Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
File: oQIHcvYouPtR80dRNrd_60smmL4.mft (raw, json)
Hash identifier: 9J2WlVs0rMoijv3TEMPJGJ62Pm04l1+j3km6HJ6/ij4=
Subject key identifier: 32:FE:90:1E:82:7B:A1:D7:F5:C7:34:FC:74:4F:AC:12:35:A9:90:48
Authority key identifier: A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
Certificate issuer: /CN=a1020772f628b8fb51f3475136b77feb4b2698be
Certificate serial: 019D2A3C83E61F5FFC275BED91A86FA49873
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
Manifest number: 14D0
Signing time: Thu 26 Mar 2026 13:01:42 +0000
Manifest this update: Thu 26 Mar 2026 13:01:42 +0000
Manifest next update: Fri 27 Mar 2026 13:01:42 +0000
Files and hashes: 1: n38Xqr0qqFJ7oGfHYhb-VaYtVsU.roa (hash: +D4AMbYExvYotaGN2taivxR0S26uQ3AxgVQRHrzxbnw=)
2: oQIHcvYouPtR80dRNrd_60smmL4.crl (hash: wP1ZL+A6N+VPMr2/1mEygC43EP5qt+gsJ6jpB6pXHok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3c:83:e6:1f:5f:fc:27:5b:ed:91:a8:6f:a4:98:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1020772f628b8fb51f3475136b77feb4b2698be
Validity
Not Before: Mar 26 13:01:42 2026 GMT
Not After : Mar 27 13:01:42 2026 GMT
Subject: CN=32fe901e827ba1d7f5c734fc744fac1235a99048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:be:0e:d7:91:09:41:dc:72:5a:ab:b0:24:1e:
02:d3:01:c0:31:f4:ff:e8:15:0e:90:fc:9c:63:1e:
80:f6:b8:e8:05:0b:0e:57:ec:4d:1e:25:37:69:db:
48:59:2b:78:5d:9d:13:71:a2:a3:80:fa:0a:62:90:
03:81:6d:83:f5:b2:ef:7e:c1:b4:fc:1f:07:3f:23:
c3:13:a6:66:cf:68:a9:32:05:ac:c9:b3:51:7a:8d:
3f:c0:09:35:2a:58:23:e5:70:fa:d7:b5:43:46:c3:
38:25:f1:fd:3a:56:0f:2d:7e:95:d9:a0:51:2a:10:
12:75:67:91:70:00:60:55:41:f2:75:97:25:3f:8a:
81:84:b6:6b:cf:e8:1e:a5:87:27:33:2f:1b:b4:b1:
f1:d4:0b:fb:43:75:62:38:42:1f:f4:ca:66:56:9f:
da:de:2d:4f:c1:06:d0:ee:8d:f2:7c:ae:62:93:2e:
ac:65:a1:09:67:30:57:d9:e9:c8:5c:fc:d0:7a:84:
22:e0:d8:c4:91:57:bb:88:d7:9e:ae:bc:89:2a:2e:
50:36:87:ec:43:b2:cf:84:7f:ec:4f:ff:a3:13:89:
be:cc:56:6e:bb:ea:52:b1:e3:4e:10:57:c1:34:51:
ee:2b:1b:f7:c8:e2:a7:61:6c:d8:5a:19:eb:6c:6f:
d7:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:FE:90:1E:82:7B:A1:D7:F5:C7:34:FC:74:4F:AC:12:35:A9:90:48
X509v3 Authority Key Identifier:
keyid:A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:20:28:f3:7d:23:9e:f5:78:ee:d4:90:90:d9:e6:05:61:bc:
28:5a:9b:b3:eb:b0:18:35:79:64:e1:df:47:19:5f:3c:11:54:
ca:f5:72:76:cb:e5:a9:f2:da:51:ab:58:f5:4b:19:49:b4:fd:
4f:84:2a:5a:75:69:4e:14:4e:7a:de:e0:ba:eb:09:b9:04:89:
46:d2:05:fb:8d:d6:29:9b:e2:2d:35:62:0a:9e:9f:82:c1:63:
e7:b8:af:a3:6b:ee:cf:29:ba:6b:ce:3e:35:42:1b:3c:8f:8e:
f0:01:e5:0c:12:54:fb:18:93:86:a6:86:f1:ba:b1:dc:34:33:
57:43:1c:23:33:24:88:45:85:05:0f:3d:f5:3c:66:5e:20:dd:
58:d0:98:13:39:03:aa:30:cc:1a:b8:11:7e:21:ba:0b:95:cb:
14:8c:31:4b:57:e1:7a:39:c3:f9:5d:7a:80:e4:81:79:23:f5:
d3:01:dc:c8:00:31:0d:65:93:ff:08:c8:7b:9a:7c:c0:bf:1c:
89:60:c2:6f:6b:66:e6:38:52:d1:e4:60:7a:1a:0d:25:13:c5:
04:d8:3b:d1:67:9d:8d:d6:55:89:38:c3:01:cd:3b:80:88:5d:
25:36:63:88:7b:6f:91:45:e4:6e:e6:68:6d:ca:39:2a:ff:43:
2e:2f:2d:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:37:31 2026 by rpki-client