Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
File: oE3odQHH0wgsdmWfTevZQohDtMs.mft (raw, json)
Hash identifier: PhCh/JjoNj+g0PzqtcXkcep0w70enyginmNF7g4Jsvc=
Subject key identifier: D4:71:DD:D1:F5:5D:20:25:2E:C0:33:31:27:DF:74:E3:A1:84:96:9A
Authority key identifier: A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
Certificate issuer: /CN=a04de87501c7d3082c76659f4debd9428843b4cb
Certificate serial: 019D2B4DFBD0F5F2EF6BE8DC90AF6F628BAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
Manifest number: 146B
Signing time: Thu 26 Mar 2026 18:00:24 +0000
Manifest this update: Thu 26 Mar 2026 18:00:24 +0000
Manifest next update: Fri 27 Mar 2026 18:00:24 +0000
Files and hashes: 1: GhCvmgJfuG506WuiaBMBgDUJQZU.roa (hash: I8NuJF/bk5fAsj3b12qVIfzMf7umbiG0VV3yAbXwHJo=)
2: oE3odQHH0wgsdmWfTevZQohDtMs.crl (hash: ghjNtZojp3Tr31xEl6c5bdbDuzOZPy1+Q/594O/h3zk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:4d:fb:d0:f5:f2:ef:6b:e8:dc:90:af:6f:62:8b:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a04de87501c7d3082c76659f4debd9428843b4cb
Validity
Not Before: Mar 26 18:00:24 2026 GMT
Not After : Mar 27 18:00:24 2026 GMT
Subject: CN=d471ddd1f55d20252ec0333127df74e3a184969a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:87:00:20:da:3d:e4:b5:3a:34:31:5c:bb:be:
30:50:31:dc:b1:e3:fa:68:6a:b1:28:53:0a:04:fe:
8c:13:8e:3a:75:b3:69:88:da:b1:80:ca:f1:8a:12:
ab:4e:5f:48:4a:36:a0:e7:e0:02:06:b9:33:a3:97:
f4:02:5b:cc:fb:7d:b9:22:f6:c2:e5:20:91:d3:ab:
4a:40:23:b0:9c:61:1b:b7:f9:d5:75:91:0e:35:02:
1d:2d:96:ba:8d:47:58:3f:53:98:17:58:ef:b8:ee:
13:12:ec:e6:fd:a6:7b:8e:e6:1b:9c:4b:14:ac:18:
26:5d:81:07:01:37:ee:4e:5b:98:be:02:19:b0:8a:
3c:71:3b:24:27:2d:61:e3:83:05:08:73:11:a5:f7:
12:09:a3:a4:86:eb:50:40:92:ca:ac:8b:13:b5:c7:
96:b7:b5:b8:77:12:29:e5:61:e9:6c:4c:89:b5:60:
73:0a:8c:19:e4:75:9c:38:6a:99:af:fb:08:5e:3b:
3a:8f:68:53:c9:13:08:5a:80:9a:e9:7e:e6:0f:d3:
bf:bf:1d:a3:3d:3e:27:a9:5c:ec:28:d4:15:73:6c:
31:85:28:fe:06:7e:c9:37:47:91:15:f0:20:25:29:
82:4d:c0:79:1c:d5:b8:f7:0a:c4:66:a4:41:01:a1:
a1:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:71:DD:D1:F5:5D:20:25:2E:C0:33:31:27:DF:74:E3:A1:84:96:9A
X509v3 Authority Key Identifier:
keyid:A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:94:0d:80:bd:1c:a3:e5:af:c9:2d:99:32:f6:f4:8f:39:50:
f8:9b:7e:17:c4:78:e4:ea:5f:4b:a2:6d:de:51:da:4a:07:66:
35:07:02:46:e4:95:92:a3:4a:55:74:a0:ba:25:c3:5f:ef:cf:
d2:d7:19:27:be:2a:94:c9:a1:5e:ea:80:f7:d4:15:9a:f9:f6:
19:4a:2f:c1:0c:80:ca:3f:2f:7d:14:0a:c8:2d:5a:e8:c6:be:
69:ec:55:26:b8:02:d5:ab:8b:72:7f:34:52:7d:1a:2a:7c:ce:
c8:0e:66:82:6f:64:c6:93:d2:ab:a9:52:05:1e:f4:53:6f:f1:
87:f9:39:e8:ef:dd:c4:42:91:7c:73:1f:c5:0e:d8:a3:b8:25:
d6:87:27:b2:42:e7:35:b5:a7:18:bc:03:2c:ac:da:9e:9a:83:
0a:70:45:8a:fd:f9:a5:bc:55:a8:8f:ac:16:cf:25:15:7d:ab:
ff:fb:de:dc:41:46:10:dd:24:2c:bb:b2:c8:b3:22:d8:05:0d:
96:14:76:29:c9:91:70:b0:31:d2:0c:f4:39:d1:18:8f:e2:d0:
e3:8d:39:97:ab:b6:83:d1:1d:f8:75:c8:73:68:9d:74:f8:5b:
af:1f:77:8a:88:64:36:b2:d3:b7:15:b1:be:bb:dd:01:58:03:
81:46:62:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 21:11:37 2026 by rpki-client