Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
File: oJfWos9CiA2-v0KjJRkHohyRpKU.mft (raw, json)
Hash identifier: laxnlpADCFZ8zyOnFphQbPVI35DW1EnL72NN56jk9iw=
Subject key identifier: 27:DA:68:58:42:C5:4C:45:9F:3C:60:46:59:C8:A9:1C:E9:01:49:21
Authority key identifier: A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5
Certificate issuer: /CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5
Certificate serial: 019E1EA3049142D95DF1FF57391F426D4180
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
Manifest number: 1905
Signing time: Wed 13 May 2026 00:01:00 +0000
Manifest this update: Wed 13 May 2026 00:01:00 +0000
Manifest next update: Thu 14 May 2026 00:01:00 +0000
Files and hashes: 1: dqDFD25-lBr1H4kU-f-eIMyH1ao.roa (hash: aZMJNfpwSLS2DvVJl8WR74MQgSeC0Vd4cP1ssZtEpxQ=)
2: oJfWos9CiA2-v0KjJRkHohyRpKU.crl (hash: 4PqwC42MUrH9WjWuUkjseqUg1QUo7cSwWxgq1bq0SPA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:04:91:42:d9:5d:f1:ff:57:39:1f:42:6d:41:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5
Validity
Not Before: May 13 00:01:00 2026 GMT
Not After : May 14 00:01:00 2026 GMT
Subject: CN=27da685842c54c459f3c604659c8a91ce9014921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:15:9e:10:77:72:7c:6b:0c:73:24:11:07:44:
d7:a4:4f:91:72:16:4d:70:12:3e:e7:e9:a5:59:b9:
6a:19:e2:31:b2:59:be:6f:79:18:95:a8:6a:38:67:
35:4a:ae:13:c3:95:d8:c6:4c:90:a7:15:07:19:21:
bd:bb:98:76:36:0a:ff:77:8f:fd:fd:9f:48:3d:f1:
a6:14:87:01:68:58:5d:dc:74:98:75:08:b9:b1:70:
84:34:28:49:9a:cf:0b:3f:df:41:f8:b9:c5:cf:75:
55:44:3d:99:ad:cd:5d:67:43:98:93:27:59:e0:7c:
5a:bc:c4:88:a7:0b:c3:d9:17:d9:a4:32:0f:21:75:
b1:f3:e6:8f:58:52:b1:24:4d:7c:bf:01:bb:f1:98:
cb:6d:ba:e5:47:19:93:ba:24:ae:57:04:f9:48:76:
65:3f:98:31:42:c2:33:3a:8d:ea:6b:84:9b:28:0d:
23:85:ec:64:f5:80:51:df:66:1e:32:a5:87:aa:25:
2d:22:c4:23:df:80:25:83:45:19:c1:7b:73:3a:34:
32:37:91:c5:1c:42:5a:13:4f:6c:60:44:d9:98:ff:
1b:14:1e:ed:8b:9f:1f:13:38:25:3a:be:f4:a2:a3:
92:3a:b8:c3:df:1d:cf:da:41:b5:09:35:8f:5c:75:
1a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:DA:68:58:42:C5:4C:45:9F:3C:60:46:59:C8:A9:1C:E9:01:49:21
X509v3 Authority Key Identifier:
keyid:A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:dd:09:9e:dd:b0:8d:2b:d2:c8:32:0d:7b:5a:49:67:f4:af:
ff:cb:30:6f:36:d8:df:69:5d:ea:ba:d7:24:ac:29:b3:08:aa:
be:60:77:45:a3:11:d6:d9:7c:6d:06:a5:fa:ec:ce:49:bc:f3:
65:30:83:8d:f2:d5:19:f4:4d:a6:2e:fc:78:e5:96:79:52:35:
a7:3c:b6:25:d3:ca:c3:f3:e5:eb:6e:24:9a:9a:59:75:63:35:
eb:11:4c:d8:5b:a1:18:f8:2c:35:52:9a:44:99:c1:07:23:e7:
8d:a4:0f:0d:02:6c:43:5b:86:dd:e7:14:b4:bf:70:2d:89:e8:
50:23:0c:2e:e4:b5:5a:89:2c:2f:7b:85:be:e8:e0:af:f4:9a:
88:b8:39:5d:7a:c1:1e:ea:0b:94:20:97:06:b9:ba:b3:e2:7c:
3c:b1:4f:45:75:6e:2a:a3:1a:54:ef:64:2e:72:04:80:c5:22:
63:cf:33:cc:07:03:b0:d4:14:3d:62:7d:8e:9b:68:42:a8:86:
cd:aa:3d:94:00:ab:93:bf:b0:23:c4:5e:9c:3e:bc:49:39:d8:
d9:7c:74:d2:fb:0f:5d:d2:14:d6:8c:63:3d:f3:b1:2d:eb:9d:
d1:71:f9:c3:12:39:78:d4:98:5b:63:f2:9a:e3:48:47:d7:61:
c5:56:20:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:32:53 2026 by rpki-client