Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
File: Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft (raw, json)
Hash identifier: tJR1QzkDqtGxy6Ay/piiZrj4RemeYxk+9E1jw/gtwtU=
Subject key identifier: 91:54:6D:2C:37:5C:27:08:F0:B8:2B:7E:7A:5B:A4:D4:E5:73:C6:9C
Authority key identifier: 3A:1D:82:25:B2:71:22:79:4B:C8:2E:91:B9:67:BB:25:DB:E4:50:8E
Certificate issuer: /CN=3a1d8225b27122794bc82e91b967bb25dbe4508e
Certificate serial: 019D26CD618739C8B0F6CB0F380081476672
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
Manifest number: 1203
Signing time: Wed 25 Mar 2026 21:01:27 +0000
Manifest this update: Wed 25 Mar 2026 21:01:27 +0000
Manifest next update: Thu 26 Mar 2026 21:01:27 +0000
Files and hashes: 1: Ci7T1oVNHc8tbnfw-kXncqBB7cQ.roa (hash: Yv125oxquEywJASaTcgTVq9eUxE+9scmAg56tEvF/Ww=)
2: Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl (hash: 7S4qj+9UTJ0WP5WXp3YK9JuAxt9jYzvzy3w5jrh4n/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:61:87:39:c8:b0:f6:cb:0f:38:00:81:47:66:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1d8225b27122794bc82e91b967bb25dbe4508e
Validity
Not Before: Mar 25 21:01:27 2026 GMT
Not After : Mar 26 21:01:27 2026 GMT
Subject: CN=91546d2c375c2708f0b82b7e7a5ba4d4e573c69c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:2b:26:04:7b:b8:0c:7e:08:e2:fa:58:bd:d7:
10:f8:2d:c1:eb:f2:55:20:f0:3b:4e:ce:96:2f:df:
bf:d3:65:d0:cc:57:92:04:40:8a:32:d8:d7:70:24:
ef:da:c9:ec:9d:fb:03:2e:58:89:81:e2:d9:1e:f3:
00:4c:c2:0b:19:da:d4:3d:65:9c:dd:14:2f:7a:7b:
30:5f:bb:8d:02:97:1c:97:29:0b:89:d2:e8:9a:90:
a1:ae:43:2b:e3:bb:d8:ed:3f:9c:d0:9e:60:a1:52:
92:2a:8a:e8:64:96:27:64:87:2a:07:0e:ea:59:b9:
55:2d:2b:88:a2:86:7e:b5:9e:f5:c6:eb:26:f5:21:
23:6a:35:fb:0b:46:d5:a8:0f:60:5e:1f:78:97:01:
91:bb:2b:7d:e8:c8:60:e0:7d:a6:fb:54:38:d3:b3:
e3:76:d0:79:b4:79:be:b0:38:ea:b6:b2:d1:7f:bb:
78:9c:ff:88:c8:79:b3:a8:05:06:b8:db:f5:d1:1d:
85:04:42:0d:b2:eb:af:00:ad:b0:61:3c:19:d4:7b:
e6:3d:b1:9d:55:e7:cd:48:04:ef:2d:18:84:3b:18:
7b:66:a2:c4:11:62:05:99:de:b7:b3:56:56:77:db:
45:99:5f:c8:5a:64:87:aa:88:a3:47:d6:8a:28:15:
3e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:54:6D:2C:37:5C:27:08:F0:B8:2B:7E:7A:5B:A4:D4:E5:73:C6:9C
X509v3 Authority Key Identifier:
keyid:3A:1D:82:25:B2:71:22:79:4B:C8:2E:91:B9:67:BB:25:DB:E4:50:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:c4:24:9d:fd:60:ff:f1:63:02:4d:c7:7c:29:25:a3:3e:17:
