Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
File: oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft (raw, json)
Hash identifier: qrFanUOP+lgFnzoNmtE2Rt/KGpqEu6YCLjD2xbLf/ME=
Subject key identifier: BB:D1:68:3B:F0:27:0C:20:7D:92:8C:79:BF:B5:38:5B:21:5F:B1:3C
Authority key identifier: A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
Certificate issuer: /CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Certificate serial: 019E1EDA54A9D0CAD0BF63E6A74DD1D946F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
Manifest number: 0A79
Signing time: Wed 13 May 2026 01:01:25 +0000
Manifest this update: Wed 13 May 2026 01:01:25 +0000
Manifest next update: Thu 14 May 2026 01:01:25 +0000
Files and hashes: 1: AtniHnWS_m5XJnsdI3EUIOstzH4.roa (hash: KMRx9/qM9+4wF0F9XLzExOU323HbvcZo4zC4bgJQesg=)
2: oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl (hash: BP3L5d0LUlxEdpptVVLd9SkQAJ0yAQSinNE3vrSgos0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:da:54:a9:d0:ca:d0:bf:63:e6:a7:4d:d1:d9:46:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Validity
Not Before: May 13 01:01:25 2026 GMT
Not After : May 14 01:01:25 2026 GMT
Subject: CN=bbd1683bf0270c207d928c79bfb5385b215fb13c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d4:84:67:ab:c7:14:4d:e8:bf:3e:38:9c:da:
7a:0b:b1:22:5a:44:4b:25:2e:52:f3:3c:1b:c4:f9:
22:64:61:63:28:6b:03:cc:f0:55:3c:e4:2a:79:0e:
6f:42:89:64:6b:99:58:33:1b:da:04:c2:0b:12:42:
e9:f7:96:63:c7:3e:71:dc:c1:0f:f7:02:b5:49:63:
cd:d1:7b:2b:b2:e7:c6:f3:87:32:7e:0c:88:f3:a4:
f5:08:8a:06:7c:ab:a9:2b:ea:70:0a:e1:67:fe:9d:
a1:de:da:de:29:bb:7f:33:18:89:9b:36:e0:76:52:
3a:a3:10:39:58:08:83:9a:7c:31:86:62:db:a3:df:
6b:c2:87:b8:c9:6e:55:c3:9b:a3:f4:5f:37:1f:04:
4b:0f:e1:a2:6d:2a:b0:41:de:47:ef:c4:82:0e:a5:
99:66:44:c1:90:af:9d:7b:b8:db:cf:93:2a:fc:60:
17:c4:6a:9f:71:6e:c0:39:db:6e:50:d9:b0:71:d8:
8f:1f:02:56:26:e0:2a:54:b0:07:56:7d:dc:5c:08:
bf:be:87:14:fb:1a:ea:58:fd:e2:bd:06:fa:95:9a:
bf:9f:84:e9:9b:21:22:9d:97:d0:14:d4:03:69:d3:
2b:15:d7:27:dd:a2:48:0d:67:8d:09:93:30:57:36:
19:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D1:68:3B:F0:27:0C:20:7D:92:8C:79:BF:B5:38:5B:21:5F:B1:3C
X509v3 Authority Key Identifier:
keyid:A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:7b:74:f0:22:47:d6:d3:ea:d6:96:bd:48:d8:df:09:68:46:
bf:1b:0e:c9:20:c3:77:9a:f0:8a:fa:f9:62:a5:aa:2d:21:27:
