Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
File: oWKOOfRxrdx15xo5G4Ldklx_CB0.mft (raw, json)
Hash identifier: v/nDrj+rzEGnE7/+F9VGq0Ehf+UeCkayq37p1Jgerw0=
Subject key identifier: 16:79:E1:2A:A2:24:4A:69:76:C4:82:C6:57:C3:B7:FA:7B:DA:8F:A1
Authority key identifier: A1:62:8E:39:F4:71:AD:DC:75:E7:1A:39:1B:82:DD:92:5C:7F:08:1D
Certificate issuer: /CN=a1628e39f471addc75e71a391b82dd925c7f081d
Certificate serial: 019D27A9279271FF0FA37E5B40BEFBE69395
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWKOOfRxrdx15xo5G4Ldklx_CB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
Manifest number: 1459
Signing time: Thu 26 Mar 2026 01:01:30 +0000
Manifest this update: Thu 26 Mar 2026 01:01:30 +0000
Manifest next update: Fri 27 Mar 2026 01:01:30 +0000
Files and hashes: 1: 5ATSOSiA10EtAdDvyzpiFcAS2U0.roa (hash: FEzcVGC/mYd4L2CAAAA7gfNC+WWkBe4b/x0RPbYqcaw=)
2: oWKOOfRxrdx15xo5G4Ldklx_CB0.crl (hash: JfbeOshgIMrsw+SFwRZ0dU+CXK/rECvLl2gtBUDQjis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oWKOOfRxrdx15xo5G4Ldklx_CB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a9:27:92:71:ff:0f:a3:7e:5b:40:be:fb:e6:93:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1628e39f471addc75e71a391b82dd925c7f081d
Validity
Not Before: Mar 26 01:01:30 2026 GMT
Not After : Mar 27 01:01:30 2026 GMT
Subject: CN=1679e12aa2244a6976c482c657c3b7fa7bda8fa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:54:a7:b2:8e:47:0a:26:6b:65:71:79:3c:41:
df:1f:34:96:25:36:34:78:e4:fc:c1:07:1c:67:f2:
a1:a0:0f:d6:61:53:5f:95:18:f8:4e:41:30:db:6c:
3e:70:af:b3:6c:1a:f1:33:a5:98:07:6e:9b:8a:45:
43:12:0f:24:97:18:d8:f6:76:d1:79:ff:16:e6:08:
cf:1e:c0:46:86:91:c2:37:47:fc:30:21:1f:38:80:
5a:7f:7e:95:18:e5:73:83:6e:df:1a:19:7d:bc:9f:
c7:bf:63:bc:a9:08:5a:51:2c:88:2a:24:b5:ec:e4:
25:6a:b5:5e:3b:5d:bd:5f:6d:58:e9:4f:77:da:63:
84:ad:4c:f6:c9:b2:60:44:b7:ce:88:8c:36:17:61:
d8:e9:d7:87:39:bc:24:34:80:6b:04:ab:ba:f5:20:
69:b4:b2:79:c3:02:ef:ef:6f:28:d7:a9:85:18:af:
56:89:a2:1f:c2:f2:e7:e2:d5:ca:c2:ff:0b:91:f0:
2c:3c:31:62:9d:fb:58:d6:55:aa:bb:dd:2d:4c:14:
9f:30:e3:93:1d:d5:f8:7b:bf:a1:7e:12:6f:62:a8:
66:6f:d5:41:bb:bf:fc:0d:3e:35:f4:7e:49:4f:38:
75:01:d0:59:c0:c8:ac:52:85:8e:02:b5:43:b1:31:
1a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:79:E1:2A:A2:24:4A:69:76:C4:82:C6:57:C3:B7:FA:7B:DA:8F:A1
X509v3 Authority Key Identifier:
keyid:A1:62:8E:39:F4:71:AD:DC:75:E7:1A:39:1B:82:DD:92:5C:7F:08:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWKOOfRxrdx15xo5G4Ldklx_CB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:00:6d:f3:b7:81:b2:c4:e3:56:5c:82:61:e6:1f:6a:75:7b:
39:c7:dd:e1:dd:8a:74:67:97:3d:90:54:67:88:6e:61:94:73:
0a:0b:59:3e:24:7a:10:b9:b5:57:49:8e:04:ce:25:94:31:ac:
4b:df:98:4b:51:00:5a:32:7b:db:65:db:b1:2f:19:69:75:6f:
63:fb:5d:4a:9b:50:e4:5e:12:33:6e:f5:0c:e1:85:7f:af:1f:
4e:2f:6e:59:0a:4a:d8:5f:77:2c:78:aa:e0:32:53:8c:89:38:
d6:55:11:91:50:48:c9:0c:7b:66:0c:a1:00:12:66:52:83:86:
b3:1d:95:de:a8:c3:5e:94:43:fa:3e:ce:30:ba:dc:2c:f6:d9:
69:b3:28:78:fa:db:2e:f7:d5:54:a9:7a:18:b5:5b:7f:b6:97:
2a:69:b9:b1:70:ce:5f:e0:0b:ee:18:2f:69:2b:1c:9b:5b:f6:
8c:7d:70:48:ca:fb:a7:c5:2a:73:70:85:d3:53:c6:cd:3b:b2:
b5:48:f0:ab:ac:dc:87:9f:d7:56:39:44:cc:67:e3:73:69:4c:
db:1b:c0:f3:44:0e:0a:1e:76:e9:ae:31:e0:6f:6e:01:89:d0:
b2:f0:e5:6b:69:fd:f2:28:9c:bb:63:69:3e:fe:c5:63:02:6b:
18:1e:44:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:23:08 2026 by rpki-client