Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
File: obtQVKF8yU__wrwpWhW_74qQQwo.mft (raw, json)
Hash identifier: 4e3AP9HkN7oYDPmvJjKo1u5PTZwaVfnU2Pjdo1ZNEd8=
Subject key identifier: 4A:29:94:83:AF:91:4C:2B:03:78:AD:EB:57:A8:C6:D5:5E:42:52:E2
Authority key identifier: A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A
Certificate issuer: /CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
Certificate serial: 019D24DED2BCED80AC33D705F85CE284D310
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
Manifest number: 089A
Signing time: Wed 25 Mar 2026 12:01:15 +0000
Manifest this update: Wed 25 Mar 2026 12:01:15 +0000
Manifest next update: Thu 26 Mar 2026 12:01:15 +0000
Files and hashes: 1: TERthLcTXSHdWMsqlfOOJwKh2_0.asa (hash: hMMFvY1d+bWPtpG5FeE2i0f2zSyXMOEIbRla1EHp4YU=)
2: obtQVKF8yU__wrwpWhW_74qQQwo.crl (hash: BK0g1kBrh9NNQ62SKupaMeIvzHwDDuvy6PXsvbb+9DY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 12:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:24:de:d2:bc:ed:80:ac:33:d7:05:f8:5c:e2:84:d3:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
Validity
Not Before: Mar 25 12:01:15 2026 GMT
Not After : Mar 26 12:01:15 2026 GMT
Subject: CN=4a299483af914c2b0378adeb57a8c6d55e4252e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:2b:fc:c4:df:9a:b1:cd:54:18:ec:22:a7:36:
2f:ab:2e:1e:19:78:dc:22:f9:5f:a3:f5:5a:75:b6:
5e:51:88:bd:9c:ea:52:d4:70:a0:f4:dd:d6:07:84:
eb:42:70:86:b6:aa:a4:76:9e:8c:c5:e9:f9:79:6b:
66:0f:7c:eb:b3:a4:d7:ac:8a:e5:0e:8c:5c:d9:22:
da:2a:75:30:2c:9c:70:33:03:9e:d7:2d:0a:e7:db:
a7:8f:19:26:a5:43:c4:50:0b:7c:de:8b:14:d9:d2:
45:2e:3a:a9:33:9f:dc:8e:42:e8:d9:cc:49:af:1d:
c9:ed:be:f9:e7:8d:0e:25:f7:14:ec:3a:0a:c9:b5:
ff:30:ac:62:71:a0:33:dd:d3:95:87:4b:18:73:4a:
1e:54:af:4c:c6:da:72:95:e7:c2:83:94:a7:3e:4d:
ed:03:94:79:f8:69:65:5b:16:25:df:2b:8c:50:56:
ca:d6:a3:f1:de:12:91:49:b6:e4:03:66:de:bc:d9:
98:80:53:b1:d9:99:d5:67:6e:6c:95:c5:2e:8d:ac:
63:7c:f2:41:66:bb:6b:f6:29:b4:4e:87:81:16:d6:
38:5d:18:7f:79:77:73:d1:44:67:84:27:8d:59:0f:
91:ad:8b:4b:d3:d9:ad:f7:5d:a4:3b:a6:0b:bc:2a:
b8:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:29:94:83:AF:91:4C:2B:03:78:AD:EB:57:A8:C6:D5:5E:42:52:E2
X509v3 Authority Key Identifier:
keyid:A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:4e:e3:0f:1a:c9:19:dc:fb:8e:32:ed:3e:c0:2d:9a:7b:8d:
