Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.mft
File: oI5By_3vrQuw4pckeswaIB0t9KA.mft (raw, json)
Hash identifier: 7IEHH8Rov8GWiKdZYHDWN5sAe9K9ZY8sUuq6RtcE1Ak=
Subject key identifier: AE:97:FF:7E:6C:8B:03:50:BC:C4:CA:35:3C:9F:4A:8E:4C:6E:D7:BE
Authority key identifier: A0:8E:41:CB:FD:EF:AD:0B:B0:E2:97:24:7A:CC:1A:20:1D:2D:F4:A0
Certificate issuer: /CN=a08e41cbfdefad0bb0e297247acc1a201d2df4a0
Certificate serial: 019D27722BD91DF48508A632F179AF98328F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oI5By_3vrQuw4pckeswaIB0t9KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.mft
Manifest number: 141A
Signing time: Thu 26 Mar 2026 00:01:26 +0000
Manifest this update: Thu 26 Mar 2026 00:01:26 +0000
Manifest next update: Fri 27 Mar 2026 00:01:26 +0000
Files and hashes: 1: EfrbbVNsRESDxPceTPw-5MN_E7s.roa (hash: 1V7YqzBGw+lW57pDGC7FJ9hb2upKEO6VdoiZzsqxDIs=)
2: oI5By_3vrQuw4pckeswaIB0t9KA.crl (hash: iUMeIx9mETQ5GUyukMwg5W4hgMT8SRhhr1+3mpspQ0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oI5By_3vrQuw4pckeswaIB0t9KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:2b:d9:1d:f4:85:08:a6:32:f1:79:af:98:32:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a08e41cbfdefad0bb0e297247acc1a201d2df4a0
Validity
Not Before: Mar 26 00:01:26 2026 GMT
Not After : Mar 27 00:01:26 2026 GMT
Subject: CN=ae97ff7e6c8b0350bcc4ca353c9f4a8e4c6ed7be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4c:4c:fa:6b:e5:26:76:e9:8d:67:f7:8a:d0:
a7:76:13:fa:00:fe:57:f1:97:53:4f:cb:e6:4e:8c:
17:f1:78:1f:e1:e2:23:e0:34:b7:27:20:35:cc:60:
6e:0f:27:76:b9:36:c5:b1:44:51:4b:8f:2b:53:dc:
38:5e:25:5c:cd:96:b3:06:d7:2b:6b:79:51:1b:be:
3c:a9:35:15:ef:51:08:48:59:b0:ca:7d:7f:16:e1:
91:c8:38:ee:59:57:b7:20:f4:42:82:5d:11:dc:73:
10:7e:61:02:60:e6:d1:92:70:c5:06:72:4f:07:df:
8f:88:d9:1f:b1:e6:67:20:34:13:9b:dd:b1:22:14:
aa:c7:fe:50:4b:8d:ed:71:63:f8:ff:a2:62:48:47:
7b:bb:8f:cf:67:f5:25:75:d7:ce:ce:38:9e:e5:40:
cb:b7:ab:24:c2:87:6f:46:dc:c8:84:aa:eb:a3:5a:
00:bb:1f:69:8f:95:75:c4:33:7a:61:73:e2:a8:d6:
56:ad:2f:0b:d8:8e:c7:25:09:a1:4f:ce:9d:25:51:
bf:55:9e:76:7b:b5:1e:13:76:64:fb:f9:f8:ea:50:
a1:27:1d:f0:6b:32:05:89:5b:81:0c:d4:30:3e:af:
72:b5:b4:49:58:9b:a9:1d:01:4c:3a:95:8a:23:44:
db:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:97:FF:7E:6C:8B:03:50:BC:C4:CA:35:3C:9F:4A:8E:4C:6E:D7:BE
X509v3 Authority Key Identifier:
keyid:A0:8E:41:CB:FD:EF:AD:0B:B0:E2:97:24:7A:CC:1A:20:1D:2D:F4:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oI5By_3vrQuw4pckeswaIB0t9KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/7a806c-2f08-47d9-9cc9-658d4c4628ad/1/oI5By_3vrQuw4pckeswaIB0t9KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:ad:f1:4a:06:5d:e9:bd:97:0d:df:2d:77:24:3a:22:47:17:
40:19:af:88:a9:3e:c5:dc:d9:0b:ac:14:bc:05:35:e4:2f:35:
03:9d:5e:75:3e:f0:8c:25:44:f9:dd:af:14:58:be:96:8e:f2:
7a:fc:58:ce:e5:a1:df:4e:f1:25:58:f3:d8:a7:ca:b1:11:0c:
34:f9:ff:16:21:f7:61:fe:d8:a8:61:77:20:e8:0b:9b:a3:1f:
be:48:54:cc:c5:15:10:8d:0b:fb:c7:ea:cc:a2:d0:b8:c7:f2:
4d:21:5c:b8:35:bf:9c:06:7a:2c:de:28:6e:4a:e8:7d:0f:07:
c4:6a:5a:8c:02:f7:8b:fe:69:a4:63:e5:0c:ef:21:58:71:22:
09:3c:a1:eb:c7:99:0d:c5:6f:46:d8:3e:50:cf:8a:2e:ee:6d:
3a:ab:98:5c:cd:77:34:f9:af:7b:e9:66:66:7b:da:7d:6d:02:
d0:30:07:95:17:fd:b4:01:69:18:94:8a:61:17:d4:1e:b4:97:
69:84:0c:13:7b:cb:3a:af:08:a1:07:07:8b:ef:35:3e:5d:e0:
5f:c0:47:4f:cd:84:96:69:7b:17:d4:33:39:6d:11:be:7f:a2:
4c:61:d9:94:3d:31:a3:33:0a:a3:28:a2:e5:a7:0e:49:e8:33:
10:49:ee:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:18:17 2026 by rpki-client