Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft
File: o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft (raw, json)
Hash identifier: nPBIhbUhiiw878lFmH4C9U40GR19vz0AQ+KH1MTIiwA=
Subject key identifier: C1:88:01:DC:D5:36:D8:A1:51:F0:63:39:ED:7F:D0:F4:A3:3B:8F:9C
Authority key identifier: A3:E5:99:92:83:AA:F2:E4:39:50:79:EA:37:16:DD:FC:2B:13:0F:07
Certificate issuer: /CN=a3e5999283aaf2e4395079ea3716ddfc2b130f07
Certificate serial: 019D2627EF4237EDFBA40B93BBEC71697D6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft
Manifest number: 0615
Signing time: Wed 25 Mar 2026 18:00:44 +0000
Manifest this update: Wed 25 Mar 2026 18:00:44 +0000
Manifest next update: Thu 26 Mar 2026 18:00:44 +0000
Files and hashes: 1: mRzXoHd1mByeqxe7zEzrQOkUywA.roa (hash: 8SKmwd2mxeGHXUa+EavAITPtq3W4rgD8HwfvXh+DLAw=)
2: o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl (hash: NP2P8RIg45/ZyIo9+MleTWqY21RW7uZvvxQ2D0MhNFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft
rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:27:ef:42:37:ed:fb:a4:0b:93:bb:ec:71:69:7d:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3e5999283aaf2e4395079ea3716ddfc2b130f07
Validity
Not Before: Mar 25 18:00:44 2026 GMT
Not After : Mar 26 18:00:44 2026 GMT
Subject: CN=c18801dcd536d8a151f06339ed7fd0f4a33b8f9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:13:fb:f3:9f:c8:cc:65:96:d2:fd:da:83:71:
18:f7:a2:3e:ce:17:e4:41:01:8b:e6:bf:55:3c:74:
90:b5:67:2e:31:55:eb:d8:0d:23:70:8d:a7:1f:a1:
ee:11:a6:f1:62:ef:36:6a:fd:55:35:9d:d3:5c:f2:
3a:3a:0a:a0:9c:0f:a1:77:5b:b1:31:a1:14:55:3c:
15:54:e6:20:be:d0:71:15:a1:39:1b:60:ff:cf:51:
ef:8d:49:8e:bb:e9:0a:a7:eb:19:2f:d0:89:7e:2f:
07:5b:d9:95:58:f7:dc:7b:b5:55:88:03:26:1a:e8:
57:aa:89:a2:8b:86:15:da:50:ee:e7:23:3f:e5:6b:
7b:49:50:40:6b:34:36:de:11:d4:24:88:c7:df:51:
6d:5d:49:7f:c7:da:c7:8a:0a:b0:27:09:cc:0c:4a:
58:79:8d:74:e5:4f:b9:a8:7c:09:64:4f:e2:ea:49:
f8:a1:7e:d0:a9:52:39:48:38:03:c4:be:b0:bd:9e:
52:52:a1:86:61:c1:dc:c6:64:01:0f:2c:7e:64:ac:
0f:64:c7:0e:7d:1c:d0:fc:f1:13:f5:45:69:09:04:
2a:b9:44:24:7f:eb:7c:06:d4:54:c6:0d:ef:d4:68:
d2:f2:c7:98:14:db:b0:5c:fd:eb:c1:b2:37:66:d8:
73:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:88:01:DC:D5:36:D8:A1:51:F0:63:39:ED:7F:D0:F4:A3:3B:8F:9C
X509v3 Authority Key Identifier:
keyid:A3:E5:99:92:83:AA:F2:E4:39:50:79:EA:37:16:DD:FC:2B:13:0F:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:52:5a:10:82:05:77:14:7c:c8:18:9b:3a:3f:a1:d9:60:14:
fb:c7:2f:5c:77:4f:9b:3f:6c:b8:c7:7d:21:37:05:c8:c8:9a:
ab:80:7e:4f:04:5d:2c:81:9d:c7:46:5c:29:c7:21:25:3a:ed:
e5:70:31:86:29:37:9f:39:7f:56:93:4b:c2:03:ca:18:77:7d:
4f:98:de:57:70:48:0c:39:75:8a:8f:c1:96:6b:7c:e8:20:93:
13:fe:3e:5c:94:77:e0:e7:f0:96:95:3b:8b:6a:89:6c:76:6f:
f0:ea:53:4c:2d:a9:32:2a:17:60:2a:16:54:82:77:1d:f3:f0:
a9:4f:67:a1:38:6d:b8:e9:81:e2:63:ba:1b:99:05:22:d6:97:
e5:9f:f8:f1:02:b6:16:d6:c3:1c:4e:e2:98:38:3b:44:af:be:
bb:48:09:9b:eb:e7:3b:95:db:62:5a:26:fe:94:96:11:2f:51:
bd:05:15:e7:3c:13:aa:07:a5:c0:c4:1a:f4:8d:61:a9:78:25:
f6:cf:92:85:03:74:18:8f:53:7f:db:ec:90:0e:2d:10:8c:af:
e3:a4:d0:b6:45:23:7c:af:bb:82:e3:ad:ce:e0:aa:20:a3:79:
08:84:ee:cf:bb:ed:2b:0e:4c:5a:6d:fe:77:3f:36:ee:31:38:
98:a2:63:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:21:16 2026 by rpki-client