33:ac:30:68:58:89:10:fa:00:81:c3:ff:aa:f6:55:75:2c:b0:
82:aa:fc:1f:5d:c0:a9:fd:cf:94:5b:d7:23:66:03:e5:da:66:
1c:68:19:22:b7:99:c7:d2:97:82:1e:3c:de:8b:43:91:ad:3f:
f4:83:2a:f3:37:63:6f:26:c2:13:11:76:0d:9c:7b:c2:bf:da:
fd:ef:99:00:2b:b3:0e:52:0e:a9:86:7a:60:86:60:f1:61:4c:
b7:85:fc:a1:6e:76:01:ac:c1:5c:a8:cf:71:4c:d2:43:7a:d1:
6f:3a:60:2a:ac:c4:ce:59:7c:85:d8:84:6b:28:df:81:2b:aa:
81:f4:1f:70:2c:fc:f1:fe:31:67:33:f2:c2:81:94:c3:49:2d:
1d:f5:72:b3:c9:65:9d:1b:60:8d:1a:70:0f:65:49:30:0c:10:
c0:42:6c:7b:13:05:09:6a:77:d7:e0:2f:2f:af:1f:f6:b4:36:
5a:80:01:59:ec:09:b5:68:b2:20:4e:46:96:c1:ba:89:61:0e:
9f:fd:e0:61:ed:7e:b1:07:8d:ce:db:9c:17:ce:15:75:e3:71:
52:a6:a0:00:8a:02:0e:86:2d:19:69:c8:b9:d2:9d:b3:cf:c9:
09:c9:33:9f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0k3tK87YCsM9cF+FzihNMQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExYmI1MDU0YTE3Y2M5NGZmZmMyYmMyOTVhMTViZmVmOGE5
MDQzMGEwHhcNMjYwMzI1MTIwMTE1WhcNMjYwMzI2MTIwMTE1WjAzMTEwLwYDVQQD
Eyg0YTI5OTQ4M2FmOTE0YzJiMDM3OGFkZWI1N2E4YzZkNTVlNDI1MmUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjyv8xN+asc1UGOwipzYvqy4eGXjc
Ivlfo/VadbZeUYi9nOpS1HCg9N3WB4TrQnCGtqqkdp6Mxen5eWtmD3zrs6TXrIrl
Doxc2SLaKnUwLJxwMwOe1y0K59unjxkmpUPEUAt83osU2dJFLjqpM5/cjkLo2cxJ
rx3J7b75540OJfcU7DoKybX/MKxicaAz3dOVh0sYc0oeVK9MxtpylefCg5SnPk3t
A5R5+GllWxYl3yuMUFbK1qPx3hKRSbbkA2bevNmYgFOx2ZnVZ25slcUujaxjfPJB
Zrtr9im0ToeBFtY4XRh/eXdz0URnhCeNWQ+RrYtL09mt912kO6YLvCq4ewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEoplIOvkUwrA3it61eoxtVeQlLiMB8GA1UdIwQY
MBaAFKG7UFShfMlP/8K8KVoVv++KkEMKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS9hMzBjMTAtMWMyZC00NzhjLTljZjgt
NzIyNTVkMjQ5YzVkLzEvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS9hMzBjMTAtMWMyZC00NzhjLTljZjgtNzIyNTVkMjQ5YzVk
LzEvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHk7jDxrJ
Gdz7jjLtPsAtmnuNM6wwaFiJEPoAgcP/qvZVdSywgqr8H13Aqf3PlFvXI2YD5dpm
HGgZIreZx9KXgh483otDka0/9IMq8zdjbybCExF2DZx7wr/a/e+ZACuzDlIOqYZ6
YIZg8WFMt4X8oW52AazBXKjPcUzSQ3rRbzpgKqzEzll8hdiEayjfgSuqgfQfcCz8
8f4xZzPywoGUw0ktHfVys8llnRtgjRpwD2VJMAwQwEJsexMFCWp31+AvL68f9rQ2
WoABWewJtWiyIE5GlsG6iWEOn/3gYe1+sQeNztucF84VdeNxUqagAIoCDoYtGWnI
udKds8/JCckznw==
-----END CERTIFICATE-----
Generated at Wed Mar 25 21:25:38 2026 by rpki-client