Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
File: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft (raw, json)
Hash identifier: LKzJIOJ7Nf/Supw0zsI6oqJW1FMeHo+qb1ptJJ6Pcxo=
Subject key identifier: 19:C2:1A:E1:9D:2D:01:DA:AA:62:C2:53:04:A9:56:38:D3:A7:86:8A
Authority key identifier: A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE
Certificate issuer: /CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de
Certificate serial: 019D284D50B092F2796E4880EE83ECA76ACD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
Manifest number: 11B5
Signing time: Thu 26 Mar 2026 04:00:48 +0000
Manifest this update: Thu 26 Mar 2026 04:00:48 +0000
Manifest next update: Fri 27 Mar 2026 04:00:48 +0000
Files and hashes: 1: E_iRTXv34ZqZD3pIYO9UjKGuMZM.roa (hash: i1fiJO0e9H9m1mOdq45mO4/oIY+M6L6ueaw+taXDZdY=)
2: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl (hash: A2gY5BZFrpV91Pqy5WLlO6+RtWkpsfbbF2WYwCSZvdc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:50:b0:92:f2:79:6e:48:80:ee:83:ec:a7:6a:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de
Validity
Not Before: Mar 26 04:00:48 2026 GMT
Not After : Mar 27 04:00:48 2026 GMT
Subject: CN=19c21ae19d2d01daaa62c25304a95638d3a7868a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:32:25:be:43:18:87:18:c0:7d:28:36:33:07:
0f:38:c2:98:1a:c3:79:d3:c2:96:42:91:ce:5c:ca:
be:e9:f1:68:e3:fe:20:4a:ca:91:46:5d:2b:3e:d8:
d4:7a:ca:b1:cf:ac:29:12:62:06:3c:ed:2a:33:d5:
73:a7:a9:18:44:09:5d:56:d6:56:36:5f:85:8e:d0:
3f:92:cd:72:9e:df:d1:79:51:b7:7f:67:a4:25:fc:
84:ce:90:77:14:67:03:73:4c:46:60:98:0a:95:3d:
06:34:42:e5:75:a1:8e:a5:bb:b2:a4:f3:eb:38:50:
74:85:66:0f:1a:1f:db:28:fa:cd:70:98:3c:dc:f7:
b8:cb:bf:d4:4e:14:1f:e6:ae:6e:65:b7:d6:c2:de:
de:2a:07:94:a8:66:e2:e9:c3:79:50:ee:3e:63:d5:
0c:3e:bb:95:a1:6f:cf:a7:b7:e1:f7:1e:fe:64:88:
6e:10:c6:15:2a:7f:69:b3:b6:c5:0b:21:d1:0d:f6:
1d:d0:09:48:7a:e3:83:4a:a5:40:88:24:fb:9d:fa:
e6:ed:c6:39:5f:d3:58:3e:7f:7f:08:23:13:3e:94:
27:df:bd:5c:90:13:52:df:e2:63:d5:0a:1b:25:5b:
ce:22:55:90:4f:d0:87:64:a6:8f:9f:50:38:c6:eb:
41:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:C2:1A:E1:9D:2D:01:DA:AA:62:C2:53:04:A9:56:38:D3:A7:86:8A
X509v3 Authority Key Identifier:
keyid:A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:fb:7b:1b:d1:66:27:ee:0d:40:70:0d:3a:ce:f4:be:e1:e2:
6b:05:34:4d:7f:d0:23:a2:8e:91:d7:ac:b9:7f:50:a3:ff:bb:
