Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
File: oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft (raw, json)
Hash identifier: apmGepSjnCTSwD5K4VNypNP963YBqlwnw/5BRycUic4=
Subject key identifier: AF:23:A6:F7:E1:40:BF:85:13:2A:9C:33:E1:09:55:E7:A3:2E:FE:84
Authority key identifier: A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
Certificate issuer: /CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Certificate serial: 019D2996EE4933652328D5BAFA983B64F1F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
Manifest number: 09FA
Signing time: Thu 26 Mar 2026 10:00:50 +0000
Manifest this update: Thu 26 Mar 2026 10:00:50 +0000
Manifest next update: Fri 27 Mar 2026 10:00:50 +0000
Files and hashes: 1: AtniHnWS_m5XJnsdI3EUIOstzH4.roa (hash: KMRx9/qM9+4wF0F9XLzExOU323HbvcZo4zC4bgJQesg=)
2: oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl (hash: 7mjF0afUjrwpM2Ipwz8/CkJK87WzyvD+25tcgOVZVPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:96:ee:49:33:65:23:28:d5:ba:fa:98:3b:64:f1:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Validity
Not Before: Mar 26 10:00:50 2026 GMT
Not After : Mar 27 10:00:50 2026 GMT
Subject: CN=af23a6f7e140bf85132a9c33e10955e7a32efe84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f1:48:da:c1:5a:c4:9a:50:07:79:48:c5:10:
62:09:b5:17:dc:c8:91:6c:43:7e:3b:43:79:9d:30:
1f:91:e0:14:50:61:ef:18:bd:66:79:c7:b9:29:96:
01:cf:87:45:be:c6:29:ab:09:16:3f:da:f0:a5:30:
0c:66:8a:a7:61:f2:ed:3c:a3:6c:1e:bc:9d:82:ca:
78:9d:ce:87:97:56:fc:f1:62:2a:49:67:66:7d:1f:
2e:d0:c9:56:73:df:e0:d2:56:8a:a0:aa:7b:b7:b1:
c0:ba:31:ec:d5:f0:7c:4e:fb:2b:a6:30:c5:96:d2:
76:65:97:b4:4d:64:51:64:67:72:72:45:7b:00:3e:
7e:55:78:a8:0a:02:80:d7:9f:f3:12:23:77:f9:53:
15:c4:95:63:82:64:96:15:25:cf:75:87:2c:83:48:
ae:e1:4b:6b:10:57:6c:13:99:c2:c2:19:f4:c0:83:
58:dc:57:e2:3a:98:45:6e:75:17:01:a6:57:15:87:
f3:6f:28:30:cd:c2:a0:1a:98:7b:d4:88:40:d7:41:
b5:03:e6:84:8f:c9:f8:b9:6d:86:fd:c1:9f:0a:6d:
ee:e9:94:c7:03:0f:8c:28:5a:61:14:f5:0d:88:80:
1f:4f:43:90:02:8f:cd:3a:e3:2e:06:37:aa:a0:be:
3c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:23:A6:F7:E1:40:BF:85:13:2A:9C:33:E1:09:55:E7:A3:2E:FE:84
X509v3 Authority Key Identifier:
keyid:A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:a7:8e:16:08:22:3e:f1:d1:2f:e0:af:2d:fd:93:0a:7c:d2:
3e:cf:4e:0e:75:84:9a:a9:74:32:77:44:1d:70:1a:96:f9:36:
cf:ba:f1:b3:b9:f7:11:51:d4:c0:8f:a5:21:35:ff:92:69:71:
46:a0:f9:81:79:be:ea:c7:a2:d2:eb:32:c4:61:ce:db:ce:ed:
ef:9a:7c:6e:28:3f:02:ea:28:ea:cf:a0:82:ed:ce:51:da:84:
53:a1:06:c1:34:2c:c2:24:c7:4f:32:e9:b0:c1:6f:fd:45:bf:
fc:31:82:a8:f9:6a:44:42:1f:2c:3d:a5:bb:e6:ae:97:eb:9a:
43:36:74:ef:2a:19:f1:61:49:24:f3:f5:eb:6b:1d:0a:c9:b1:
4d:e6:16:e4:b5:9d:7a:1e:e3:98:36:b8:8e:47:5c:30:9b:3d:
29:fb:7b:30:5c:42:09:48:2c:a0:aa:10:48:14:22:f8:5c:64:
2d:7c:a8:4d:97:53:d0:1c:2c:fd:13:be:a8:d6:61:f4:1e:3d:
1a:c1:12:71:47:06:95:c8:01:2f:4c:6f:33:05:f7:4f:cc:fc:
36:f0:b8:a2:e5:73:0e:5a:f5:5b:ad:94:b7:b7:ef:61:66:df:
c2:22:8e:7a:a9:27:12:be:eb:67:f4:27:fe:91:e6:44:4b:8b:
7a:d3:ac:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:27:22 2026 by rpki-client