Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.mft
File: oILdW4b5WNW-c_2-PwzPbf8C9yE.mft (raw, json)
Hash identifier: xzmw+GWTsNU+nnubG52E1aqiw0dbrTuL7FH+ehgt1Rk=
Subject key identifier: C0:66:0D:F7:BC:83:4F:7C:E6:5D:78:73:72:E0:83:B6:DA:52:47:A3
Authority key identifier: A0:82:DD:5B:86:F9:58:D5:BE:73:FD:BE:3F:0C:CF:6D:FF:02:F7:21
Certificate issuer: /CN=a082dd5b86f958d5be73fdbe3f0ccf6dff02f721
Certificate serial: 019D29608B7E00BF96768C9F4E756FF94DE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oILdW4b5WNW-c_2-PwzPbf8C9yE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 09:01:26 +0000
Manifest this update: Thu 26 Mar 2026 09:01:26 +0000
Manifest next update: Fri 27 Mar 2026 09:01:26 +0000
Files and hashes: 1: 1k6NwrzFKRo_CN9ahw66ZqaB9T4.roa (hash: Gm5FahEhYqsf3/1qvhcpLeaE1t89Xgh/p3OZKItZTUY=)
2: oILdW4b5WNW-c_2-PwzPbf8C9yE.crl (hash: 757PWHQGLctfwgWds3hWQsaPkjga2Q3I18nzOWlW+o4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.mft
rsync://rpki.ripe.net/repository/DEFAULT/oILdW4b5WNW-c_2-PwzPbf8C9yE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:60:8b:7e:00:bf:96:76:8c:9f:4e:75:6f:f9:4d:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a082dd5b86f958d5be73fdbe3f0ccf6dff02f721
Validity
Not Before: Mar 26 09:01:26 2026 GMT
Not After : Mar 27 09:01:26 2026 GMT
Subject: CN=c0660df7bc834f7ce65d787372e083b6da5247a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0e:e8:a4:c5:78:02:02:a2:9f:9d:56:16:f9:
98:e9:10:1c:62:ed:df:21:40:64:67:27:85:f4:8b:
16:78:a4:2c:7b:9b:58:24:3b:cc:dc:ed:bc:45:01:
60:5a:c3:17:8b:bf:e6:a3:a5:56:91:f3:9a:07:54:
ac:0b:96:4a:1a:be:07:92:ca:0a:e8:9c:e7:e9:60:
a4:ff:b5:a6:8e:f6:85:1f:1e:fa:23:c3:20:7a:0a:
8f:bf:e8:5d:44:3c:7a:a4:60:a2:65:84:99:6e:39:
ae:0c:55:2c:51:c4:a6:75:c4:ac:5b:25:51:fa:79:
be:d0:d2:71:ae:1d:6a:a5:8e:a7:bf:77:44:19:6e:
65:43:e9:44:b2:11:33:42:0b:b9:bb:03:98:47:d9:
6b:c7:fa:6b:8f:74:ea:19:62:7d:6f:3c:69:5f:8d:
bf:aa:18:0d:10:06:e0:47:11:c3:4d:b0:2b:4a:89:
6b:94:a0:4d:6b:eb:e1:d2:5c:72:e4:97:89:c5:d7:
38:23:99:3b:28:4d:4e:e4:f2:13:08:de:96:02:24:
5c:3c:94:1f:51:49:ca:11:d3:2b:4b:38:d5:c1:51:
f5:9a:0e:ec:ef:4c:77:4e:69:d7:1d:d1:79:8c:98:
c9:bf:ae:80:ee:24:48:0d:90:58:d6:1c:5b:94:f4:
ec:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:66:0D:F7:BC:83:4F:7C:E6:5D:78:73:72:E0:83:B6:DA:52:47:A3
X509v3 Authority Key Identifier:
keyid:A0:82:DD:5B:86:F9:58:D5:BE:73:FD:BE:3F:0C:CF:6D:FF:02:F7:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oILdW4b5WNW-c_2-PwzPbf8C9yE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:76:12:73:bd:e5:19:84:a5:c9:72:1f:25:29:76:67:83:cc:
06:7a:b3:92:94:2d:4e:de:29:2c:09:c3:83:8a:f2:6b:db:0f:
54:c8:92:e9:85:5c:0c:30:61:fe:4a:61:fd:95:73:a1:47:7f:
8b:02:79:0b:6b:fe:59:80:3c:7c:19:3a:c8:27:8c:8b:6a:74:
4b:58:a9:d9:0a:45:35:ec:27:ad:4f:1a:16:f9:9d:54:8b:46:
2b:ff:76:1b:41:d3:67:27:15:e1:3a:80:fa:89:79:6c:f1:71:
23:e7:d0:0a:cc:25:a0:f1:3d:b1:f3:0b:25:fb:86:5b:97:7c:
55:1f:e8:e2:25:71:80:24:e6:70:11:b4:b4:0d:3d:14:f3:b9:
ed:ab:5d:81:eb:02:10:f3:38:23:6e:64:04:91:ef:2e:d7:b6:
01:b7:f2:c7:9b:d1:96:43:bc:ef:83:6b:2f:b9:d0:e8:71:02:
06:f9:6b:bd:b5:dd:76:7c:4f:45:1f:b9:0d:00:99:16:ec:d6:
1e:93:d3:25:e3:d2:57:1f:3b:8e:c5:dd:46:4f:ba:55:ce:1f:
04:17:9b:66:87:13:41:34:29:ec:74:0e:93:eb:d9:51:ed:8a:
f6:2b:7a:bf:71:a1:ed:2e:73:e3:59:be:2e:e0:80:2d:14:e6:
e4:3c:7c:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:46:33 2026 by rpki-client