Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft
File: Ooz8_rg-iPNror8kRduewegvDVQ.mft (raw, json)
Hash identifier: qOyBpVjVWqsuHvk/KztoXhBrFSjIDrPlB6k968Zm4cQ=
Subject key identifier: B4:EC:59:1B:29:E8:C0:E5:11:2B:BC:45:53:37:C2:A4:C3:97:FD:65
Authority key identifier: 3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54
Certificate issuer: /CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54
Certificate serial: 019D2884495E3D2A69D23DE61787F2826541
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 05:00:51 +0000
Manifest this update: Thu 26 Mar 2026 05:00:51 +0000
Manifest next update: Fri 27 Mar 2026 05:00:51 +0000
Files and hashes: 1: Ooz8_rg-iPNror8kRduewegvDVQ.crl (hash: tufhmW/rAk8x+Ri5YtvVq6XtWhfsmDOpR5jjjv2NQRk=)
2: z0CueOCsUcgJjTlUBl8xuP0ejIo.roa (hash: OHQraT5vhktcGhKnSXjBbZgLeUySm12jN55KrjwZnfE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:49:5e:3d:2a:69:d2:3d:e6:17:87:f2:82:65:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54
Validity
Not Before: Mar 26 05:00:51 2026 GMT
Not After : Mar 27 05:00:51 2026 GMT
Subject: CN=b4ec591b29e8c0e5112bbc455337c2a4c397fd65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:18:d6:78:78:d0:7e:2f:05:cc:c3:44:2e:c6:
d9:52:ba:ab:ee:fa:22:36:96:5d:86:a6:02:d4:85:
bb:f9:54:5b:00:62:51:2e:71:a7:f0:1f:78:08:57:
cc:90:7c:5d:e6:d5:09:4e:4e:6c:87:7d:b2:1d:07:
d3:66:eb:2e:b1:15:a7:8c:3f:ef:80:48:56:17:aa:
6d:05:4b:f6:8e:27:98:87:50:ee:dd:b8:4a:65:be:
14:a8:47:2c:60:31:c9:7a:b2:0f:13:20:38:a7:2c:
d8:2a:52:8e:6a:18:a0:c8:41:17:ba:f4:34:c7:ab:
a8:ed:f2:53:0c:6e:1d:bc:fe:e5:bb:22:74:e4:f7:
26:50:80:59:fa:12:c6:2e:d6:a2:04:4f:43:bd:c7:
5c:c0:ed:19:3b:fa:25:02:0c:23:c0:4b:6d:0b:19:
5f:37:69:3b:71:a1:e3:ae:0d:c8:68:5c:cf:2a:98:
4c:4a:08:c8:e0:5c:b9:be:6a:1b:f5:ce:90:2f:be:
b1:43:3a:84:ea:8d:8b:50:13:88:d4:5d:ea:25:6c:
e8:02:77:c1:86:a9:04:3f:d5:77:19:cc:5f:9c:7c:
ca:1c:cc:2b:ef:cb:7c:4c:89:e7:31:cf:ab:ae:25:
76:ab:76:40:1d:74:da:5e:23:54:f4:a2:ae:60:e7:
47:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:EC:59:1B:29:E8:C0:E5:11:2B:BC:45:53:37:C2:A4:C3:97:FD:65
X509v3 Authority Key Identifier:
keyid:3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:27:bd:d3:53:70:d8:fe:e4:b7:6d:a4:bd:d5:4e:d1:24:c9:
57:18:d9:c2:63:36:e1:49:3c:68:03:c4:73:fe:87:fd:b8:36:
27:33:6c:78:2d:6b:ae:08:f0:d3:08:53:e0:8e:51:c0:76:21:
75:94:61:ac:f9:c2:ea:be:49:f2:cb:d4:3e:6f:4c:27:4d:a8:
93:d5:8f:5a:30:06:d0:d4:24:d0:c4:a1:13:57:84:47:68:03:
ad:f2:ed:76:92:06:e3:3e:16:89:1d:02:16:15:ef:af:9d:c7:
ec:27:e3:9c:34:44:a6:45:0d:45:82:8d:5d:1e:4a:4c:f4:f1:
bc:32:f7:2c:7d:8a:91:23:22:7c:5b:7b:32:1d:14:68:e0:7b:
a2:9b:94:83:4e:bd:96:04:9d:be:74:ab:0a:1f:41:cf:00:7b:
47:92:58:f7:69:f2:df:73:cf:9a:48:4c:fa:80:5d:25:68:ea:
c1:0d:d5:c9:bb:d5:a4:02:a9:6e:c4:c6:97:81:af:fd:e2:19:
8a:90:c4:91:9f:8f:33:28:59:d5:41:c3:af:56:21:89:03:70:
23:4a:cd:01:46:81:45:d0:ab:1e:eb:d3:88:31:4b:d3:55:b5:
80:53:ca:52:21:f9:d4:cb:5d:c8:ba:26:9c:c5:47:2f:ad:66:
02:7f:0c:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:42:43 2026 by rpki-client