Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
File: oaLRWp2N_ezej-awwYBNCp7i5ig.mft (raw, json)
Hash identifier: G/gtQP3kc/W0L/aq2b8r6rVRZ9Gsz0d70DRRHtawNpg=
Subject key identifier: F1:00:FA:C8:C6:55:AA:A3:3B:5D:5A:ED:85:50:08:08:F4:96:57:13
Authority key identifier: A1:A2:D1:5A:9D:8D:FD:EC:DE:8F:E6:B0:C1:80:4D:0A:9E:E2:E6:28
Certificate issuer: /CN=a1a2d15a9d8dfdecde8fe6b0c1804d0a9ee2e628
Certificate serial: 019D26CD0DBC945BFC17540F61263224A21E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
Manifest number: 1321
Signing time: Wed 25 Mar 2026 21:01:05 +0000
Manifest this update: Wed 25 Mar 2026 21:01:05 +0000
Manifest next update: Thu 26 Mar 2026 21:01:05 +0000
Files and hashes: 1: GuQAjBCkP5OO4SvyIu8w9D6eC38.roa (hash: BhuS+EcAxQfxRsVLjCrzmOxsWrwhIEcqz2zMQpJPfMk=)
2: oaLRWp2N_ezej-awwYBNCp7i5ig.crl (hash: 38q9k9tC7dBP2UvRiKL5kfvTw8FLc4KDAtZ9QintuNE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:0d:bc:94:5b:fc:17:54:0f:61:26:32:24:a2:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1a2d15a9d8dfdecde8fe6b0c1804d0a9ee2e628
Validity
Not Before: Mar 25 21:01:05 2026 GMT
Not After : Mar 26 21:01:05 2026 GMT
Subject: CN=f100fac8c655aaa33b5d5aed85500808f4965713
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:05:5d:fa:84:d3:75:51:fa:fc:3d:01:9c:12:
59:a0:06:5d:03:fd:57:af:6b:b3:f6:1b:df:54:dc:
4f:2d:32:76:4d:76:8d:1c:b4:0a:fa:ae:34:c5:32:
67:e3:62:26:bb:32:b7:eb:df:e6:eb:b5:2d:14:69:
36:94:de:f4:9a:92:ea:2b:e7:7e:7f:1c:8a:31:7b:
40:71:79:f0:b7:69:22:10:cc:9b:0e:e8:22:a2:6a:
65:6c:8d:97:02:dd:e8:a6:1a:a2:c8:40:b5:8b:b2:
38:bd:f0:8a:da:af:48:b6:8a:5f:b5:de:50:cf:bc:
4e:b9:06:3f:06:11:32:0c:00:04:37:4c:c8:d9:51:
4a:97:02:9b:90:94:19:15:f3:38:2a:86:4f:fe:c8:
5b:6d:e3:db:f8:f2:77:39:72:4f:ba:97:9c:c2:e7:
0b:ae:37:5b:69:1e:18:e3:ce:7a:06:f5:13:ad:1e:
aa:a0:70:f8:a4:31:ab:2b:d1:ed:19:59:8e:3e:3d:
2f:24:65:9c:d4:48:7b:21:c3:a8:ee:99:86:1c:20:
2c:3a:e0:b2:d7:47:6f:78:36:a4:13:fb:ed:a7:bd:
85:64:47:aa:02:f6:1c:0e:86:63:94:44:3f:e3:4f:
e0:20:9c:bb:78:c5:cd:2d:b2:a6:8a:f6:ee:f6:11:
0c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:00:FA:C8:C6:55:AA:A3:3B:5D:5A:ED:85:50:08:08:F4:96:57:13
X509v3 Authority Key Identifier:
keyid:A1:A2:D1:5A:9D:8D:FD:EC:DE:8F:E6:B0:C1:80:4D:0A:9E:E2:E6:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:43:85:f1:78:c8:57:e5:c8:03:59:e5:2e:2a:a4:0a:e0:44:
7c:62:41:b3:5c:73:c3:ba:b4:0f:45:d9:49:86:a9:47:74:fd:
a2:74:87:1d:62:b0:80:34:0a:30:12:f1:39:03:50:b7:18:d2:
63:c6:4c:31:f8:1b:64:ee:08:a9:cd:78:ba:6e:79:11:5e:f1:
07:21:18:01:4c:da:03:c1:f0:82:d9:fb:4e:6c:16:f0:1c:59:
05:b2:ff:5b:fd:b1:0e:2e:3d:76:ac:da:c8:2c:84:7f:b4:e0:
6d:d6:98:94:66:e2:61:19:c3:4c:17:49:1c:4b:67:43:46:b7:
7b:a9:84:71:f8:fc:81:25:ea:e4:4f:7e:b1:55:58:72:71:6f:
08:42:fc:0a:79:8e:60:f4:7d:42:4b:60:0a:58:1f:95:75:6c:
a4:9c:7b:cb:fb:06:12:f4:e3:bf:b2:69:4f:c1:ec:ed:e9:f0:
52:09:c3:2e:69:50:d9:a9:5b:c5:2b:14:b5:e9:0b:06:6f:50:
7b:60:ea:b1:a3:b4:b5:5a:e1:d0:36:59:02:34:a1:98:d4:12:
35:a9:b5:d6:45:56:ba:31:78:bc:7a:91:60:a1:2f:30:32:97:
51:c3:ae:a8:3f:59:f8:b3:1e:9f:1b:6e:50:41:e6:c0:8c:80:
ce:6a:d6:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:31:22 2026 by rpki-client