Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft
File: ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft (raw, json)
Hash identifier: K+fh+vWvDroCaijxWoeLlXTbQtqK8SAg+ZEplN+PEhM=
Subject key identifier: 98:73:18:BB:68:01:23:C3:9A:D8:1A:E7:69:10:08:36:70:C6:29:9C
Authority key identifier: A2:E3:C4:EC:7B:36:11:2F:CE:52:1F:5B:EF:28:73:C7:B4:CC:88:D1
Certificate issuer: /CN=a2e3c4ec7b36112fce521f5bef2873c7b4cc88d1
Certificate serial: 019D273B2098FDB9398C022B105C1D2CBA88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft
Manifest number: 14AD
Signing time: Wed 25 Mar 2026 23:01:19 +0000
Manifest this update: Wed 25 Mar 2026 23:01:19 +0000
Manifest next update: Thu 26 Mar 2026 23:01:19 +0000
Files and hashes: 1: Ieo-AC5YDpT5XaC-tbGvdsSwkLE.roa (hash: sib5MLrWFBDEBml1a5atNNLAsn61q4TVzPsWvIidTuU=)
2: ouPE7Hs2ES_OUh9b7yhzx7TMiNE.crl (hash: NKxGqQRgpXyccbPQfKUe/9gYoYwHqQgo2iWNHsAqUMw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:20:98:fd:b9:39:8c:02:2b:10:5c:1d:2c:ba:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2e3c4ec7b36112fce521f5bef2873c7b4cc88d1
Validity
Not Before: Mar 25 23:01:19 2026 GMT
Not After : Mar 26 23:01:19 2026 GMT
Subject: CN=987318bb680123c39ad81ae76910083670c6299c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5d:b8:0d:54:e8:bc:8c:89:0e:5b:40:79:a9:
b7:96:69:8b:68:fd:0b:5f:6b:6f:11:9f:3c:2a:15:
95:02:ca:ff:0c:dd:75:f2:a5:58:93:05:cd:e5:a8:
0c:6b:af:cf:33:25:f3:84:94:31:80:7c:55:cd:ae:
61:bc:97:9b:57:c5:21:d5:20:72:e1:80:46:63:96:
63:54:43:60:f8:59:e5:ec:40:7d:2e:8c:26:77:cc:
6a:16:40:60:73:7c:1f:76:c3:19:89:0b:28:9f:22:
6e:dc:60:65:c6:39:93:b6:1d:fd:47:29:83:ef:b3:
17:30:c2:db:ff:9b:fb:c2:59:78:91:68:1a:9c:d4:
9c:6c:29:c1:e3:64:8f:f4:6f:7f:7d:32:c8:e9:b6:
f7:d5:a5:8f:86:b8:b8:e9:e5:e0:55:5d:6a:3d:a5:
9c:8c:d4:cb:0d:8b:ff:b3:8c:36:5b:89:98:6b:c9:
f5:cc:90:7e:25:18:cf:0e:f0:20:c1:0a:9e:62:92:
d9:07:f6:00:8c:0e:27:08:c1:64:f3:c0:c7:93:4b:
d1:ff:d7:85:91:d2:8f:a5:bd:ba:82:a9:15:ef:44:
31:00:fc:a5:2b:5c:cf:fc:bd:93:48:7b:e7:35:90:
49:46:11:a3:e2:ad:09:5a:6a:0c:e1:5f:e2:9f:1c:
ac:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:73:18:BB:68:01:23:C3:9A:D8:1A:E7:69:10:08:36:70:C6:29:9C
X509v3 Authority Key Identifier:
keyid:A2:E3:C4:EC:7B:36:11:2F:CE:52:1F:5B:EF:28:73:C7:B4:CC:88:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:ac:63:87:e7:43:4b:74:a0:93:3b:4b:a2:4a:83:16:91:7a:
59:72:79:38:92:6f:c6:63:2b:b1:fe:04:5f:66:e0:c8:ae:d1:
db:3b:0a:b8:07:47:cf:13:db:6d:f2:35:94:1a:8c:81:eb:97:
12:a0:ae:f1:7d:75:0b:4f:f5:43:55:af:d1:33:5f:04:87:04:
89:69:66:53:de:43:15:88:63:16:7d:a6:59:5f:8c:03:2b:76:
42:ca:86:97:6f:1d:52:9a:e4:24:b9:06:b9:93:37:70:cd:e9:
ad:e2:c0:2c:69:40:66:8c:7d:54:d8:28:ff:a2:36:9a:25:7a:
2e:66:bb:d7:fa:24:31:ec:85:d0:73:e8:37:f9:ce:d7:59:9e:
1b:23:c9:f5:d2:6d:c4:c2:ea:6f:22:b8:c0:61:a5:35:30:72:
b0:98:1a:15:04:24:cd:a5:4d:23:05:0c:de:53:d5:c0:d4:5c:
a3:01:be:d8:6a:45:46:88:c7:04:22:1e:59:61:46:f4:e4:3c:
d5:50:29:06:6f:98:ef:62:d9:b3:3b:85:38:09:bd:da:59:bc:
f5:19:97:12:15:27:44:63:b1:ab:66:e6:25:d4:13:45:7b:b5:
4b:08:a9:18:4d:7f:a9:70:0b:38:8c:37:a9:dd:82:76:b1:64:
9c:f6:b3:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:14:12 2026 by rpki-client