Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
File: oJfWos9CiA2-v0KjJRkHohyRpKU.mft (raw, json)
Hash identifier: mqUcDxOTBnm7v1/GCAo1AOmcdX/QN9gJkQXgn0bujRs=
Subject key identifier: 0D:D8:22:EE:30:17:9C:14:DD:9D:38:A6:FA:31:66:D3:E8:7B:1B:74
Authority key identifier: A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5
Certificate issuer: /CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5
Certificate serial: 019D27724413A8714FB642947FF82C8E4600
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
Manifest number: 1885
Signing time: Thu 26 Mar 2026 00:01:33 +0000
Manifest this update: Thu 26 Mar 2026 00:01:33 +0000
Manifest next update: Fri 27 Mar 2026 00:01:33 +0000
Files and hashes: 1: dqDFD25-lBr1H4kU-f-eIMyH1ao.roa (hash: aZMJNfpwSLS2DvVJl8WR74MQgSeC0Vd4cP1ssZtEpxQ=)
2: oJfWos9CiA2-v0KjJRkHohyRpKU.crl (hash: CoSO3guy+ORRMuZZgbWNM323go+N/C3Ju7fEKbHHyZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:44:13:a8:71:4f:b6:42:94:7f:f8:2c:8e:46:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5
Validity
Not Before: Mar 26 00:01:33 2026 GMT
Not After : Mar 27 00:01:33 2026 GMT
Subject: CN=0dd822ee30179c14dd9d38a6fa3166d3e87b1b74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:39:01:98:a1:5e:79:bd:83:42:8f:e2:24:0c:
3d:af:14:84:73:01:54:e5:19:ad:be:c0:f6:14:84:
40:0a:c6:e1:98:84:a8:cf:cc:64:83:4d:3e:97:46:
5c:85:bd:0d:cf:1a:7a:33:f3:2f:d8:dd:d5:7e:3a:
ce:de:8f:bc:60:14:cc:68:82:fc:01:33:bc:0e:96:
1b:9c:48:52:4b:08:37:38:c6:1e:5e:be:03:17:36:
f1:3c:f5:a2:cd:54:6d:c7:92:ce:1e:f8:23:d8:95:
bd:27:a8:ca:62:73:f5:8f:42:25:e4:f4:c9:b0:4d:
31:cb:39:cb:61:91:af:f9:c9:0e:b3:04:bd:1e:74:
19:47:f9:75:73:1e:f3:49:26:f2:44:e6:d4:95:25:
17:56:c5:c8:5b:7c:33:1e:c6:80:70:67:24:4d:a0:
e4:d7:ee:b3:e6:16:98:2f:07:bc:7b:62:55:e0:58:
b4:24:3b:0f:f2:bd:fd:88:cf:74:4f:ff:05:b1:b9:
f0:e9:75:c5:2b:cc:ed:36:80:c2:a3:36:3c:24:da:
4a:30:be:81:51:6d:ab:fa:21:71:f7:5e:99:0b:cc:
3d:28:e9:ca:18:36:9f:6a:af:23:3f:e8:21:b4:02:
20:30:c7:f4:77:c4:cd:16:cd:68:ae:c8:ee:0a:da:
7e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:D8:22:EE:30:17:9C:14:DD:9D:38:A6:FA:31:66:D3:E8:7B:1B:74
X509v3 Authority Key Identifier:
keyid:A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:22:6c:23:db:78:fa:e8:94:1b:ac:47:fc:2b:22:41:bd:16:
cf:0b:9e:77:d2:21:a1:41:14:86:b3:27:ce:db:39:2c:68:a2:
