Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.mft
File: oNPtV5U0igTn7NFy12QvqWIJcoc.mft (raw, json)
Hash identifier: WkarOVNBjDh3IKQ+5x5YLngYoaMrooHNd2ScuK6k0cI=
Subject key identifier: F9:D9:9A:2E:45:E3:65:D4:34:8D:A8:90:6A:76:29:E9:66:5F:22:16
Authority key identifier: A0:D3:ED:57:95:34:8A:04:E7:EC:D1:72:D7:64:2F:A9:62:09:72:87
Certificate issuer: /CN=a0d3ed5795348a04e7ecd172d7642fa962097287
Certificate serial: 019D26CD221F42CC8F6EFA5974A09A34A506
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNPtV5U0igTn7NFy12QvqWIJcoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.mft
Manifest number: 056D
Signing time: Wed 25 Mar 2026 21:01:10 +0000
Manifest this update: Wed 25 Mar 2026 21:01:10 +0000
Manifest next update: Thu 26 Mar 2026 21:01:10 +0000
Files and hashes: 1: PwrlOtm2P7bSTHPu4qJvSXidoSw.roa (hash: H6VRRV9xRJe9egiq6XVsdHUwEnyAitSMRcYsekBGIfk=)
2: oNPtV5U0igTn7NFy12QvqWIJcoc.crl (hash: oauzoDjjNzJkxnuEDczIScafBPvkY+XFzDb1MzMAx0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNPtV5U0igTn7NFy12QvqWIJcoc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:22:1f:42:cc:8f:6e:fa:59:74:a0:9a:34:a5:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d3ed5795348a04e7ecd172d7642fa962097287
Validity
Not Before: Mar 25 21:01:10 2026 GMT
Not After : Mar 26 21:01:10 2026 GMT
Subject: CN=f9d99a2e45e365d4348da8906a7629e9665f2216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:dd:11:10:28:42:95:e0:33:f5:85:af:e2:c0:
dd:b1:bb:e3:b9:23:0e:46:35:b3:50:a1:9b:8b:28:
eb:2c:9e:63:c5:de:95:46:6c:72:c0:ca:38:a9:cb:
88:bf:dd:8b:61:15:4f:35:c3:aa:08:67:5e:5e:e8:
4d:fa:14:a0:89:78:27:ec:ef:cb:90:a6:6b:05:81:
55:27:91:79:b4:84:b6:54:52:f4:df:08:bf:d7:75:
7c:33:cf:c7:f1:5a:78:30:c7:34:61:3e:de:98:38:
ba:10:85:b8:6e:cf:47:ba:6d:ba:20:55:01:0f:82:
9d:18:8e:08:a7:82:fa:54:8f:d9:47:0c:72:c9:39:
4a:65:2b:cf:9a:c6:cf:80:2b:9e:69:98:da:5b:aa:
18:34:b3:82:8b:64:c9:d9:a7:dd:dc:b3:37:8c:cf:
fe:b9:20:0d:5e:d2:cd:1c:66:92:11:f0:57:c2:15:
94:de:f1:5d:9d:21:44:3d:73:1e:c1:f8:57:7a:5b:
23:cb:49:8a:ae:39:ad:f0:e0:85:a7:fd:61:3a:2d:
36:74:52:e9:e6:4d:03:48:98:ea:90:b3:f1:4d:62:
c0:55:f7:a3:81:75:5f:f6:dd:2b:bf:c6:38:91:81:
5e:7e:2a:19:ae:c3:61:44:d4:10:f6:e4:b1:3c:e3:
b0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:D9:9A:2E:45:E3:65:D4:34:8D:A8:90:6A:76:29:E9:66:5F:22:16
X509v3 Authority Key Identifier:
keyid:A0:D3:ED:57:95:34:8A:04:E7:EC:D1:72:D7:64:2F:A9:62:09:72:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNPtV5U0igTn7NFy12QvqWIJcoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:90:1c:4e:8d:66:2b:97:02:e1:05:cb:b7:40:58:6d:a9:3e:
9f:d5:24:80:e3:3f:a0:ee:37:56:fc:48:8e:9a:89:37:5f:48:
2c:cf:7f:67:5d:3f:36:a0:16:dd:2a:46:48:fa:e0:1b:8e:7e:
ab:9f:4c:fa:ea:eb:e3:75:75:c7:e3:32:6d:d1:52:c0:7b:68:
08:fb:12:ba:7b:50:d4:76:95:6b:18:e3:ff:69:9c:2a:58:e2:
79:b1:3c:ed:e7:5f:5d:94:41:56:25:55:16:3f:ff:bc:d6:ce:
da:93:6d:f3:7c:56:92:5f:e9:86:ce:cd:80:5c:74:1e:b4:49:
cf:fd:8f:ab:6a:d8:c2:d2:24:74:fb:18:f5:30:7c:c1:11:a9:
cf:c5:fb:e1:2c:5c:95:b2:8a:a9:5a:a6:9d:fc:17:fc:d4:ff:
7c:d2:f9:b3:d8:04:c1:0c:dc:56:16:b2:0b:b5:1c:5b:30:7a:
a2:a7:40:f7:40:94:7d:87:e4:85:e2:62:64:13:d2:51:c5:69:
12:fa:d2:54:7f:56:77:59:af:98:fe:c7:6e:a1:6e:e3:2d:bb:
3e:67:44:51:e9:0d:89:86:ee:4b:71:50:71:32:00:3c:0d:b0:
34:0b:c9:65:b1:fd:58:4a:c7:f1:82:36:62:19:46:07:96:2b:
0e:e0:47:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:01:30 2026 by rpki-client