Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
File: oJ1luSb910PaW0c9NBhf4QGwWig.mft (raw, json)
Hash identifier: 6i4I15SfV/+afQrKvzi3gAI+ykGRqlMrYu+epmdb+Bc=
Subject key identifier: 6D:AA:3C:7C:7E:72:57:09:33:B9:57:50:79:13:98:06:89:A5:6A:D7
Authority key identifier: A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
Certificate issuer: /CN=a09d65b926fdd743da5b473d34185fe101b05a28
Certificate serial: 019D2B853D5A8A3C483A2ED9215AF13BEB9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
Manifest number: 188B
Signing time: Thu 26 Mar 2026 19:00:45 +0000
Manifest this update: Thu 26 Mar 2026 19:00:45 +0000
Manifest next update: Fri 27 Mar 2026 19:00:45 +0000
Files and hashes: 1: jvhBNJv-kjTUWe2w73IOrhsH8ZM.roa (hash: QuobanihGf2Vt3kAlHWHavYrnvmF3ftRBf2VjsfIBoY=)
2: oJ1luSb910PaW0c9NBhf4QGwWig.crl (hash: v/PY4C52PS2Jh+h3G+z1tz/glfpqP5SL0eChpOLCrmk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:85:3d:5a:8a:3c:48:3a:2e:d9:21:5a:f1:3b:eb:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09d65b926fdd743da5b473d34185fe101b05a28
Validity
Not Before: Mar 26 19:00:45 2026 GMT
Not After : Mar 27 19:00:45 2026 GMT
Subject: CN=6daa3c7c7e72570933b957507913980689a56ad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1a:91:ab:ed:6a:70:ba:e3:c9:a7:75:11:e8:
42:fd:84:4d:85:b8:f7:93:ab:fe:ef:b4:66:1b:4f:
23:47:0b:38:0e:9f:d4:b9:5e:71:5a:59:da:b0:af:
12:59:b2:91:61:f6:5d:2f:0d:90:d0:17:16:74:ac:
bf:8b:c9:ce:37:16:75:29:d1:60:c3:30:56:c5:f9:
39:0b:d2:8e:4e:96:03:60:8a:60:b0:c6:96:b5:3d:
39:65:9d:84:24:66:16:85:a3:0e:25:25:19:38:ce:
0e:ab:93:80:bd:80:a0:75:3c:32:5d:e1:5b:2f:d5:
66:bf:6a:db:37:d6:65:bb:57:56:08:e5:ff:72:99:
b7:b5:c5:2a:5a:75:f6:4d:73:2b:a7:ed:33:c4:f4:
af:b9:c0:e2:fc:5e:aa:bc:97:08:db:d7:3c:eb:c6:
da:03:30:da:45:e1:26:ad:7c:46:f4:06:16:e1:b0:
30:d8:d5:1c:67:6d:c8:51:45:d9:e6:7e:f0:11:13:
3a:8a:da:6a:9b:64:1c:3f:0f:85:54:e7:77:ca:6b:
7b:ed:40:c8:eb:c2:ca:95:f0:e0:83:0a:05:02:d5:
64:25:12:84:c5:0b:54:4d:c3:79:55:27:e6:e4:2e:
cb:48:39:c4:be:a2:75:5a:a9:3f:e1:04:83:a4:05:
15:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:AA:3C:7C:7E:72:57:09:33:B9:57:50:79:13:98:06:89:A5:6A:D7
X509v3 Authority Key Identifier:
keyid:A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:f9:fc:a6:20:bf:c3:9b:01:1a:98:ac:f8:a7:71:48:78:37:
7c:4b:b9:eb:d7:f1:4b:3b:9e:53:d7:61:0b:c0:42:79:d9:0e:
b5:be:60:7a:a7:8d:66:05:80:d6:61:d6:d9:9a:97:7f:9e:ec:
90:d3:d0:8b:54:9e:26:f6:9b:17:93:88:a4:6a:4c:03:42:98:
40:f5:b7:d0:b3:57:63:17:e0:9e:ca:e8:f1:32:cc:25:73:47:
81:8d:dc:7c:12:e4:aa:dd:95:0d:62:19:83:03:9c:4d:a8:42:
f3:dc:d4:0e:55:e9:ae:f3:7b:c6:77:64:7b:b9:80:19:66:67:
cc:22:da:e9:5e:03:1c:16:79:fb:01:d9:57:48:33:9b:b1:70:
ad:56:e5:bc:44:98:f3:5b:47:24:49:1e:a8:a1:55:7f:96:97:
b9:e0:3f:8d:eb:57:ca:c0:54:e1:34:33:1a:5e:0b:8a:45:9f:
4d:58:9b:3d:17:3d:1d:59:fa:3a:dc:1f:30:0d:d6:58:e6:ea:
ac:d2:86:56:41:e8:a1:c1:ac:1e:a5:76:99:88:5b:28:cc:c2:
ea:15:f1:1d:57:c6:ad:49:ca:ff:cf:64:fb:c0:58:7c:bc:e0:
50:b0:ec:92:7a:31:1b:d9:c9:5b:57:70:48:14:62:b8:ce:b6:
d7:f2:08:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 22:09:12 2026 by rpki-client