Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft
File: oMWM0HH3gLesNAwBROsE-1DMu_E.mft (raw, json)
Hash identifier: k0DRCiLb+DIdTkPGm+03Qi0GFu6G5p9XmzeDmll/n9Y=
Subject key identifier: AD:D7:B8:2E:D6:AA:8D:46:AD:80:02:F8:DB:80:11:FF:95:43:87:8D
Authority key identifier: A0:C5:8C:D0:71:F7:80:B7:AC:34:0C:01:44:EB:04:FB:50:CC:BB:F1
Certificate issuer: /CN=a0c58cd071f780b7ac340c0144eb04fb50ccbbf1
Certificate serial: 019D292974B859788DDD4434873A8EBC8EF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMWM0HH3gLesNAwBROsE-1DMu_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft
Manifest number: 1878
Signing time: Thu 26 Mar 2026 08:01:15 +0000
Manifest this update: Thu 26 Mar 2026 08:01:15 +0000
Manifest next update: Fri 27 Mar 2026 08:01:15 +0000
Files and hashes: 1: ZbTeBAO3QTTIszF0pdw52UodjGY.roa (hash: Zcq4v6bJvVoVndPkmRTnPcyoC19uifQNUAxqTObWOg4=)
2: oMWM0HH3gLesNAwBROsE-1DMu_E.crl (hash: pO5J7Kq9b/vFCfcXxs7aysD5ouX0YIeQKxQg3M6GAjY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oMWM0HH3gLesNAwBROsE-1DMu_E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:74:b8:59:78:8d:dd:44:34:87:3a:8e:bc:8e:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0c58cd071f780b7ac340c0144eb04fb50ccbbf1
Validity
Not Before: Mar 26 08:01:15 2026 GMT
Not After : Mar 27 08:01:15 2026 GMT
Subject: CN=add7b82ed6aa8d46ad8002f8db8011ff9543878d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:53:a6:03:6a:6a:66:63:e2:ee:11:2c:f0:d4:
45:99:cd:b3:96:b2:1e:0d:17:ff:45:c8:4e:57:40:
d4:0a:6a:79:36:76:a9:09:d8:10:42:22:aa:6e:c3:
60:6e:81:fb:71:cd:29:17:0e:44:82:f8:b1:f0:88:
2d:13:b3:ae:ed:79:12:1b:1d:32:b7:81:0c:cc:dd:
c9:58:c9:de:57:f7:53:80:a6:e8:b8:5a:75:c9:cc:
02:c9:f8:ab:ee:97:fb:9f:1f:b1:09:6d:bc:b3:f8:
95:06:50:bb:2f:dc:2b:5e:17:b1:bc:26:5e:18:1d:
4e:b5:f1:03:b5:29:f0:da:01:42:09:e3:e7:01:bb:
13:09:9f:8b:a2:fa:bf:3c:71:b1:52:85:ae:22:67:
04:50:cf:3b:2e:75:5d:03:30:ed:1b:2d:6e:6a:b0:
98:22:d8:14:df:56:2f:ee:7a:cb:ba:a9:32:82:88:
b3:c7:54:72:17:7a:76:f2:25:a0:6c:f2:1c:34:17:
c1:05:7b:a2:26:89:19:f7:77:80:06:87:ad:b1:00:
48:b3:1b:88:e5:42:55:94:f1:d7:6e:99:ef:1b:0d:
dc:1c:2f:df:1f:7e:99:40:6a:2a:f4:79:db:5f:92:
0f:8b:99:ed:73:86:1c:84:53:d1:57:cf:03:45:1d:
05:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:D7:B8:2E:D6:AA:8D:46:AD:80:02:F8:DB:80:11:FF:95:43:87:8D
X509v3 Authority Key Identifier:
keyid:A0:C5:8C:D0:71:F7:80:B7:AC:34:0C:01:44:EB:04:FB:50:CC:BB:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMWM0HH3gLesNAwBROsE-1DMu_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:f6:2d:c7:61:8e:e3:5c:8f:20:9c:aa:24:6e:ab:2f:5e:07:
a1:e8:cf:f5:c9:d3:ad:62:9a:e1:f0:2f:18:72:5e:84:51:48:
e6:2a:40:a0:ea:d7:35:01:b8:0f:84:e9:14:1b:5e:b7:59:36:
8e:cb:91:6c:3f:11:ae:b5:be:64:8c:a1:3f:fe:a1:ec:45:7f:
00:c9:bc:e2:9f:d9:81:e0:bc:7e:f1:47:5d:f6:1f:8f:fd:2d:
85:cd:b5:f7:f6:51:41:d1:d7:55:f1:11:37:c3:e1:4c:88:2d:
1a:82:61:60:2e:eb:ed:38:70:0e:fd:48:f7:6a:44:d4:32:bb:
34:ba:8a:7c:1b:3e:5c:78:96:f6:69:1e:e6:62:ce:a2:74:bb:
29:78:f6:86:17:c0:06:fe:13:01:e2:04:f4:ac:06:1c:6c:7f:
84:48:97:3a:a0:c9:2f:07:ec:86:bc:b8:55:80:72:3a:ea:2d:
3c:29:f0:6e:2c:94:08:10:db:7c:bf:4a:ee:fa:b7:a7:4f:ba:
42:a2:b3:b8:51:f3:69:85:5e:e6:78:4e:4f:07:40:65:3e:ee:
0c:2c:e6:0f:55:c3:d5:c4:6b:d1:48:42:b2:6f:5b:29:95:28:
10:11:e3:77:a5:18:45:f6:6e:14:57:1e:35:6f:fa:f4:a9:8b:
ce:a3:f0:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:44:18 2026 by rpki-client