Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
File: oKrlhQo22yiCKmwa_F_6z_AH7vI.mft (raw, json)
Hash identifier: kBwGHvwmH+MCsU8vYXTQbm1rxQt2kr2pB9eddRSMFJI=
Subject key identifier: 5F:B5:7E:C7:94:63:E1:9F:B5:69:9E:90:00:B9:C7:91:A4:7F:11:94
Authority key identifier: A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
Certificate issuer: /CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Certificate serial: 019D27A8929FF4E8032BA2B15C98655E2945
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
Manifest number: 0B7D
Signing time: Thu 26 Mar 2026 01:00:52 +0000
Manifest this update: Thu 26 Mar 2026 01:00:52 +0000
Manifest next update: Fri 27 Mar 2026 01:00:52 +0000
Files and hashes: 1: A2RZ0gbyKC5gzoQeKin0HSE-ZqQ.roa (hash: GGeYGfyoQGlOlTO2uMYQdKl/MdtFY8veEw/Zc71doVs=)
2: oKrlhQo22yiCKmwa_F_6z_AH7vI.crl (hash: ZU9ne86XenGRVmw9bGnGSyQgazx12xwWOE/EeCIUnFw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:92:9f:f4:e8:03:2b:a2:b1:5c:98:65:5e:29:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Validity
Not Before: Mar 26 01:00:52 2026 GMT
Not After : Mar 27 01:00:52 2026 GMT
Subject: CN=5fb57ec79463e19fb5699e9000b9c791a47f1194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:07:e4:a1:5c:a7:68:88:31:61:a7:4c:bc:9e:
93:2f:48:4f:7c:46:11:85:d6:f3:ce:54:32:6b:5a:
c5:a7:f1:03:c0:3e:8b:39:65:8a:5c:cb:19:2d:f8:
dd:ae:1d:60:37:d3:1f:8d:46:cd:c6:d4:57:20:c5:
5c:eb:db:b1:65:a5:ac:40:dd:bd:88:ae:25:46:53:
7a:fb:af:a1:5a:79:a9:a6:ba:0b:18:cf:af:a1:50:
f1:98:62:d3:c4:e4:eb:f7:41:da:20:1f:ff:0d:3c:
c8:7b:54:1d:26:da:eb:b5:18:bb:a4:68:8e:0f:1c:
76:ef:a6:00:1f:38:e5:e4:88:22:9e:3c:99:b6:f4:
24:38:1a:3e:f6:da:a6:95:a2:e1:70:69:9c:02:49:
e2:96:5b:be:8c:47:bd:cc:21:d8:4f:2f:98:23:fc:
ae:85:88:b7:f3:ed:d6:35:77:a4:2a:8f:92:64:eb:
ce:87:46:fa:70:b4:80:86:64:e4:b4:2d:18:f9:98:
70:e5:a1:a5:02:d1:fe:d6:65:9f:02:6e:32:85:43:
77:f7:0a:27:b1:ea:5e:b4:5f:d9:2e:07:6a:6c:25:
cd:90:0d:e9:58:41:ec:27:6d:90:1d:88:ec:98:f0:
5e:b4:63:9c:79:84:f7:59:0b:eb:83:52:d5:93:68:
d6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:B5:7E:C7:94:63:E1:9F:B5:69:9E:90:00:B9:C7:91:A4:7F:11:94
X509v3 Authority Key Identifier:
keyid:A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:66:65:ed:8c:b8:24:e4:3f:e7:bb:9a:eb:41:7e:02:05:51:
fc:38:ab:1b:cf:af:94:d1:ef:50:3d:28:f5:a3:37:2f:3e:fd:
07:a6:cb:6b:f7:23:fd:b3:94:8b:52:46:b8:8b:f6:e0:46:de:
09:3d:d7:fd:bf:65:13:90:d2:96:de:b9:f7:16:5f:da:a9:1a:
85:25:e5:14:e8:eb:11:63:c0:55:f2:8e:83:73:07:ae:60:5f:
d3:9e:4f:18:0f:20:5c:e7:f7:0b:55:af:90:f9:97:ab:6e:64:
90:c4:90:98:bf:71:42:dd:b7:bd:58:ad:fe:e1:be:18:37:75:
16:4b:b6:90:01:d8:af:6e:48:51:95:c4:86:f3:07:35:f1:e9:
11:a1:82:46:9b:87:02:f0:c0:57:b4:31:9d:10:b3:1a:e4:3c:
f4:e0:46:8f:e9:b0:ea:e5:23:4d:06:da:69:40:f8:ab:d8:ff:
d8:88:b7:fb:69:34:e0:bc:e5:4e:b2:ca:3c:7f:c5:18:e4:f1:
8d:e9:99:97:26:45:6d:89:9c:ea:ba:0e:6f:a4:48:8e:ee:bb:
9f:26:ae:89:6e:40:bc:9a:da:0f:fc:fb:06:37:9c:d6:d2:11:
1d:55:c1:6d:fa:70:8d:8d:ca:e9:ee:88:10:a1:79:85:21:0a:
46:97:42:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:19:20 2026 by rpki-client