Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
File: oE3odQHH0wgsdmWfTevZQohDtMs.mft (raw, json)
Hash identifier: vNecnvwfaI0k4J1a8uZdKg2PS+FkOZUYRDnL4yK4rls=
Subject key identifier: CE:DB:82:A5:D0:75:1F:0A:2E:E4:46:60:08:8E:6C:40:98:F9:5A:72
Authority key identifier: A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
Certificate issuer: /CN=a04de87501c7d3082c76659f4debd9428843b4cb
Certificate serial: 019E20913606764571A9527752CC842214A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
Manifest number: 14EA
Signing time: Wed 13 May 2026 09:00:47 +0000
Manifest this update: Wed 13 May 2026 09:00:47 +0000
Manifest next update: Thu 14 May 2026 09:00:47 +0000
Files and hashes: 1: GhCvmgJfuG506WuiaBMBgDUJQZU.roa (hash: I8NuJF/bk5fAsj3b12qVIfzMf7umbiG0VV3yAbXwHJo=)
2: oE3odQHH0wgsdmWfTevZQohDtMs.crl (hash: 9t8hdXc/XO+POFw8Cm7qT21uMGhCApS+RTl71UsJGwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 09:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:36:06:76:45:71:a9:52:77:52:cc:84:22:14:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a04de87501c7d3082c76659f4debd9428843b4cb
Validity
Not Before: May 13 09:00:47 2026 GMT
Not After : May 14 09:00:47 2026 GMT
Subject: CN=cedb82a5d0751f0a2ee44660088e6c4098f95a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3d:84:26:06:7f:af:e1:92:b0:95:0f:37:3b:
b2:6a:4a:e1:85:d0:1e:c9:89:f1:58:68:e7:3f:b4:
1b:d2:fd:7d:46:c0:75:2b:02:ca:b6:f3:33:6c:b9:
1c:6e:0d:cb:35:58:a2:33:60:e0:01:81:64:d3:f1:
b8:32:b1:b1:9e:d5:5b:e3:f5:9d:b5:e6:3c:73:b8:
21:46:3b:93:16:d7:13:b2:5f:59:2c:e8:e0:02:f7:
be:6c:8f:ed:dc:7c:c1:c8:66:fe:33:8b:60:de:9d:
20:ab:5f:ce:df:e4:2b:3b:4f:6f:f9:a4:39:88:ee:
3f:5f:f9:4b:e9:42:23:08:d0:d4:d4:2f:40:1c:b6:
1b:ce:61:a0:e2:48:9f:23:a0:69:1d:b7:2b:62:1b:
3f:23:bd:94:5a:83:4e:53:33:13:54:2f:42:f2:a4:
80:30:30:b6:74:ff:5e:63:c1:be:fa:17:85:1c:03:
cb:95:94:c3:e7:ca:20:42:5f:aa:61:c5:ff:29:d5:
03:e3:e3:4c:9f:20:61:79:6a:f7:ac:47:b8:5a:a7:
1d:dd:71:fd:bd:c7:a9:60:bf:e2:e9:2b:ca:dd:ba:
54:4a:4b:d4:ca:95:c3:47:d8:d6:c6:5e:0f:06:3e:
9c:69:f4:7f:32:fe:c8:35:a6:f8:8f:c5:34:f3:12:
dd:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:DB:82:A5:D0:75:1F:0A:2E:E4:46:60:08:8E:6C:40:98:F9:5A:72
X509v3 Authority Key Identifier:
keyid:A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:3d:a6:e2:be:f9:49:76:08:22:cf:fc:9d:76:50:96:0d:74:
70:16:35:90:9a:0d:46:64:58:61:7e:5a:82:cc:1e:e6:ae:b6:
53:a1:b1:c3:55:8e:b5:0e:c6:5f:10:26:45:93:49:2e:29:91:
11:26:9a:a9:70:97:99:22:b7:8c:70:22:43:f4:00:b6:9d:7f:
06:30:5b:7f:78:2e:54:a5:9a:5a:48:4c:50:c5:1c:e7:dd:b6:
a1:2e:f8:1f:a2:9a:19:b2:b0:38:1b:8a:8f:fd:72:76:f3:1b:
eb:ba:b5:ef:6e:10:06:94:d7:94:cd:7e:f1:45:4b:de:cf:61:
a0:5f:e5:51:8d:83:a2:96:cd:9e:65:28:84:9d:a1:22:3b:aa:
4f:dd:c3:8d:a9:51:b9:36:83:cb:5a:67:ad:98:7c:22:3b:c1:
76:8e:3d:50:bd:ef:23:1e:bd:34:4a:37:e3:0d:0c:b3:fe:66:
ea:77:68:3c:86:c4:d8:84:ea:84:70:4d:8f:43:df:93:95:f5:
99:82:8e:11:a0:7a:38:92:f5:d5:17:e0:47:4e:e7:10:07:48:
ba:9c:c5:c8:65:d2:e2:ff:81:44:72:d8:42:0f:27:51:8e:b3:
3d:20:09:15:dc:e9:d3:75:08:84:f3:b5:8b:cf:ec:97:7e:26:
8e:51:ec:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 19:10:08 2026 by rpki-client