Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
File: oJ1luSb910PaW0c9NBhf4QGwWig.mft (raw, json)
Hash identifier: FG8gVlRiRtyCiNB1WJe4bf9JpgiVAhEBLeVo3iduUPE=
Subject key identifier: 6F:D7:4E:B5:4F:C5:62:35:68:B7:24:B3:A9:9C:E3:BA:A4:92:3E:33
Authority key identifier: A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
Certificate issuer: /CN=a09d65b926fdd743da5b473d34185fe101b05a28
Certificate serial: 019D29977FE13C8F95FF2F588B2E0AF393A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
Manifest number: 188A
Signing time: Thu 26 Mar 2026 10:01:27 +0000
Manifest this update: Thu 26 Mar 2026 10:01:27 +0000
Manifest next update: Fri 27 Mar 2026 10:01:27 +0000
Files and hashes: 1: jvhBNJv-kjTUWe2w73IOrhsH8ZM.roa (hash: QuobanihGf2Vt3kAlHWHavYrnvmF3ftRBf2VjsfIBoY=)
2: oJ1luSb910PaW0c9NBhf4QGwWig.crl (hash: Oo0t4ZYBrcvjCxroTOUV/aiVr5C7OMF9TB9rNphCr9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:7f:e1:3c:8f:95:ff:2f:58:8b:2e:0a:f3:93:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09d65b926fdd743da5b473d34185fe101b05a28
Validity
Not Before: Mar 26 10:01:27 2026 GMT
Not After : Mar 27 10:01:27 2026 GMT
Subject: CN=6fd74eb54fc5623568b724b3a99ce3baa4923e33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:fb:07:77:de:2c:95:36:fd:43:6c:2a:04:16:
47:84:a8:00:71:79:93:2a:9e:36:51:fa:f4:60:31:
ba:96:4f:aa:39:ce:43:dc:cb:cf:d2:c5:c7:d9:b3:
0c:57:24:8c:1b:de:4b:59:9a:3f:39:71:5d:a3:af:
5b:5c:47:a6:31:c1:c0:c6:d5:22:83:ed:80:db:78:
06:8c:95:cd:86:a1:f1:a5:67:b0:8e:31:92:a4:8d:
92:ef:3e:7a:74:8a:4b:eb:f3:5a:38:99:30:f4:76:
0b:c4:c3:37:a2:9e:c8:60:cb:d4:83:55:aa:51:b2:
16:be:e4:dc:6c:c5:36:80:7b:98:65:35:27:b8:87:
82:40:8c:ce:50:22:c6:39:18:05:fb:f9:64:bb:8c:
99:ae:34:e9:6e:4b:88:7d:10:ec:e5:88:14:ef:00:
3d:20:ce:8d:a6:2e:7d:26:4a:dd:03:48:0b:2f:46:
32:13:4e:5d:2a:d8:91:aa:ae:d1:32:b6:ee:7c:42:
a5:d9:33:3c:0e:3c:d8:6f:be:ad:e8:b1:73:0e:22:
ed:5f:d1:58:d5:fb:df:e1:a3:2a:07:35:f7:07:6b:
f0:bf:b0:47:ea:22:f2:5c:66:f0:ef:ed:c2:ca:78:
ed:38:3b:d7:21:12:e5:3c:ec:4c:89:19:71:81:c7:
d1:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D7:4E:B5:4F:C5:62:35:68:B7:24:B3:A9:9C:E3:BA:A4:92:3E:33
X509v3 Authority Key Identifier:
keyid:A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:e8:e1:3d:99:68:76:50:e9:68:cb:6a:da:43:52:9f:b9:df:
90:f0:c3:60:2f:15:1f:16:96:e7:ab:8f:26:ba:10:e3:50:9f:
a4:96:ee:3d:97:a6:02:6e:f8:a3:2e:17:07:d1:90:b2:45:a9:
17:90:8d:c0:3c:d8:2b:20:8c:02:19:fc:9e:c5:81:48:b5:8f:
b6:d6:77:93:42:81:0d:a4:e8:b7:5a:53:f5:ca:0f:ad:02:d8:
f3:b0:e1:97:a2:5b:f8:e8:ba:cc:2c:6f:bc:79:1c:c5:aa:48:
a6:a5:5e:f4:84:ca:74:7f:cf:ab:6f:3f:14:cc:fe:e1:e7:f1:
10:eb:e4:c4:09:45:c8:aa:95:2c:28:15:cc:a2:83:ad:9a:25:
96:ac:7c:1a:2a:ee:34:c0:1a:32:d7:6d:57:f3:47:38:83:af:
66:7f:d8:72:e0:8b:5c:e0:6e:62:c5:52:38:8d:17:60:ba:21:
e7:a9:21:b7:87:72:32:d6:4a:36:51:e5:b9:ab:d8:53:5c:98:
58:4c:d9:e7:f1:3d:fd:4d:7d:1d:ab:58:ea:7e:d3:c3:ec:12:
37:c7:38:24:5b:01:bd:c7:26:47:76:96:30:9f:ef:da:32:57:
80:aa:2d:99:4a:21:ad:33:56:a6:d5:43:05:a5:7d:3d:59:d3:
39:c9:c5:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:54:42 2026 by rpki-client