Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
File: oED5aPpS5ssv5lcQlwD6B0wZC4U.mft (raw, json)
Hash identifier: xVIgwlRkZkagO+pqQ6ys8pKaDdtTZnZppLuWRrgl1M8=
Subject key identifier: B0:56:F3:86:10:86:B4:1B:C5:49:B2:D4:9C:43:00:BA:2C:29:EB:8F
Authority key identifier: A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
Certificate issuer: /CN=a040f968fa52e6cb2fe657109700fa074c190b85
Certificate serial: 019D2C611B3660F840EEAC525F4B9207DED4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
Manifest number: 0834
Signing time: Thu 26 Mar 2026 23:00:54 +0000
Manifest this update: Thu 26 Mar 2026 23:00:54 +0000
Manifest next update: Fri 27 Mar 2026 23:00:54 +0000
Files and hashes: 1: oED5aPpS5ssv5lcQlwD6B0wZC4U.crl (hash: C1AUOqIn2+gl4FPC3Nsx/Lmh92BQtUOpkbwE9AgaDdE=)
2: x2674gpeOOkrgbaldgBcetLScA0.roa (hash: slI9OZiOgpY/PPO59egGhNigxJguaSBoswQUZlXaUCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 20:56:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2c:61:1b:36:60:f8:40:ee:ac:52:5f:4b:92:07:de:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a040f968fa52e6cb2fe657109700fa074c190b85
Validity
Not Before: Mar 26 23:00:54 2026 GMT
Not After : Mar 27 23:00:54 2026 GMT
Subject: CN=b056f3861086b41bc549b2d49c4300ba2c29eb8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1a:83:fd:83:08:f7:c1:15:31:0b:b0:50:7a:
8c:f5:2e:ab:6d:4d:3a:42:23:65:b6:8b:88:3d:02:
c7:40:95:b9:07:5b:0e:22:df:f3:52:55:97:95:c1:
fa:ac:9d:f4:58:bc:80:5e:0e:42:f6:f7:47:c7:0e:
cb:76:80:36:2a:ae:d8:8e:0b:dc:2f:04:29:ee:be:
8f:91:30:62:58:7c:84:68:ca:91:7d:57:98:a9:47:
44:30:d8:20:6e:2d:97:7a:b5:2e:ae:35:8a:da:b6:
74:9a:62:4d:d6:12:6a:3d:01:a8:53:01:c7:11:e5:
e2:03:1f:47:12:46:ca:49:22:e8:bd:50:a3:32:fc:
d0:2a:a4:5c:f9:7d:12:fd:85:eb:a8:1d:21:75:ad:
a5:76:f0:a0:be:47:04:40:99:4c:f1:19:97:e3:31:
64:86:9d:fb:02:88:12:16:6f:de:6d:fe:21:a0:42:
51:e0:f0:c0:87:b8:82:b0:46:1d:e7:2e:6b:5b:a7:
18:8d:93:83:a5:87:48:7b:2b:57:65:98:82:19:78:
97:99:5e:ce:9d:ca:ca:fd:4c:02:b5:7e:a9:3a:05:
79:b5:db:12:8c:be:98:f5:f3:21:92:ce:c6:bb:79:
3a:db:0a:79:9f:90:c1:3b:90:93:b7:b0:09:8c:dc:
9b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:56:F3:86:10:86:B4:1B:C5:49:B2:D4:9C:43:00:BA:2C:29:EB:8F
X509v3 Authority Key Identifier:
keyid:A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:48:73:9b:7e:0a:f1:b1:4d:a8:8a:dc:a2:a2:e7:63:fc:54:
04:2d:b2:6d:b2:f3:d9:af:b0:1e:0f:85:dc:3e:01:ee:92:10:
99:05:d9:de:91:41:bc:f9:d4:10:e4:d1:10:24:17:4e:84:b2:
40:ea:15:6c:c2:d1:13:1d:f4:cc:e7:d0:45:c4:29:33:64:82:
2e:20:c5:46:9a:22:c4:0c:14:7a:ec:57:15:39:43:d9:f2:20:
53:b9:27:77:90:00:7f:4f:d1:ee:3c:6f:2d:fb:df:7d:71:2a:
5b:e9:69:de:6f:8e:fc:16:a0:3b:30:74:9a:32:71:c0:8c:fc:
81:d7:60:28:9f:04:ca:89:8e:e4:ad:2a:b2:af:d8:ec:88:53:
6e:6e:04:24:54:f9:60:28:d6:97:a1:e4:7a:3d:b5:62:fb:5f:
c4:44:69:42:93:e3:f6:6f:e9:ca:7b:53:e8:d3:96:c7:f3:5d:
1e:0b:b0:2f:c9:ea:7a:40:73:c0:90:66:34:1f:a5:18:fc:23:
d7:91:58:73:ef:5b:93:c9:35:28:3c:38:46:d5:bd:dd:a8:fa:
48:d1:b7:3b:43:36:95:0b:74:ad:6f:5c:7b:ee:ec:cb:f8:b0:
0b:21:63:d6:0b:24:4f:10:01:01:98:6c:93:d8:14:fd:f4:41:
c7:0a:cc:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 05:20:42 2026 by rpki-client