
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
File: oWldVVgkHgSoctwTRomPLOpw3-c.mft (raw, json)
Hash identifier: /uCTAHqM0Q8Jm0QxCF+Hlbzpc23lnR2jerFbQSwkH/U=
Subject key identifier: 67:F8:49:66:90:A1:6A:67:5D:1D:64:41:76:5E:81:A8:E1:E5:C4:DB
Authority key identifier: A1:69:5D:55:58:24:1E:04:A8:72:DC:13:46:89:8F:2C:EA:70:DF:E7
Certificate issuer: /CN=a1695d5558241e04a872dc1346898f2cea70dfe7
Certificate serial: 019CADFE9A5869F55E6D5AAD5D43C9275B3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
Manifest number: 080B
Signing time: Mon 02 Mar 2026 10:01:09 +0000
Manifest this update: Mon 02 Mar 2026 10:01:09 +0000
Manifest next update: Tue 03 Mar 2026 10:01:09 +0000
Files and hashes: 1: UEDe2YcCkK60qxLQ7EMjKMaLeVk.roa (hash: 9ZEiLEpeNHQPSSjaHm5KtU2EfQDw++56segRjLKG218=)
2: oWldVVgkHgSoctwTRomPLOpw3-c.crl (hash: ELjuPhh125TLWMbFPzUkgZJkpZyXcZXWQiaSWL+pqVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:9a:58:69:f5:5e:6d:5a:ad:5d:43:c9:27:5b:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1695d5558241e04a872dc1346898f2cea70dfe7
Validity
Not Before: Mar 2 10:01:09 2026 GMT
Not After : Mar 3 10:01:09 2026 GMT
Subject: CN=67f8496690a16a675d1d6441765e81a8e1e5c4db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:37:23:e6:0a:47:d9:0e:c8:90:3a:34:08:d2:
fd:71:f9:dd:b5:32:18:1d:2f:02:4a:87:15:68:e0:
98:5f:ef:bb:38:66:d3:8a:c7:b6:9d:a0:37:dd:0c:
79:55:79:35:e2:f5:68:28:50:43:e8:b7:3c:cc:11:
de:5f:e7:f6:17:bc:6a:c4:c2:18:e2:08:f6:48:13:
1c:b0:6b:f3:41:2a:9f:87:b1:c8:3d:4b:6b:fa:25:
59:67:bf:ed:0b:f0:d7:3a:8c:81:4a:69:d1:28:f8:
cd:49:27:0c:97:1f:cd:5a:eb:83:49:64:a0:8b:3a:
97:88:ec:2d:a5:d6:fc:70:c0:45:ef:90:7e:7c:f4:
de:1d:eb:d3:2c:a2:09:0b:21:6c:76:25:72:8f:47:
af:ec:da:cc:05:7e:55:d5:82:09:d6:4f:cf:c9:b6:
35:22:3f:64:81:7c:b8:cd:ec:4a:89:21:65:c4:f3:
f6:83:03:7d:e0:88:98:fd:85:b9:dd:8e:ef:91:fa:
b7:0a:d3:9f:03:ce:40:1f:c6:9a:45:f6:e2:27:f5:
aa:51:74:8b:93:4d:94:82:be:43:16:d0:81:08:24:
1e:17:bc:88:76:0c:de:eb:8c:e5:82:94:40:00:e0:
73:a0:81:cc:2a:f7:1f:80:e7:ef:39:a1:c1:da:6b:
21:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:F8:49:66:90:A1:6A:67:5D:1D:64:41:76:5E:81:A8:E1:E5:C4:DB
X509v3 Authority Key Identifier:
keyid:A1:69:5D:55:58:24:1E:04:A8:72:DC:13:46:89:8F:2C:EA:70:DF:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:3e:d1:10:79:c4:be:d9:99:9e:a8:09:dd:1c:cd:b5:79:79:
94:19:2b:6a:2f:36:61:0d:d2:17:6e:71:f3:70:b4:bd:b6:e9:
86:aa:3b:99:79:36:07:a4:75:9a:b6:9e:fb:a2:86:7e:75:57:
29:cb:11:98:ae:61:21:63:e5:38:eb:45:8a:ed:fb:45:90:ca:
5b:c1:1d:a3:9f:0b:da:59:d4:7b:ec:f1:af:f1:08:63:a2:62:
d1:97:b0:93:cb:0c:bc:28:ba:83:00:bd:6f:7e:d3:f1:46:e5:
81:2c:27:16:7a:12:b5:33:f3:ef:04:87:73:bc:ec:82:66:4c:
33:d6:5a:56:74:3c:10:43:74:85:99:85:68:b6:58:a6:89:40:
c1:8a:83:0a:db:e9:ee:a8:5d:a3:42:ee:f8:0b:be:b8:9c:18:
73:3e:ff:cc:6a:a4:1f:e7:cf:c5:62:96:9a:a5:23:16:df:89:
4b:7e:49:a2:e5:50:b3:a1:2e:e2:06:b9:3b:75:09:cf:0c:2c:
9d:24:92:1e:c4:2a:5a:72:3c:c4:20:9b:21:ec:9f:ba:98:37:
fb:ee:a5:8f:9f:ef:0a:12:86:fd:28:b6:4c:ca:3c:08:9d:f2:
c1:68:fc:12:42:27:27:de:f3:ef:4c:f7:b6:07:20:83:81:16:
f3:b9:ff:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:26:58 2026 by rpki-client