Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
File: oynU0nVy71pqbb7NeS7vmM6QcW0.mft (raw, json)
Hash identifier: E8d1lTxsENv2yXnRbx9lsU0fCrccW9vcp33bSNf+wzQ=
Subject key identifier: 73:19:75:F6:76:1A:E4:DD:B6:F2:AE:6B:27:5C:C3:B8:91:03:EB:2F
Authority key identifier: A3:29:D4:D2:75:72:EF:5A:6A:6D:BE:CD:79:2E:EF:98:CE:90:71:6D
Certificate issuer: /CN=a329d4d27572ef5a6a6dbecd792eef98ce90716d
Certificate serial: 019D27728E7D98E1901D08D705B2ED8D97C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 00:01:52 +0000
Manifest this update: Thu 26 Mar 2026 00:01:52 +0000
Manifest next update: Fri 27 Mar 2026 00:01:52 +0000
Files and hashes: 1: XYUJ8YEpWRVKnEs1lud3ZGRwErY.roa (hash: ODygtNmaduKQgGbNRUfrQ+Q4mGtK3q6vsVkBCLpr8rg=)
2: oynU0nVy71pqbb7NeS7vmM6QcW0.crl (hash: z+L4q3ViRuMEO7AaqXbkL033nAwpA26vaJcqPYWz+VA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:8e:7d:98:e1:90:1d:08:d7:05:b2:ed:8d:97:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a329d4d27572ef5a6a6dbecd792eef98ce90716d
Validity
Not Before: Mar 26 00:01:52 2026 GMT
Not After : Mar 27 00:01:52 2026 GMT
Subject: CN=731975f6761ae4ddb6f2ae6b275cc3b89103eb2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ba:9a:aa:d6:42:d3:16:a0:72:6e:ef:55:bd:
8c:80:b2:96:c9:2e:40:01:12:b6:f2:03:7e:0c:78:
4a:40:99:f3:cd:b7:92:e1:08:7b:ac:96:c0:3d:95:
43:ad:cd:0b:51:8b:2e:04:b4:d4:9e:48:7f:f3:1e:
79:eb:da:ab:50:34:c9:24:90:3f:31:2a:23:0e:69:
df:d5:c3:f2:32:4f:64:0a:c3:9c:3e:62:ab:76:55:
29:06:a1:98:36:b2:00:ce:d9:2a:8e:98:d2:67:a5:
7e:31:ee:84:f0:3b:a4:9d:e9:12:24:d6:dd:14:d5:
5d:71:be:12:ff:30:37:78:35:9c:41:e9:10:52:f7:
2b:40:f0:18:60:3a:b3:f3:bb:a6:f8:2e:b1:ee:da:
17:6d:2b:2b:be:63:27:d0:fb:06:62:83:85:e1:c8:
6a:66:6f:89:cb:ac:c7:94:ec:51:74:4f:b5:eb:f0:
0f:c9:d9:ac:64:37:41:46:f4:27:fb:8e:18:a4:c9:
b4:46:38:4e:5b:16:e9:e9:32:65:26:b4:71:63:c1:
fe:f8:d4:4d:29:9d:a1:f1:5d:e8:bd:58:4e:20:08:
2d:ee:be:f2:a8:38:5c:81:ba:ac:87:98:5f:40:24:
55:78:43:f3:85:0c:d4:d9:0d:18:db:d9:fd:d0:85:
0e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:19:75:F6:76:1A:E4:DD:B6:F2:AE:6B:27:5C:C3:B8:91:03:EB:2F
X509v3 Authority Key Identifier:
keyid:A3:29:D4:D2:75:72:EF:5A:6A:6D:BE:CD:79:2E:EF:98:CE:90:71:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:86:37:0a:f5:b5:cf:d6:ea:98:e2:e6:e5:f9:ca:0b:33:a8:
61:f9:91:2f:e2:22:a2:02:02:b8:a5:f8:29:35:00:d6:6b:db:
43:c5:5d:06:b1:38:1c:6f:80:23:be:01:43:22:01:7a:5f:2e:
a9:82:3c:a0:b2:d7:fb:61:fe:b5:cb:79:c5:41:4e:67:7e:92:
d8:b5:9c:d2:1f:1b:43:f8:d0:eb:04:32:98:43:b2:e5:99:72:
64:78:bb:4b:78:cd:12:46:cc:f2:f7:51:d1:b5:cd:46:fd:4e:
1f:45:96:76:a2:28:56:e6:72:51:74:8b:47:81:c0:b9:d9:b2:
49:b4:79:12:4e:1b:16:f1:31:5a:67:93:b5:1b:b9:ec:97:0c:
df:67:19:e5:e8:e0:7d:13:c6:0e:7b:ab:fb:3b:ea:e7:ac:c2:
2e:7f:e4:67:d0:61:30:23:1f:88:11:f6:95:de:c3:6e:5c:91:
0a:6d:80:a8:a3:97:fb:ac:80:47:fd:54:54:c9:0c:9e:58:8a:
96:84:c7:d0:8d:9a:61:0c:c7:cc:e0:22:65:04:57:d6:09:bd:
ba:4f:93:17:97:e4:27:a6:ed:c6:51:ad:e5:7f:05:f8:92:60:
c5:fb:a7:61:c1:50:a9:19:5e:51:dc:ca:5c:31:73:2d:77:8a:
40:d6:06:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:53:45 2026 by rpki-client