Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
File: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft (raw, json)
Hash identifier: PfuGjXSJwFyYRPsgS5I2b73Gw8ZnLLfVqON7a/iydk8=
Subject key identifier: 46:D9:6F:FF:83:B2:14:57:AC:C1:78:5E:87:A1:40:B9:91:F8:CA:2B
Authority key identifier: A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE
Certificate issuer: /CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de
Certificate serial: 019E1F7F3C3782C970BAC37A48B648C3E29A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
Manifest number: 1235
Signing time: Wed 13 May 2026 04:01:32 +0000
Manifest this update: Wed 13 May 2026 04:01:32 +0000
Manifest next update: Thu 14 May 2026 04:01:32 +0000
Files and hashes: 1: E_iRTXv34ZqZD3pIYO9UjKGuMZM.roa (hash: i1fiJO0e9H9m1mOdq45mO4/oIY+M6L6ueaw+taXDZdY=)
2: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl (hash: Q+Rba0AyMLeRY46Sfh5FB+6sT1m/w01kxYgRWtgk8K0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 04:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7f:3c:37:82:c9:70:ba:c3:7a:48:b6:48:c3:e2:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de
Validity
Not Before: May 13 04:01:32 2026 GMT
Not After : May 14 04:01:32 2026 GMT
Subject: CN=46d96fff83b21457acc1785e87a140b991f8ca2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d5:58:ea:ec:42:34:40:e4:d1:06:7d:26:76:
a2:b3:70:a4:86:d5:00:0e:4c:6f:7a:3e:45:8f:20:
f4:28:18:82:f4:96:5c:84:3c:e1:15:3d:ed:69:ef:
ce:8a:b2:37:7b:54:58:eb:c7:78:a1:3d:df:96:f5:
2f:51:27:04:3a:c8:ee:5b:a0:78:3b:02:4c:82:48:
bc:1e:62:96:e7:22:b5:c5:71:67:95:87:7f:55:84:
07:55:5a:5c:36:f3:ea:f8:45:dd:20:38:22:f8:dc:
7e:56:88:5d:60:73:5e:d9:0a:9e:f4:38:25:7e:18:
b1:8c:0a:52:96:fe:65:d5:54:79:71:c7:d1:ad:54:
23:d3:af:f3:44:39:f0:a2:42:ac:5d:ee:b2:37:48:
d7:74:9f:0c:da:9e:86:8c:bf:bd:4d:4a:ed:d3:e2:
b4:b0:91:68:54:da:c8:97:c2:e0:ee:14:06:48:04:
84:fd:c9:39:af:94:f4:d0:68:53:b4:96:e9:99:61:
27:d2:64:f3:73:52:33:07:28:02:81:db:8f:aa:06:
a3:6b:4c:80:fb:f6:f3:c9:2e:88:ab:09:42:41:35:
5d:4a:9a:c3:0a:d3:16:cd:38:36:81:f5:5c:ee:68:
71:c6:26:c2:f9:0e:94:da:0a:e1:e7:0d:1e:08:c0:
14:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:D9:6F:FF:83:B2:14:57:AC:C1:78:5E:87:A1:40:B9:91:F8:CA:2B
X509v3 Authority Key Identifier:
keyid:A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:77:7f:b0:31:ec:46:25:6e:6c:14:40:d5:ca:33:a8:19:d6:
