Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
File: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft (raw, json)
Hash identifier: 5CbSDuR9DrffUBlRzQOJqukiZmUYJZJKEGc+QtebLWw=
Subject key identifier: 4C:D2:43:01:F6:20:25:D6:90:43:96:54:97:B6:7C:4A:31:35:53:24
Authority key identifier: A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
Certificate issuer: /CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Certificate serial: 019D29977DAA8DBBB85F1A54DBC7F3F1A914
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
Manifest number: 1885
Signing time: Thu 26 Mar 2026 10:01:27 +0000
Manifest this update: Thu 26 Mar 2026 10:01:27 +0000
Manifest next update: Fri 27 Mar 2026 10:01:27 +0000
Files and hashes: 1: UDOQeKm21_HbogaX80qPDYGLszg.roa (hash: oQCYUWGJBiukXuu22aVYGVLYnrdXQVCn7RQqhgm8PBQ=)
2: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl (hash: YjRYO9fqVtosTx1H6aFLYn5iKZMyV/nzEyHpL0JB5e0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:7d:aa:8d:bb:b8:5f:1a:54:db:c7:f3:f1:a9:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Validity
Not Before: Mar 26 10:01:27 2026 GMT
Not After : Mar 27 10:01:27 2026 GMT
Subject: CN=4cd24301f62025d69043965497b67c4a31355324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:af:f8:ca:0c:75:d8:41:c0:11:a4:c2:2f:1a:
4b:6d:52:d2:01:06:15:72:b3:04:30:99:e2:e2:78:
bd:01:b3:ff:76:cd:9e:fd:fd:b8:ab:b4:ea:52:3f:
10:9f:82:a3:a6:39:1b:bb:8d:33:f1:2c:ba:2a:69:
bc:ca:a5:7e:80:ff:68:67:8e:d9:a7:97:98:8b:6b:
ee:52:2a:0a:d2:1c:87:22:b4:b1:0e:78:3e:3e:fc:
47:a8:53:4e:93:91:2a:30:99:6d:cd:8b:66:4e:6b:
ba:45:2c:2f:5f:e5:25:98:d4:33:4c:ea:49:82:ca:
42:1f:73:9a:d9:be:f0:23:88:ec:44:2a:6b:90:34:
6b:4c:ad:2e:62:28:ad:95:2f:67:a1:5d:06:d3:be:
6c:80:b0:c9:c6:b5:e4:7c:4e:47:9c:e8:3a:99:66:
94:32:9f:94:11:4a:40:06:57:0b:29:10:f6:ea:15:
0a:d2:8e:e9:e1:7e:f2:2b:70:3f:46:fc:dc:9d:80:
b0:3a:85:05:d0:ee:77:bd:e7:86:51:83:60:2e:da:
84:48:bd:bc:18:16:d7:73:41:97:81:cb:ab:34:db:
e8:94:dc:14:8a:4c:89:de:d5:2d:ce:ab:be:61:d4:
b4:8a:4f:42:c8:1f:69:85:05:db:c8:39:50:a1:78:
76:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:D2:43:01:F6:20:25:D6:90:43:96:54:97:B6:7C:4A:31:35:53:24
X509v3 Authority Key Identifier:
keyid:A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:d8:6b:37:d3:c2:4e:ba:45:01:cf:3b:64:37:7e:f5:8e:c7:
b7:c1:d0:21:0e:34:05:fe:0d:77:a9:1a:5b:8b:25:1a:1a:22:
ee:4a:69:4a:9a:70:44:d7:93:b3:5a:6e:8b:3b:a2:08:89:95:
97:97:eb:41:98:66:f2:48:2a:72:80:86:d4:ce:0d:e3:83:f6:
c6:54:54:3b:76:09:90:ed:49:21:85:b1:5b:4b:dd:c1:c7:d7:
a7:e0:0f:d0:89:d2:0b:24:c9:5e:e8:c4:d5:1e:99:67:ad:da:
41:d5:93:46:6b:51:f0:c2:70:6e:f1:5f:55:49:68:d5:ea:d0:
8f:80:fa:ff:61:7a:d5:f8:24:f3:00:56:58:bb:09:f4:fb:5d:
fb:50:e0:92:b8:f9:7b:42:27:19:4e:18:2d:91:49:26:22:8b:
30:6c:e4:7c:b9:2b:08:45:f3:55:a4:f7:51:1c:1f:ba:84:14:
d3:8f:a8:b3:6a:26:4c:9a:c9:15:f9:42:0d:9f:5b:ec:5a:e9:
b1:7f:90:40:43:20:14:ef:9c:f4:45:b9:c7:a8:8b:98:4b:d4:
cd:4b:8c:30:9c:93:8c:c5:3d:a2:06:74:be:9c:3c:93:73:f5:
23:cd:7f:ef:a7:1b:b2:6f:ce:1a:dc:ee:d4:62:8c:39:47:25:
0d:3d:23:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:28:02 2026 by rpki-client