6f:f0:92:e2:ba:38:62:7a:96:eb:84:1a:99:05:46:ab:7b:38:
1b:31:99:f7:16:0f:de:46:b5:b1:6e:6f:f9:7d:f7:05:6a:70:
d4:63:4c:ab:1b:28:5c:ed:7a:4a:3c:81:0d:f1:2a:5f:34:5d:
5b:d3:88:1e:fd:4c:b6:b4:7e:5d:13:eb:79:c4:27:2d:35:a3:
30:b5:29:7c:2b:3c:46:3d:43:ee:fd:33:9f:67:69:7a:88:e9:
9b:95:cc:e7:8f:3a:ff:69:9e:51:17:76:a9:b2:c9:df:97:76:
c9:23:ed:98:c0:8d:7e:80:ab:ba:c9:0a:7d:5a:04:74:e2:e1:
22:46:48:ea:eb:bd:b4:65:2c:ba:9a:ab:9d:cf:f5:c1:99:66:
ff:6a:d5:36:4d:b1:88:bf:60:e1:6c:18:ca:9c:ff:08:3f:af:
e7:e3:d6:52:32:b5:0a:03:69:0b:5c:12:27:24:b8:f9:7b:08:
7e:19:66:8b:53:9b:03:44:f2:1b:54:41:9a:c7:03:eb:30:95:
da:da:1c:6a:d8:9d:df:63:3d:47:78:76:be:f6:d2:2f:eb:fb:
6e:4f:99:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oTVCwkvJ5bkiA7oPsp2rNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwMDk5NWE4N2JmNjRkYzQ5NDliODE5ZGZlMDJmOGE1ODZh
YWE0ZGUwHhcNMjYwMzI2MDQwMDQ4WhcNMjYwMzI3MDQwMDQ4WjAzMTEwLwYDVQQD
EygxOWMyMWFlMTlkMmQwMWRhYWE2MmMyNTMwNGE5NTYzOGQzYTc4NjhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8DIlvkMYhxjAfSg2MwcPOMKYGsN5
08KWQpHOXMq+6fFo4/4gSsqRRl0rPtjUesqxz6wpEmIGPO0qM9Vzp6kYRAldVtZW
Nl+FjtA/ks1ynt/ReVG3f2ekJfyEzpB3FGcDc0xGYJgKlT0GNELldaGOpbuypPPr
OFB0hWYPGh/bKPrNcJg83Pe4y7/UThQf5q5uZbfWwt7eKgeUqGbi6cN5UO4+Y9UM
PruVoW/Pp7fh9x7+ZIhuEMYVKn9ps7bFCyHRDfYd0AlIeuODSqVAiCT7nfrm7cY5
X9NYPn9/CCMTPpQn371ckBNS3+Jj1QobJVvOIlWQT9CHZKaPn1A4xutBKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBnCGuGdLQHaqmLCUwSpVjjTp4aKMB8GA1UdIwQY
MBaAFKAJlah79k3ElJuBnf4C+KWGqqTeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0FtVnFIdjJUY1NVbTRHZF9nTDRwWWFxcE40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9mZWE1YzQtZGRlMS00NTQ4LWE1OGIt
ODkzOGU5NTU2MzQyLzEvb0FtVnFIdjJUY1NVbTRHZF9nTDRwWWFxcE40Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My9mZWE1YzQtZGRlMS00NTQ4LWE1OGItODkzOGU5NTU2MzQy
LzEvb0FtVnFIdjJUY1NVbTRHZF9nTDRwWWFxcE40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARft7G9Fm
J+4NQHANOs70vuHiawU0TX/QI6KOkdesuX9Qo/+7b/CS4ro4YnqW64QamQVGq3s4
GzGZ9xYP3ka1sW5v+X33BWpw1GNMqxsoXO16SjyBDfEqXzRdW9OIHv1MtrR+XRPr
ecQnLTWjMLUpfCs8Rj1D7v0zn2dpeojpm5XM5486/2meURd2qbLJ35d2ySPtmMCN
foCruskKfVoEdOLhIkZI6uu9tGUsupqrnc/1wZlm/2rVNk2xiL9g4WwYypz/CD+v
5+PWUjK1CgNpC1wSJyS4+XsIfhlmi1ObA0TyG1RBmscD6zCV2tocatid32M9R3h2
vvbSL+v7bk+ZkQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 08:31:25 2026 by rpki-client