04:53:84:98:54:93:87:fb:9b:96:3f:a8:68:38:5a:24:71:14:
4a:00:81:5c:22:92:36:d9:4e:7a:77:a1:e7:e3:e8:a4:aa:3d:
43:18:e7:73:c4:14:d3:4a:ca:b4:57:66:32:d9:9a:b2:c5:19:
6f:9b:23:33:79:b3:e4:42:8e:68:a4:e4:1e:56:3a:d8:9a:12:
8e:52:73:3d:5f:fe:4d:ec:1b:23:88:c8:b6:27:db:52:36:0b:
0f:95:4c:21:ff:1f:af:6f:03:aa:8a:24:67:1a:f1:d0:38:36:
4d:12:be:16:64:fc:2b:28:83:ab:b8:63:ad:aa:97:7c:54:59:
8e:86:ec:cc:22:75:5b:96:87:de:9a:8d:ea:30:b4:96:e4:34:
71:63:23:c5:ea:24:10:82:42:66:eb:08:8f:77:da:11:c4:46:
38:9d:9e:17:7d:68:96:64:ae:a4:e8:ab:a4:46:b2:0d:c0:22:
a2:76:33:72:dc:d2:64:24:74:f0:a9:d3:6b:7a:61:03:d3:fe:
be:4b:58:54:3e:62:24:73:33:1b:fe:a9:ca:ec:4f:d4:49:ba:
cf:5e:4f:40:78:6b:bf:84:b3:58:b2:69:4b:e4:f2:a5:87:14:
03:87:18:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4ffzw3gslwusN6SLZIw+KaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwMDk5NWE4N2JmNjRkYzQ5NDliODE5ZGZlMDJmOGE1ODZh
YWE0ZGUwHhcNMjYwNTEzMDQwMTMyWhcNMjYwNTE0MDQwMTMyWjAzMTEwLwYDVQQD
Eyg0NmQ5NmZmZjgzYjIxNDU3YWNjMTc4NWU4N2ExNDBiOTkxZjhjYTJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo9VY6uxCNEDk0QZ9Jnais3CkhtUA
Dkxvej5FjyD0KBiC9JZchDzhFT3tae/OirI3e1RY68d4oT3flvUvUScEOsjuW6B4
OwJMgki8HmKW5yK1xXFnlYd/VYQHVVpcNvPq+EXdIDgi+Nx+VohdYHNe2Qqe9Dgl
fhixjApSlv5l1VR5ccfRrVQj06/zRDnwokKsXe6yN0jXdJ8M2p6GjL+9TUrt0+K0
sJFoVNrIl8Lg7hQGSASE/ck5r5T00GhTtJbpmWEn0mTzc1IzBygCgduPqgaja0yA
+/bzyS6IqwlCQTVdSprDCtMWzTg2gfVc7mhxxibC+Q6U2grh5w0eCMAUfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEbZb/+DshRXrMF4XoehQLmR+MorMB8GA1UdIwQY
MBaAFKAJlah79k3ElJuBnf4C+KWGqqTeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0FtVnFIdjJUY1NVbTRHZF9nTDRwWWFxcE40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9mZWE1YzQtZGRlMS00NTQ4LWE1OGIt
ODkzOGU5NTU2MzQyLzEvb0FtVnFIdjJUY1NVbTRHZF9nTDRwWWFxcE40Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My9mZWE1YzQtZGRlMS00NTQ4LWE1OGItODkzOGU5NTU2MzQy
LzEvb0FtVnFIdjJUY1NVbTRHZF9nTDRwWWFxcE40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmXd/sDHs
RiVubBRA1cozqBnWBFOEmFSTh/ublj+oaDhaJHEUSgCBXCKSNtlOeneh5+PopKo9
Qxjnc8QU00rKtFdmMtmassUZb5sjM3mz5EKOaKTkHlY62JoSjlJzPV/+TewbI4jI
tifbUjYLD5VMIf8fr28DqookZxrx0Dg2TRK+FmT8KyiDq7hjraqXfFRZjobszCJ1
W5aH3pqN6jC0luQ0cWMjxeokEIJCZusIj3faEcRGOJ2eF31olmSupOirpEayDcAi
onYzctzSZCR08KnTa3phA9P+vktYVD5iJHMzG/6pyuxP1Em6z15PQHhrv4SzWLJp
S+TypYcUA4cY3A==
-----END CERTIFICATE-----
Generated at Wed May 13 09:51:43 2026 by rpki-client