Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
File: oWldVVgkHgSoctwTRomPLOpw3-c.mft (raw, json)
Hash identifier: 5UPKGy2XQ44xhuEmb6iiArmLcupHx3J9d4jGuhOYLZo=
Subject key identifier: 26:DA:A9:98:15:55:2B:18:41:A4:63:DF:1D:E3:C0:A9:D0:B5:F0:05
Authority key identifier: A1:69:5D:55:58:24:1E:04:A8:72:DC:13:46:89:8F:2C:EA:70:DF:E7
Certificate issuer: /CN=a1695d5558241e04a872dc1346898f2cea70dfe7
Certificate serial: 019DA34161F0093D52F38F4F05BD517D7D26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
Manifest number: 088A
Signing time: Sun 19 Apr 2026 01:01:04 +0000
Manifest this update: Sun 19 Apr 2026 01:01:04 +0000
Manifest next update: Mon 20 Apr 2026 01:01:04 +0000
Files and hashes: 1: UEDe2YcCkK60qxLQ7EMjKMaLeVk.roa (hash: 9ZEiLEpeNHQPSSjaHm5KtU2EfQDw++56segRjLKG218=)
2: oWldVVgkHgSoctwTRomPLOpw3-c.crl (hash: qz9mhwdyXjl4IoMnblki6quWBEzXJTFQ/JUoreiYISw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 01:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:41:61:f0:09:3d:52:f3:8f:4f:05:bd:51:7d:7d:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1695d5558241e04a872dc1346898f2cea70dfe7
Validity
Not Before: Apr 19 01:01:04 2026 GMT
Not After : Apr 20 01:01:04 2026 GMT
Subject: CN=26daa99815552b1841a463df1de3c0a9d0b5f005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:5a:0c:d5:7f:05:ad:96:4a:b3:7d:3b:37:51:
5f:c0:a1:4b:ae:14:1a:c0:95:6b:d4:bf:8d:4c:0a:
af:92:96:05:ec:e3:22:9e:e7:e6:a2:64:f9:d7:02:
a4:fe:92:c6:f0:9b:85:73:a9:35:83:ef:3d:fa:a5:
25:0c:b1:74:e4:dd:17:0e:00:66:23:ef:11:6f:58:
1c:e2:eb:49:40:3e:20:a8:f5:b1:15:c1:aa:dd:23:
f1:bc:9e:6d:7c:84:75:3a:f9:04:28:b3:13:62:4d:
3c:c6:94:63:0b:cd:81:2e:84:1a:73:a6:ca:76:49:
17:1f:12:f3:e3:4e:37:bb:44:d8:4d:27:12:83:ec:
39:86:c0:41:1f:f5:0b:86:88:37:09:4e:ef:8b:40:
35:49:21:21:d6:6d:d5:61:82:13:62:2c:cc:86:1b:
10:5b:7e:7f:c3:f8:a7:41:4b:be:6c:11:cf:f5:19:
cb:d0:a5:f3:3a:a8:c2:7d:51:17:1a:c6:95:f7:d3:
46:aa:b7:56:7e:10:d9:88:28:05:d5:8d:5e:7b:29:
0e:f4:7e:e2:3a:90:33:d3:ba:f0:d7:bf:1f:6e:c8:
ac:f3:4d:c7:d9:4b:67:13:71:01:06:cc:33:15:4d:
f6:ec:b8:3a:cc:52:83:43:29:1e:87:76:80:57:ab:
b8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:DA:A9:98:15:55:2B:18:41:A4:63:DF:1D:E3:C0:A9:D0:B5:F0:05
X509v3 Authority Key Identifier:
keyid:A1:69:5D:55:58:24:1E:04:A8:72:DC:13:46:89:8F:2C:EA:70:DF:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:99:97:eb:a4:fb:72:75:37:08:cc:12:58:8d:ac:3e:90:f3:
2e:c1:37:a9:ec:40:c8:31:fa:e1:33:8e:59:b6:39:c2:a4:65:
c4:8f:d4:44:f6:50:1a:15:11:a2:d6:fd:fb:31:20:f5:5a:be:
45:e6:3d:34:70:e1:08:17:82:d3:fc:99:67:ae:06:2c:51:b3:
10:dd:7c:4c:f6:3e:48:30:03:3e:65:89:f1:e3:5f:6d:6f:3c:
6a:b4:05:63:8c:eb:cf:9b:11:d4:3c:8a:85:79:51:37:e0:25:
8e:25:a0:4d:33:df:33:1a:b1:86:bc:3e:e9:ed:ad:0b:08:4d:
36:61:b9:0b:9f:f4:2c:a4:b8:35:60:e2:f5:72:b7:18:f4:54:
6c:91:44:60:a7:ef:a8:79:0b:ee:16:d0:d5:7f:ad:1b:3c:6d:
c2:ef:f4:60:dc:b9:d6:01:29:bc:f4:d8:bf:b9:c1:35:5a:db:
09:12:7d:2a:18:29:0f:33:38:a9:1d:64:5e:ef:d4:43:de:14:
0a:20:c5:03:bf:e3:3d:55:22:0a:bf:50:56:3f:6b:52:26:57:
30:fb:54:15:44:a2:6a:6d:e9:ac:5c:9c:b5:57:99:86:63:5b:
1a:be:dd:ee:a4:b5:6a:74:17:5d:01:0f:96:b6:23:00:8b:07:
3e:60:72:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:45:31 2026 by rpki-client