ab:fa:bd:b4:c8:0a:7a:79:b4:6a:09:79:6c:dd:25:c0:b4:c9:
b1:84:a7:09:de:62:86:6a:36:c2:03:90:fe:ca:71:cf:ef:a3:
60:ad:ad:ea:66:c6:03:8c:7d:63:0a:f0:0e:71:43:e8:57:2f:
a7:45:6c:7a:9c:47:ee:9b:89:9b:c1:1b:fb:25:3c:34:3f:c5:
14:9d:91:83:67:d3:e8:6b:ae:6b:d9:d8:69:d1:be:4e:b3:4c:
8b:be:f2:9e:9f:17:a5:40:5c:a0:f4:ff:b3:29:7e:31:92:92:
74:53:3c:a3:c0:51:60:7c:31:bc:cb:39:83:f2:5b:48:45:46:
6b:29:ab:a3:4f:20:0b:8a:18:d4:6c:99:a6:bc:a1:07:63:b6:
24:f4:98:d0:75:ac:ce:5c:f4:9b:30:fb:4a:a4:5c:a4:93:39:
af:ce:f9:d7:14:b4:5b:cf:f8:a9:19:6f:d9:7a:0a:82:54:0b:
8e:92:46:f4:d5:ac:ac:b8:02:3f:3d:a6:f0:4f:2a:c3:2c:85:
ca:4e:a7:d0:db:26:05:1e:18:43:08:90:92:4f:48:eb:a0:7c:
3f:bb:49:df
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nckQTqHFPtkKUf/gsjkYAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwOTdkNmEyY2Y0Mjg4MGRiZWJmNDJhMzI1MTkwN2EyMWM5
MWE0YTUwHhcNMjYwMzI2MDAwMTMzWhcNMjYwMzI3MDAwMTMzWjAzMTEwLwYDVQQD
EygwZGQ4MjJlZTMwMTc5YzE0ZGQ5ZDM4YTZmYTMxNjZkM2U4N2IxYjc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjzkBmKFeeb2DQo/iJAw9rxSEcwFU
5RmtvsD2FIRACsbhmISoz8xkg00+l0Zchb0Nzxp6M/Mv2N3VfjrO3o+8YBTMaIL8
ATO8DpYbnEhSSwg3OMYeXr4DFzbxPPWizVRtx5LOHvgj2JW9J6jKYnP1j0Il5PTJ
sE0xyznLYZGv+ckOswS9HnQZR/l1cx7zSSbyRObUlSUXVsXIW3wzHsaAcGckTaDk
1+6z5haYLwe8e2JV4Fi0JDsP8r39iM90T/8Fsbnw6XXFK8ztNoDCozY8JNpKML6B
UW2r+iFx916ZC8w9KOnKGDafaq8jP+ghtAIgMMf0d8TNFs1orsjuCtp+IwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA3YIu4wF5wU3Z04pvoxZtPoext0MB8GA1UdIwQY
MBaAFKCX1qLPQogNvr9CoyUZB6IckaSlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0pmV29zOUNpQTItdjBLakpSa0hvaHlScEtVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS80YzJiNjgtODE4Yi00OTAyLWI0MmYt
NmZjYWYyNzI5YmU1LzEvb0pmV29zOUNpQTItdjBLakpSa0hvaHlScEtVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS80YzJiNjgtODE4Yi00OTAyLWI0MmYtNmZjYWYyNzI5YmU1
LzEvb0pmV29zOUNpQTItdjBLakpSa0hvaHlScEtVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAICJsI9t4
+uiUG6xH/CsiQb0Wzwued9IhoUEUhrMnzts5LGiiq/q9tMgKenm0agl5bN0lwLTJ
sYSnCd5ihmo2wgOQ/spxz++jYK2t6mbGA4x9YwrwDnFD6Fcvp0VsepxH7puJm8Eb
+yU8ND/FFJ2Rg2fT6Guua9nYadG+TrNMi77ynp8XpUBcoPT/syl+MZKSdFM8o8BR
YHwxvMs5g/JbSEVGaymro08gC4oY1GyZpryhB2O2JPSY0HWszlz0mzD7SqRcpJM5
r8751xS0W8/4qRlv2XoKglQLjpJG9NWsrLgCPz2m8E8qwyyFyk6n0NsmBR4YQwiQ
kk9I66B8P7tJ3w==
-----END CERTIFICATE-----
Generated at Thu Mar 26 09:57:05 2026 by rpki-client