7e:13:05:2b:ac:eb:81:90:c8:c0:0d:89:53:b0:f7:90:60:1d:
d1:84:ab:c3:4e:dd:72:a8:65:9c:cb:c2:e5:ee:08:e7:78:ee:
46:77:be:fa:99:65:d5:c2:dc:2a:ff:12:d7:7f:7f:f1:67:ee:
05:6d:73:9e:58:0a:2e:27:28:da:eb:71:d9:2d:46:77:6d:ed:
75:0f:70:73:12:02:f0:cf:f9:b3:3d:d5:8f:fb:b6:dd:84:55:
78:d2:6d:dc:80:1e:a1:94:cd:e2:19:97:bc:0e:a3:a3:a4:9c:
ec:09:ca:99:95:15:41:c6:f7:8f:46:23:fd:4b:98:34:76:f3:
55:68:69:45:de:fd:c8:79:db:09:62:70:3e:5b:3a:5b:80:aa:
1e:13:d4:6b:97:c1:4b:2c:1e:a6:3e:97:aa:ed:66:31:81:e6:
04:bb:98:00:c8:4e:ae:30:11:65:f6:80:a2:4b:90:ec:ee:98:
ec:a4:a1:cc:94:1c:4a:1f:c2:ad:a2:51:0b:4e:10:2a:23:e2:
81:27:f2:8a:4f:ab:30:8a:a5:fe:7b:19:17:3f:66:32:d0:32:
4b:ed:69:a5:88:75:46:cf:77:0c:93:f4:db:78:1c:86:13:79:
4f:3c:dc:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mzWGHOciw9ssPOACBR2ZyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhMWQ4MjI1YjI3MTIyNzk0YmM4MmU5MWI5NjdiYjI1ZGJl
NDUwOGUwHhcNMjYwMzI1MjEwMTI3WhcNMjYwMzI2MjEwMTI3WjAzMTEwLwYDVQQD
Eyg5MTU0NmQyYzM3NWMyNzA4ZjBiODJiN2U3YTViYTRkNGU1NzNjNjljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjysmBHu4DH4I4vpYvdcQ+C3B6/JV
IPA7Ts6WL9+/02XQzFeSBECKMtjXcCTv2snsnfsDLliJgeLZHvMATMILGdrUPWWc
3RQvenswX7uNApcclykLidLompChrkMr47vY7T+c0J5goVKSKoroZJYnZIcqBw7q
WblVLSuIooZ+tZ71xusm9SEjajX7C0bVqA9gXh94lwGRuyt96Mhg4H2m+1Q407Pj
dtB5tHm+sDjqtrLRf7t4nP+IyHmzqAUGuNv10R2FBEINsuuvAK2wYTwZ1HvmPbGd
VefNSATvLRiEOxh7ZqLEEWIFmd63s1ZWd9tFmV/IWmSHqoijR9aKKBU+UwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJFUbSw3XCcI8LgrfnpbpNTlc8acMB8GA1UdIwQY
MBaAFDodgiWycSJ5S8gukblnuyXb5FCOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2gyQ0piSnhJbmxMeUM2UnVXZTdKZHZrVUk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi81OWQ0ZWUtNDYxMy00NjQ5LWFkMmMt
NzQ5ZTJiY2E3M2NlLzEvT2gyQ0piSnhJbmxMeUM2UnVXZTdKZHZrVUk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi81OWQ0ZWUtNDYxMy00NjQ5LWFkMmMtNzQ5ZTJiY2E3M2Nl
LzEvT2gyQ0piSnhJbmxMeUM2UnVXZTdKZHZrVUk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGsQknf1g
//FjAk3HfCkloz4XfhMFK6zrgZDIwA2JU7D3kGAd0YSrw07dcqhlnMvC5e4I53ju
Rne++pll1cLcKv8S139/8WfuBW1znlgKLico2utx2S1Gd23tdQ9wcxIC8M/5sz3V
j/u23YRVeNJt3IAeoZTN4hmXvA6jo6Sc7AnKmZUVQcb3j0Yj/UuYNHbzVWhpRd79
yHnbCWJwPls6W4CqHhPUa5fBSywepj6Xqu1mMYHmBLuYAMhOrjARZfaAokuQ7O6Y
7KShzJQcSh/CraJRC04QKiPigSfyik+rMIql/nsZFz9mMtAyS+1ppYh1Rs93DJP0
23gchhN5Tzzc+w==
-----END CERTIFICATE-----
Generated at Thu Mar 26 06:44:02 2026 by rpki-client