Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.mft
File: dOEz6h5A_BPgdOMncQpTRKlgtcA.mft (raw, json)
Hash identifier: ca5Cgwm1CSyR2dTMv9xqmaNF4rLskp6Dg4o6qnPWTqY=
Subject key identifier: 04:FF:D8:12:33:32:D5:AE:CD:62:E2:81:1B:2F:3F:80:55:73:8B:AA
Authority key identifier: 74:E1:33:EA:1E:40:FC:13:E0:74:E3:27:71:0A:53:44:A9:60:B5:C0
Certificate issuer: /CN=74e133ea1e40fc13e074e327710a5344a960b5c0
Certificate serial: 019D284E2C03B3F2D28E7B15F58CACA03BEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.mft
Manifest number: 0F37
Signing time: Thu 26 Mar 2026 04:01:44 +0000
Manifest this update: Thu 26 Mar 2026 04:01:44 +0000
Manifest next update: Fri 27 Mar 2026 04:01:44 +0000
Files and hashes: 1: DtPI8rayiCn6GbGO39gWY47x3Rw.roa (hash: 5zQ8VMa4ZokifMiUt0TgaGFAoggGyd1YDaTZPDx6mJ0=)
2: Gj3q6BUrOlXkSFTxYL-qpFmf_vk.roa (hash: whp8DDz0dPW4+zkA02OHiJY2B4aYPpsEKoqbxk/AXoU=)
3: dOEz6h5A_BPgdOMncQpTRKlgtcA.crl (hash: /J9/5Xb53KOlyWD0z5VXnHPw+lI0P4V9C8I3X65wKa0=)
4: qRvOBOttCCifdXKg-Zoy28a2Djg.roa (hash: 5kgQNG99oZ4RgWldWg89plnXeCTFfBF0bfhCfheFwpc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:2c:03:b3:f2:d2:8e:7b:15:f5:8c:ac:a0:3b:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e133ea1e40fc13e074e327710a5344a960b5c0
Validity
Not Before: Mar 26 04:01:44 2026 GMT
Not After : Mar 27 04:01:44 2026 GMT
Subject: CN=04ffd8123332d5aecd62e2811b2f3f8055738baa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b5:52:68:37:a0:cd:0d:aa:d1:08:13:be:67:
ad:e2:7f:0f:2f:0d:dc:78:f7:a7:fc:af:d1:e3:b5:
bc:79:4a:82:7e:ac:34:0c:b7:04:1d:46:ce:92:52:
1e:16:71:c1:5d:ea:7a:17:0d:61:5a:df:d7:6a:16:
36:f9:b7:72:3b:56:78:dd:f6:a5:24:ec:c7:f6:c1:
62:60:eb:e4:47:47:1c:a6:14:7d:eb:a0:b4:74:29:
13:94:76:80:cb:c5:90:95:48:c8:3e:84:eb:03:81:
f2:07:ea:88:92:b4:41:0e:e6:c4:b2:03:8e:4c:8f:
d9:1b:e6:be:0c:41:be:10:13:2b:10:35:f9:2c:2c:
15:85:60:ce:79:55:4b:74:15:73:a2:56:a9:2f:4c:
37:67:84:fc:41:70:74:27:43:3d:34:38:cc:e8:29:
58:1f:97:77:36:c9:80:36:60:12:10:b6:53:a0:5a:
c1:78:ac:c4:a4:85:7b:20:da:f9:85:c3:a9:37:67:
b3:2c:19:ee:2d:ab:74:f6:70:19:6f:f1:99:08:17:
5a:3d:ab:20:94:be:6c:fd:b2:70:8b:92:80:25:dc:
9b:ee:61:ef:6e:b2:69:78:70:de:7d:bd:9b:9f:4c:
97:64:b6:7a:c5:17:50:e8:db:c4:ad:4b:af:b0:f8:
0d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:FF:D8:12:33:32:D5:AE:CD:62:E2:81:1B:2F:3F:80:55:73:8B:AA
X509v3 Authority Key Identifier:
keyid:74:E1:33:EA:1E:40:FC:13:E0:74:E3:27:71:0A:53:44:A9:60:B5:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:fc:54:4a:a6:2d:53:07:fc:55:00:29:e5:9b:eb:dc:13:ca:
e4:61:9c:3e:51:75:16:df:96:6e:6b:78:9a:8f:7f:9b:05:f2:
95:fc:fe:d7:b5:7c:cf:b6:2e:bf:c8:73:c2:c7:34:f1:6b:04:
e2:bf:0a:1b:3a:61:4b:22:51:07:49:a1:77:3c:6b:97:cd:3c:
7e:3c:fa:f3:fb:35:bf:e7:6e:e1:f4:69:f2:ed:24:f0:ad:09:
14:92:d4:9a:2c:f0:c6:5b:b2:03:ca:3b:38:58:c4:c6:5c:33:
e4:9d:bd:c5:c0:37:55:1a:d6:ac:c2:1d:71:d8:24:b5:af:fa:
10:cf:6c:59:b1:5d:2a:e9:46:0d:df:73:50:70:f8:2c:99:93:
f6:03:c0:c7:f8:6d:e5:fe:ba:d8:8a:ec:9d:88:34:b1:68:67:
8d:e9:53:00:be:34:ad:db:97:a8:f0:6f:db:e2:79:bd:80:a6:
99:cb:f6:98:36:09:a0:54:46:7f:9b:9a:6f:ed:88:e9:7d:49:
c1:76:fb:be:d9:7f:57:d2:0b:d2:fb:f1:2f:0d:39:f7:d0:a7:
70:76:e9:1a:ee:35:a9:a4:a7:53:f7:59:d6:45:04:c0:18:7c:
7f:7c:52:f7:b9:16:a0:4f:3d:55:30:fd:78:14:e4:2e:ba:fa:
be:15:00:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:38:52 2026 by rpki-client