Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
File: OA-TW80EhiXnAVXPLMKCniwgcqY.mft (raw, json)
Hash identifier: IB6azJZ67EIhDWdOxFUvGEk4+P3DlfIB2fHanL8UepI=
Subject key identifier: 70:BA:52:23:11:69:12:2F:F7:93:26:D9:98:60:EE:79:0C:38:1E:A1
Authority key identifier: 38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
Certificate issuer: /CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Certificate serial: 019D2996F22A2518E5E43E2AA6D8B3BE9BFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
Manifest number: 056D
Signing time: Thu 26 Mar 2026 10:00:51 +0000
Manifest this update: Thu 26 Mar 2026 10:00:51 +0000
Manifest next update: Fri 27 Mar 2026 10:00:51 +0000
Files and hashes: 1: OA-TW80EhiXnAVXPLMKCniwgcqY.crl (hash: zPtxkhA29SytgqmZYCnN0t17uelwkOLbyrIipcgljGw=)
2: Q9r_G5mN-fpHCEEziTRaRU3KmFI.roa (hash: hXNMo0ooe3x7ylZ3iHUiRzE6Xm2lDI4+UmM5cDjZux0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:96:f2:2a:25:18:e5:e4:3e:2a:a6:d8:b3:be:9b:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Validity
Not Before: Mar 26 10:00:51 2026 GMT
Not After : Mar 27 10:00:51 2026 GMT
Subject: CN=70ba52231169122ff79326d99860ee790c381ea1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fe:d2:8b:54:0c:95:fd:d3:97:04:b7:34:5f:
d3:48:66:9a:4e:cc:53:8b:70:93:87:e6:f3:2a:6d:
4f:99:b6:6c:20:31:50:9e:26:ee:9a:66:ac:c2:63:
c8:11:27:1b:ac:ad:d4:e9:32:30:50:8d:5c:90:64:
0c:b8:c7:ba:19:b4:53:cf:73:99:af:a7:fa:17:f9:
b0:06:38:0c:f5:c4:c0:7f:d0:8f:33:fe:ae:01:c8:
10:8e:7b:89:90:6f:08:0d:b0:8e:d6:ed:60:11:8f:
46:0c:c2:8e:8a:64:23:f5:f1:dd:16:1a:a9:8a:98:
11:c0:a1:68:23:03:a3:16:6d:21:d6:09:f0:04:aa:
3e:6f:19:25:35:60:3f:9d:b0:15:5c:f8:26:d1:ca:
eb:da:cb:3c:55:46:86:1a:2a:dd:3c:2d:9a:a5:e4:
ed:d1:f4:de:a7:2b:3b:11:b7:8d:5c:60:90:c8:94:
89:8f:de:17:d4:60:59:33:5d:10:8a:6a:7f:c3:f7:
e8:02:c9:8c:8d:c7:0c:e1:ac:86:7a:3f:50:be:fa:
d7:8d:aa:06:2a:e5:6f:db:c6:ea:27:84:49:64:16:
d6:dc:09:47:fd:a3:b4:99:4a:05:1e:c2:42:44:a2:
91:81:78:d9:ac:a3:f7:a8:fe:ba:d9:a9:b4:01:5c:
24:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:BA:52:23:11:69:12:2F:F7:93:26:D9:98:60:EE:79:0C:38:1E:A1
X509v3 Authority Key Identifier:
keyid:38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:50:2c:06:6e:0c:82:52:15:ec:27:f9:ec:1d:e4:d3:23:18:
68:b9:67:c0:82:95:1f:96:cd:6b:f4:5a:23:1a:d3:a3:7d:95:
6d:fd:7c:b9:a9:83:7e:3b:0e:ed:7d:a6:b3:8a:09:ee:e6:1e:
fb:29:eb:ac:94:4d:ff:40:1f:f8:12:6f:6f:97:09:8a:87:f4:
64:00:ef:79:cc:e9:6b:8e:33:ff:0a:6f:6a:57:7d:b0:4e:ff:
26:80:98:2a:77:b7:e4:77:96:a4:67:3b:a4:8c:c1:1d:f8:ab:
bf:86:0f:4c:b2:e2:47:05:fd:58:74:a8:de:f3:ae:2d:0a:93:
d9:6b:4a:45:4c:2b:d8:75:62:39:32:4b:4f:63:62:bc:06:59:
b1:df:e0:f2:a1:61:74:b1:d7:25:4e:76:f5:03:9f:42:74:11:
ca:ef:d2:57:ab:c1:2b:5f:b4:ce:ba:4f:1a:61:74:81:c7:c6:
70:a9:a5:4d:37:65:7b:d5:f2:f3:47:4e:23:61:25:ab:28:c7:
bb:c7:b4:3a:50:7c:50:c1:70:60:09:c1:93:62:9b:a2:1f:d3:
2a:88:bb:d7:44:53:c4:93:06:fd:0f:58:a5:78:e7:ba:97:cc:
0e:d7:7f:0a:66:84:94:5a:79:1f:d8:ec:19:44:9e:d9:20:2d:
b2:b6:22:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:31:36 2026 by rpki-client