Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
File: oUx52o8IwpnEYya3m55CTkmmh1s.mft (raw, json)
Hash identifier: iIPDhsVI1hLeUH8Oe8PPB5s/QOk0eYGSB9WHcMcpGzY=
Subject key identifier: 5C:25:15:2B:C1:F9:EC:EB:81:0B:40:F0:8C:5B:B3:F8:B5:57:6C:B0
Authority key identifier: A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
Certificate issuer: /CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Certificate serial: 019D28F2DF3E9AB24DD24D983916195A56CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
Manifest number: 1817
Signing time: Thu 26 Mar 2026 07:01:38 +0000
Manifest this update: Thu 26 Mar 2026 07:01:38 +0000
Manifest next update: Fri 27 Mar 2026 07:01:38 +0000
Files and hashes: 1: oUx52o8IwpnEYya3m55CTkmmh1s.crl (hash: leqmRz4RfUXuDJe+OGzwWU9U+CoEYMgeZIZhGy3vPWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:df:3e:9a:b2:4d:d2:4d:98:39:16:19:5a:56:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Validity
Not Before: Mar 26 07:01:38 2026 GMT
Not After : Mar 27 07:01:38 2026 GMT
Subject: CN=5c25152bc1f9eceb810b40f08c5bb3f8b5576cb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5b:98:cb:fa:0f:b1:bb:12:83:d1:cb:b2:d0:
3b:aa:f5:45:f4:30:dc:f6:7b:b3:0c:29:c5:3c:d3:
fc:ae:bd:e7:73:73:a7:de:1a:fc:3f:0e:6f:71:5e:
63:73:02:cd:37:12:c9:63:84:97:f0:32:91:e9:bc:
d7:bd:74:34:99:29:ca:e1:05:fb:b1:ae:19:a6:8a:
fb:e1:44:81:df:e9:28:da:b8:2f:c9:d3:8b:72:84:
c4:88:b1:5b:6c:ec:ac:d6:fb:57:45:cc:7d:cf:04:
3d:f2:f8:d1:f8:4f:97:ea:87:df:31:08:2c:a1:16:
58:1d:ab:b0:ff:15:97:38:e6:a6:76:be:7b:fd:a1:
32:2c:5f:07:cc:84:34:91:9b:28:35:43:ec:6b:64:
ed:a1:fe:f9:e7:df:42:d8:66:e0:0f:b7:44:35:0f:
9f:b7:8e:83:06:92:28:bc:5a:fd:2f:68:67:ae:8f:
d3:f5:76:83:9e:59:0e:5f:61:b6:8b:c9:09:61:87:
c7:73:13:fa:ef:e9:e4:2b:3d:5c:72:d9:38:8c:6b:
cb:a1:35:02:02:89:76:ad:26:2d:ad:95:08:c2:76:
a8:cf:bf:ed:43:95:5e:ec:7c:eb:27:c4:86:a0:bd:
9b:ae:b4:14:bf:91:3d:b4:c9:59:79:44:4a:09:c6:
66:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:25:15:2B:C1:F9:EC:EB:81:0B:40:F0:8C:5B:B3:F8:B5:57:6C:B0
X509v3 Authority Key Identifier:
keyid:A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:df:a6:39:6d:76:7c:d5:d2:e8:b3:74:8e:b7:b9:cc:8c:06:
50:ae:b0:3c:2a:1b:ee:fc:ce:19:57:8d:10:aa:ac:b4:46:b9:
5b:7f:52:82:43:14:f8:c5:19:86:96:b4:8a:a0:d4:26:7b:2c:
76:49:24:a2:2b:24:a9:03:ff:ca:f9:51:d5:f9:e4:0c:da:38:
ec:e0:0e:7a:a6:c6:cd:f0:64:6a:86:7d:7e:76:0c:ad:8d:6a:
e4:0d:94:33:09:15:d2:d5:f2:41:cb:ca:39:cc:7d:dd:9c:4e:
0e:7a:a9:de:e1:26:9b:69:d4:f8:4c:0a:67:72:62:b9:76:db:
ec:19:7a:15:14:4e:a6:1d:fc:96:e4:fa:ac:18:d3:95:3f:c2:
c7:55:41:9a:65:d7:fe:38:fb:58:4a:06:74:f1:85:78:0c:a9:
19:a6:8a:5c:58:2b:77:0e:52:4b:45:e0:30:a2:4f:84:04:69:
82:6d:d0:83:11:71:00:30:20:fb:26:cd:8f:ad:d6:ba:05:37:
90:01:40:4f:e9:1a:7c:55:43:3d:a5:54:39:c8:52:67:9c:d9:
93:0b:89:e2:de:07:b8:f5:80:24:df:a2:ce:a7:fa:76:d6:28:
61:fe:7f:b2:f7:75:c7:c7:d1:a5:3a:11:e6:ca:32:7c:72:43:
d2:46:62:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:26:03 2026 by rpki-client