Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
File: oLwgSfIYtv2rytdZTCUjso2kd8E.mft (raw, json)
Hash identifier: eA9QZI0NQXi3Se8aOMxBImUP9OyJWaSjlwNbbL0LyGQ=
Subject key identifier: F1:52:18:51:C7:6B:EF:25:FD:5A:18:DD:6C:A4:43:50:2E:A8:5C:E9
Authority key identifier: A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
Certificate issuer: /CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Certificate serial: 019D29CE7C658FD67DAEB13598EC77D81E44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
Manifest number: 181C
Signing time: Thu 26 Mar 2026 11:01:31 +0000
Manifest this update: Thu 26 Mar 2026 11:01:31 +0000
Manifest next update: Fri 27 Mar 2026 11:01:31 +0000
Files and hashes: 1: oLwgSfIYtv2rytdZTCUjso2kd8E.crl (hash: 66449WMKE3VCuIOJtnnujc1r36/rwg2mefvfcqBsvK8=)
2: p7q0kuT4l_QfTZ5_ImIne2o94fw.roa (hash: +S1UVYMeaTeGs9fWcZKSGrpvJ3bbJy0eiN+e0mJvcII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:7c:65:8f:d6:7d:ae:b1:35:98:ec:77:d8:1e:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Validity
Not Before: Mar 26 11:01:31 2026 GMT
Not After : Mar 27 11:01:31 2026 GMT
Subject: CN=f1521851c76bef25fd5a18dd6ca443502ea85ce9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:12:30:5c:7c:fe:5d:0d:d0:f4:6c:75:9e:31:
f5:ca:52:7d:26:25:6b:8c:cb:8a:06:d7:c0:fc:4f:
68:72:27:0c:0d:1a:02:e2:ae:8e:f5:b8:47:d2:22:
b7:8e:e2:e2:92:06:64:59:ec:04:2f:0a:df:e7:3b:
f7:07:24:57:32:b5:22:af:b7:04:32:d5:5e:34:00:
8c:36:66:4f:75:17:c6:bb:8b:f6:78:30:8d:a7:2b:
94:67:88:74:5f:d9:88:54:e1:62:92:f9:46:53:6a:
ca:4d:39:cb:cb:6d:df:49:bb:ed:c6:8d:83:0b:e7:
b8:55:db:84:5b:6f:12:77:38:90:7b:0c:f2:40:95:
cf:9b:55:8d:d7:9d:c7:fc:26:7d:a2:0d:60:f6:ca:
7e:7e:25:a3:1d:e5:58:7d:1e:cb:89:d2:76:00:2b:
6b:ae:d5:38:95:ae:91:60:54:4c:51:4d:1e:13:57:
4f:b9:da:54:41:ea:88:4f:d9:e7:8b:8e:18:1d:14:
4d:2d:89:83:8b:e3:07:e2:e0:64:e4:12:f7:e4:3e:
69:73:ce:81:a5:8a:52:80:92:a0:ba:f2:37:fa:dd:
9b:8f:3f:30:b6:6f:6f:b2:51:04:7c:ad:6c:90:87:
fa:f3:a0:cf:cd:da:26:3c:ae:a0:0e:2d:d8:c3:88:
fa:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:52:18:51:C7:6B:EF:25:FD:5A:18:DD:6C:A4:43:50:2E:A8:5C:E9
X509v3 Authority Key Identifier:
keyid:A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:77:bd:3d:28:55:22:de:5a:e7:10:c7:4e:a1:47:47:2d:15:
0d:0c:c5:b9:6b:da:7d:9a:01:d6:24:52:60:fc:55:06:e0:ad:
1b:d8:93:69:3d:f1:f9:be:be:84:7a:47:6b:fd:bd:33:e1:d6:
02:7a:61:37:35:14:8a:84:24:62:b2:f2:ee:f2:6a:71:0f:49:
05:03:5b:89:a7:f8:e0:34:a4:78:db:b9:94:9a:de:3f:4b:50:
14:a7:67:67:0d:e4:25:24:6e:9c:3c:8c:87:c0:dd:c0:eb:4b:
10:ad:6a:56:57:c0:6d:c4:f3:7e:11:f6:7b:09:0c:b6:43:16:
f2:5b:9c:a4:89:12:d2:35:48:5e:47:2d:7a:67:91:de:25:d1:
dd:c0:d6:ca:01:6a:95:c3:b4:5e:c9:26:39:0a:44:82:7d:fd:
59:1a:86:d3:3c:0e:7d:be:7a:0f:0e:d7:e7:7f:39:1b:7b:ae:
ca:4a:7f:7f:54:d5:71:f5:62:a6:4d:e3:b2:32:7e:b5:07:13:
8b:24:fe:21:06:fc:e9:e2:f0:ff:53:dd:f8:d6:5e:c0:c6:5c:
54:90:ec:a8:59:0f:0a:1b:23:7e:b1:23:0c:c4:02:5c:a6:ec:
1d:b0:2a:6c:5c:7e:7b:89:22:4d:7f:eb:65:59:ff:06:60:c0:
0d:f7:dd:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pznxlj9Z9rrE1mOx32B5EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwYmMyMDQ5ZjIxOGI2ZmRhYmNhZDc1OTRjMjUyM2IyOGRh
NDc3YzEwHhcNMjYwMzI2MTEwMTMxWhcNMjYwMzI3MTEwMTMxWjAzMTEwLwYDVQQD
EyhmMTUyMTg1MWM3NmJlZjI1ZmQ1YTE4ZGQ2Y2E0NDM1MDJlYTg1Y2U5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5xIwXHz+XQ3Q9Gx1njH1ylJ9JiVr
jMuKBtfA/E9ocicMDRoC4q6O9bhH0iK3juLikgZkWewELwrf5zv3ByRXMrUir7cE
MtVeNACMNmZPdRfGu4v2eDCNpyuUZ4h0X9mIVOFikvlGU2rKTTnLy23fSbvtxo2D
C+e4VduEW28SdziQewzyQJXPm1WN153H/CZ9og1g9sp+fiWjHeVYfR7LidJ2ACtr
rtU4la6RYFRMUU0eE1dPudpUQeqIT9nni44YHRRNLYmDi+MH4uBk5BL35D5pc86B
pYpSgJKguvI3+t2bjz8wtm9vslEEfK1skIf686DPzdomPK6gDi3Yw4j6twIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPFSGFHHa+8l/VoY3WykQ1AuqFzpMB8GA1UdIwQY
MBaAFKC8IEnyGLb9q8rXWUwlI7KNpHfBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0x3Z1NmSVl0djJyeXRkWlRDVWpzbzJrZDhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8xNWI0MDMtMjIxOS00Nzg2LWFiMDIt
MTk5MTJhMGU0OTE4LzEvb0x3Z1NmSVl0djJyeXRkWlRDVWpzbzJrZDhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi8xNWI0MDMtMjIxOS00Nzg2LWFiMDItMTk5MTJhMGU0OTE4
LzEvb0x3Z1NmSVl0djJyeXRkWlRDVWpzbzJrZDhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf3e9PShV
It5a5xDHTqFHRy0VDQzFuWvafZoB1iRSYPxVBuCtG9iTaT3x+b6+hHpHa/29M+HW
AnphNzUUioQkYrLy7vJqcQ9JBQNbiaf44DSkeNu5lJreP0tQFKdnZw3kJSRunDyM
h8DdwOtLEK1qVlfAbcTzfhH2ewkMtkMW8lucpIkS0jVIXkctemeR3iXR3cDWygFq
lcO0XskmOQpEgn39WRqG0zwOfb56Dw7X5385G3uuykp/f1TVcfVipk3jsjJ+tQcT
iyT+IQb86eLw/1Pd+NZewMZcVJDsqFkPChsjfrEjDMQCXKbsHbAqbFx+e4kiTX/r
ZVn/BmDADffdfw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 18:28:28 2026 by rpki-client