14:c9:54:b9:04:c1:1f:ae:04:df:ec:92:61:42:b3:21:d6:4b:
35:85:5a:67:f4:7c:ab:8d:52:09:9f:81:7e:69:21:ee:c9:7c:
f0:c2:a3:5c:38:46:fa:45:76:be:8a:d6:28:e4:41:44:cf:54:
70:84:57:a2:f5:59:5b:65:0e:aa:47:34:33:05:ee:82:ea:85:
26:6a:88:b7:a4:fb:1e:ec:e3:2b:dc:49:ea:1e:31:7f:5e:cc:
d4:38:f2:1c:d7:62:9c:63:46:63:f9:00:c3:1b:22:ca:e5:a0:
c4:ab:f0:7e:2c:bd:4f:d4:7d:e0:89:fb:df:0b:1e:ad:94:93:
92:43:5f:5b:14:91:12:a7:29:fb:51:3b:87:81:ca:78:e9:cd:
88:f1:c2:48:d3:19:ab:d8:f5:8a:1c:c1:10:65:91:46:32:86:
d9:d5:b0:22:fb:17:d8:04:38:6d:84:46:d4:5a:83:38:01:9f:
47:7e:dc:fb:4c:94:c6:08:5d:bd:73:20:d3:ba:e3:e8:62:48:
e3:69:5b:1e:31:2e:9d:9d:ab:b7:45:a5:ab:e8:a0:67:50:6e:
53:e9:fb:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4e2lSp0MrQv2Pmp03R2Ub5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZTMxMjhmZDA5ZGMxOGU2NmVlNDIxMmE3ZTY0ZjNlNGU3
NGE4MTQwHhcNMjYwNTEzMDEwMTI1WhcNMjYwNTE0MDEwMTI1WjAzMTEwLwYDVQQD
EyhiYmQxNjgzYmYwMjcwYzIwN2Q5MjhjNzliZmI1Mzg1YjIxNWZiMTNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2dSEZ6vHFE3ovz44nNp6C7EiWkRL
JS5S8zwbxPkiZGFjKGsDzPBVPOQqeQ5vQolka5lYMxvaBMILEkLp95Zjxz5x3MEP
9wK1SWPN0XsrsufG84cyfgyI86T1CIoGfKupK+pwCuFn/p2h3treKbt/MxiJmzbg
dlI6oxA5WAiDmnwxhmLbo99rwoe4yW5Vw5uj9F83HwRLD+GibSqwQd5H78SCDqWZ
ZkTBkK+de7jbz5Mq/GAXxGqfcW7AOdtuUNmwcdiPHwJWJuAqVLAHVn3cXAi/vocU
+xrqWP3ivQb6lZq/n4TpmyEinZfQFNQDadMrFdcn3aJIDWeNCZMwVzYZ0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLvRaDvwJwwgfZKMeb+1OFshX7E8MB8GA1UdIwQY
MBaAFKDjEo/QncGOZu5CEqfmTz5OdKgUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb09NU2o5Q2R3WTVtN2tJU3AtWlBQazUwcUJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8wYjRlNzMtYTE1NC00MDU5LWI2MjIt
OGZkNWNhYmE1NGU5LzEvb09NU2o5Q2R3WTVtN2tJU3AtWlBQazUwcUJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi8wYjRlNzMtYTE1NC00MDU5LWI2MjItOGZkNWNhYmE1NGU5
LzEvb09NU2o5Q2R3WTVtN2tJU3AtWlBQazUwcUJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOnt08CJH
1tPq1pa9SNjfCWhGvxsOySDDd5rwivr5YqWqLSEnFMlUuQTBH64E3+ySYUKzIdZL
NYVaZ/R8q41SCZ+Bfmkh7sl88MKjXDhG+kV2vorWKORBRM9UcIRXovVZW2UOqkc0
MwXuguqFJmqIt6T7HuzjK9xJ6h4xf17M1DjyHNdinGNGY/kAwxsiyuWgxKvwfiy9
T9R94In73wserZSTkkNfWxSREqcp+1E7h4HKeOnNiPHCSNMZq9j1ihzBEGWRRjKG
2dWwIvsX2AQ4bYRG1FqDOAGfR37c+0yUxghdvXMg07rj6GJI42lbHjEunZ2rt0Wl
q+igZ1BuU+n7wg==
-----END CERTIFICATE-----
Generated at Wed May 13 03:53:41 2026 by rpki-client