Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
File: oixSeMS7sCbhL_12C-rFn8FV_CU.mft (raw, json)
Hash identifier: zfzIngapRx84QLzjDSd4dq03zR8fZ1EtR25arz01FXs=
Subject key identifier: D9:5F:27:6C:76:1C:DD:91:73:2C:9F:A7:A2:DE:10:CA:B6:F6:A7:2E
Authority key identifier: A2:2C:52:78:C4:BB:B0:26:E1:2F:FD:76:0B:EA:C5:9F:C1:55:FC:25
Certificate issuer: /CN=a22c5278c4bbb026e12ffd760beac59fc155fc25
Certificate serial: 019D2A3B841B0B18AB28AFFA98239A0E9B35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
Manifest number: 0CF4
Signing time: Thu 26 Mar 2026 13:00:36 +0000
Manifest this update: Thu 26 Mar 2026 13:00:36 +0000
Manifest next update: Fri 27 Mar 2026 13:00:36 +0000
Files and hashes: 1: WokjdWqhALE6VZ3S1OW0W-iIRyY.roa (hash: z1prbj43IM8EJO6AW+eAsr+cXEFCfphFcOAMIWD2NRQ=)
2: oixSeMS7sCbhL_12C-rFn8FV_CU.crl (hash: Fr/0alHwR4pP6L69kV2HM0OK274uF5s5ifwTrKPtwNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 13:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:84:1b:0b:18:ab:28:af:fa:98:23:9a:0e:9b:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a22c5278c4bbb026e12ffd760beac59fc155fc25
Validity
Not Before: Mar 26 13:00:36 2026 GMT
Not After : Mar 27 13:00:36 2026 GMT
Subject: CN=d95f276c761cdd91732c9fa7a2de10cab6f6a72e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:74:cf:b8:44:ab:69:c5:b6:a0:75:51:d9:11:
13:11:73:10:d2:33:fc:98:b9:03:61:71:9a:e7:e5:
65:fb:0d:f2:0a:86:dd:d9:46:36:fe:e9:12:de:8c:
c9:b0:47:7e:c5:66:9d:f5:6c:ce:bd:a9:73:f1:39:
c3:70:03:f1:18:77:77:64:8f:cd:2c:c5:54:99:b4:
11:b4:7e:8c:4d:ea:65:65:6f:19:e3:80:07:f2:31:
3d:f7:a8:a1:c3:9f:1a:cf:1b:ed:90:0b:f9:24:8d:
62:ad:03:7d:9f:31:68:a3:0b:1f:ca:86:0a:f3:35:
76:a1:23:83:24:ce:6f:ce:03:46:56:f9:5f:46:a1:
ce:9d:0c:52:0b:59:f9:61:7f:c4:0f:81:1e:08:68:
0d:c6:ca:79:1d:42:7a:84:53:a5:35:a9:16:aa:07:
ba:6f:8e:ff:f2:26:43:fb:d8:d7:41:93:30:c9:d7:
ca:1f:9b:17:99:4a:82:a1:74:af:91:54:60:9f:24:
72:99:66:d3:6c:bb:87:1c:f7:94:de:c6:8a:0b:2f:
b8:de:54:03:cf:a7:d6:d6:d5:c4:f3:08:10:13:b7:
02:f8:bf:85:47:2b:81:43:20:23:d8:15:82:68:c8:
44:ce:f2:04:f0:6c:a8:1f:97:57:cd:35:c2:6c:a3:
e6:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:5F:27:6C:76:1C:DD:91:73:2C:9F:A7:A2:DE:10:CA:B6:F6:A7:2E
X509v3 Authority Key Identifier:
keyid:A2:2C:52:78:C4:BB:B0:26:E1:2F:FD:76:0B:EA:C5:9F:C1:55:FC:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:e7:0a:b2:63:c2:ed:89:ef:eb:98:d1:83:d5:de:3b:13:df:
db:49:bb:1e:5b:71:81:0a:0d:4d:ff:57:ee:46:62:cc:cf:9b:
19:d9:a4:12:8c:49:1f:ee:e9:e4:cf:15:a4:a2:a5:88:0f:8d:
c2:dc:97:2c:a0:a6:23:c7:a2:f6:2f:02:d7:01:5f:81:d5:15:
ae:9f:07:aa:27:fb:fa:f0:25:7e:ce:39:e5:76:1f:36:ab:b2:
5a:ec:ac:f4:44:08:f6:6c:19:5d:da:00:60:01:f8:12:30:6d:
b9:e1:25:9f:fb:87:9d:cc:24:a1:04:2f:b4:d7:96:d1:d6:b4:
ac:6f:8f:4d:53:0e:e1:16:91:c2:c4:4c:1d:59:c2:de:d9:07:
f6:72:81:38:88:36:16:ea:6c:df:19:be:52:8c:08:b5:c7:b3:
f2:12:7f:8d:aa:64:22:98:62:ff:e6:c0:f8:f9:45:d8:e3:a7:
0b:e4:35:bb:9a:e3:3a:d0:45:59:51:be:4b:e1:48:7c:95:93:
43:69:68:22:48:fc:8b:e5:46:80:09:80:1a:de:c7:98:87:e8:
25:98:cf:22:5b:45:1e:9a:0d:a4:71:b9:98:3e:86:50:c3:b8:
52:0b:f8:1c:bc:90:e4:7f:8a:89:6d:52:c0:67:f7:9f:a7:a7:
d1:10:3d:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 21:15:15 2026 by rpki-client