:
a7:e7:82:2a:49:63:5b:26:08:10:59:cc:c5:66:75:
00:c5:d7:80:4b:a1:64:f6:c8:f0:d4:22:7b:84:2b:
2e:bb:8d:c5:34:45:ee:55:9e:77:98:be:1b:be:2c:
41:0b:56:3e:90:d2:ab:88:40:6e:74:59:fd:c9:fc:
63:e6:74:fa:8b:76:bd:9d:07:3a:f4:d6:ee:2f:68:
91:e6:76:0c:0b:3f:aa:d8:33:12:4b:ba:09:65:19:
5e:e3:07:5e:14:ad:94:a0:f9:43:6d:07:e3:2a:09:
08:75:bc:53:40:05:80:7e:1a:1c:f2:22:b0:7b:c4:
c0:ac:4a:f1:eb:d1:d9:71:b8:59:d6:27:88:71:4b:
93:4d:23:bb:81:67:bf:42:b2:98:e5:4e:d1:e1:b2:
fb:f8:4e:e4:a8:37:55:fe:4e:ee:ab:b6:02:dc:c4:
4a:88:6d:04:e2:db:4e:67:c5:07:04:2b:d5:6c:85:
48:9f:83:ad:4c:69:13:b2:98:ef:58:4a:d7:7e:7c:
99:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:1B:D3:3B:CB:11:27:A6:A4:62:6F:98:23:A6:06:7F:8B:05:98:6E
X509v3 Authority Key Identifier:
keyid:A2:C8:91:10:0E:50:0F:B5:C6:4F:30:F1:60:3F:E5:45:DA:B4:90:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/osiREA5QD7XGTzDxYD_lRdq0kBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:3c:88:3c:99:76:38:36:13:2f:f8:96:5a:2a:da:ff:ac:3b:
bd:cd:1b:4e:3d:a4:f2:65:44:18:f5:1b:5c:bf:e6:94:b5:af:
07:f3:1f:2c:56:0c:b7:60:9b:50:30:57:b5:53:c6:43:49:bd:
0b:99:85:53:87:c1:8c:13:3e:c4:1c:1d:8e:cd:8b:0e:08:ac:
df:68:b2:78:29:2b:c8:1d:a7:fa:ae:3f:65:49:42:67:e2:8c:
05:ac:86:30:ff:28:de:4f:68:0d:d5:a3:b8:32:21:ba:d7:18:
81:91:7b:c9:75:e0:4a:cb:7f:d9:42:cd:a2:ec:58:49:d2:7c:
d6:ab:c3:cf:50:19:b5:2f:2f:7e:41:34:1e:a6:de:9f:fe:2c:
81:d9:f1:8e:38:99:89:05:86:69:29:41:74:6c:c9:91:bf:08:
95:77:3d:c3:8c:d5:02:95:db:f4:7b:5c:b4:23:ef:d6:56:6f:
7d:40:88:87:2f:b8:a8:3b:c3:02:73:a8:df:eb:d4:67:3b:e0:
77:f8:01:de:3c:f6:f8:48:89:2b:73:36:bc:b2:35:cb:40:28:
db:bb:3e:47:bd:7b:54:be:76:9f:33:7c:37:0b:f8:2f:75:89:
e3:84:04:80:d8:94:88:ca:9a:8f:b0:cf:2d:aa:c6:c0:80:2e:
0f:17:bb:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:13:12 2026 by rpki-client