Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
File: o3U2my1LsuLe3maGRTE-NE5vHMA.mft (raw, json)
Hash identifier: NjREQU3ZmVgBLR6wI2jDEKSLNvRBgB1MUXn0IWW6yYM=
Subject key identifier: BF:AB:88:15:43:7B:69:15:6F:28:61:9A:91:95:69:29:81:EE:F5:B7
Authority key identifier: A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
Certificate issuer: /CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Certificate serial: 019D2A3BA198F73F22AE2ABAECEEC9EFA78F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
Manifest number: 188C
Signing time: Thu 26 Mar 2026 13:00:44 +0000
Manifest this update: Thu 26 Mar 2026 13:00:44 +0000
Manifest next update: Fri 27 Mar 2026 13:00:44 +0000
Files and hashes: 1: cqrDqsllU4angXR7ZhiixighcHI.roa (hash: fhOWug7UyzusWzCmpcbK8cX3/PPspaEdcPiG9KdZ6F4=)
2: o3U2my1LsuLe3maGRTE-NE5vHMA.crl (hash: G8orzeoAelw6qX2T5rPzSi0s4uSrAWITmS2ooyH6Pjs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:a1:98:f7:3f:22:ae:2a:ba:ec:ee:c9:ef:a7:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Validity
Not Before: Mar 26 13:00:44 2026 GMT
Not After : Mar 27 13:00:44 2026 GMT
Subject: CN=bfab8815437b69156f28619a9195692981eef5b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:14:3f:72:f4:5a:d4:01:ca:07:c0:ba:de:64:
fd:1e:34:ef:53:c4:ba:87:bb:ee:7a:07:ed:25:61:
94:ef:cb:20:dd:95:10:62:9c:b6:5e:8f:42:d0:ac:
3b:c0:68:f8:bb:47:9c:9c:a2:14:af:fe:0b:62:8b:
cf:db:99:61:30:76:3c:4e:15:cd:99:74:9b:8f:06:
c0:1c:00:4c:ae:b1:81:15:60:a9:8e:c4:e7:0c:26:
95:ce:d1:34:f1:be:b4:52:d8:17:e9:31:3b:15:b2:
ab:5d:1a:45:56:73:16:61:07:31:a2:b6:68:21:3d:
b1:00:ec:26:3c:9a:a8:a8:2a:00:0f:ab:7f:e5:e4:
88:f5:fb:a3:5e:41:0f:53:28:72:56:23:f6:24:c6:
ec:be:42:db:7c:e8:80:43:de:10:27:48:c8:90:f3:
0a:b7:60:aa:ac:2e:66:7a:67:2e:60:62:da:da:1f:
6b:5c:67:57:79:dd:46:a9:6b:02:1e:34:2e:e3:19:
75:08:70:6f:98:84:6f:d5:6f:0c:ce:44:d5:49:46:
92:0c:10:0f:fa:8c:83:1d:95:59:d5:8f:40:98:a4:
c1:6e:ea:be:12:93:b5:31:eb:cb:d9:6f:ca:2c:71:
e8:e6:2e:c9:3a:6c:fa:05:2e:62:32:64:53:f6:9c:
f9:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AB:88:15:43:7B:69:15:6F:28:61:9A:91:95:69:29:81:EE:F5:B7
X509v3 Authority Key Identifier:
keyid:A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:82:63:82:c9:2e:f0:1d:00:0c:8e:37:4a:f9:f8:2a:56:af:
dd:55:08:df:16:2e:4c:f4:de:9d:b6:1c:8f:be:03:b5:62:4d:
c7:23:cd:77:6b:ae:b8:a1:78:d2:0e:66:a1:0f:c0:13:a9:ed:
9b:b8:f8:73:d7:33:94:54:71:44:55:69:35:25:65:d5:87:a7:
83:81:55:6f:c7:71:ba:73:71:01:d5:71:53:aa:90:34:57:2c:
3f:50:7c:e3:1a:db:54:73:83:55:5d:0b:83:05:71:23:61:7b:
e3:bd:95:b3:1b:0c:6a:69:f5:af:6b:02:be:08:9d:f5:e4:08:
56:fd:40:4b:22:71:75:ac:93:a0:69:79:c5:bd:26:b1:2c:3f:
24:87:79:bb:5d:a0:18:a6:ab:d5:f2:5a:19:ce:33:2a:f7:3e:
19:2e:98:eb:e7:2d:52:73:e3:1d:61:af:7f:5f:9a:16:38:93:
48:dc:f2:d0:38:a7:99:d7:96:bd:72:c1:96:62:eb:47:5c:63:
ae:2d:0c:dd:0c:87:f4:32:74:2b:ee:b0:ff:f7:b5:14:28:c3:
63:fa:78:f5:91:83:aa:02:32:1f:51:7d:3a:70:dd:9c:ec:e9:
0b:f7:72:e7:3b:a2:bf:8b:ef:58:a3:ea:50:7c:2d:94:e5:93:
15:21:3d:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:37:38 2026 by rpki-client