Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
File: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft (raw, json)
Hash identifier: LFxtjgEQhR/16cAXk7NRI5eH3dOCTTZdJvL2h/JfkVY=
Subject key identifier: 10:61:6B:4B:4A:D2:AB:63:0B:06:7B:52:B4:6A:19:0F:47:52:24:37
Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
Certificate issuer: /CN=a09fda047b3a0b1c820435e699388660da32c63f
Certificate serial: 019CAE6C01BA5BF454B7DC1E3620A7046EA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
Manifest number: 07A3
Signing time: Mon 02 Mar 2026 12:00:39 +0000
Manifest this update: Mon 02 Mar 2026 12:00:39 +0000
Manifest next update: Tue 03 Mar 2026 12:00:39 +0000
Files and hashes: 1: T3IIdcu9O4RqtWN63OnvjHlxoHA.roa (hash: mcKH90gzUrsNVUfzI9EqajlTYUwudYLzyU2jnBM19/w=)
2: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl (hash: bqDEOMnTiJVshS4+AXBrQBWKq0Y16jlC5VjQF7Bh+Ik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 12:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:6c:01:ba:5b:f4:54:b7:dc:1e:36:20:a7:04:6e:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f
Validity
Not Before: Mar 2 12:00:39 2026 GMT
Not After : Mar 3 12:00:39 2026 GMT
Subject: CN=10616b4b4ad2ab630b067b52b46a190f47522437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:70:9b:21:a0:98:73:d3:62:6f:54:d0:93:72:
4b:12:ef:b5:b3:f9:2d:51:15:1d:11:37:d4:09:6b:
61:15:c9:04:ba:e2:f1:70:d4:3b:af:c1:84:41:dd:
a9:1d:ad:d3:b5:e2:07:e4:5a:cc:87:ba:3b:b3:4a:
00:d8:e0:1b:21:80:db:54:46:82:6f:e3:d4:f4:58:
df:41:51:76:4a:2c:d0:a2:1a:95:8b:56:a7:bf:98:
2f:6c:81:db:6b:3c:bc:a1:a8:aa:59:56:c8:25:82:
50:e1:1c:76:ed:42:fa:8b:05:fb:8f:50:3b:3e:e7:
2c:d3:38:e6:3e:b4:03:a6:48:c8:75:91:fa:be:a6:
90:cb:8a:9a:e8:3d:49:fa:7c:59:81:6f:86:df:61:
a3:7a:2d:77:a9:c6:9a:63:d5:92:48:5f:e2:9f:bf:
65:c5:d1:1b:b5:9f:91:33:91:e8:d4:f6:66:73:47:
60:06:d2:75:4b:f6:8f:ee:7a:b1:8e:e1:ed:71:45:
09:9b:4e:3f:c6:ed:2e:57:c4:83:49:7a:af:02:f3:
47:69:3a:ef:fd:55:fa:ab:27:2f:5a:ab:4b:60:45:
a2:72:62:a1:a2:9e:1a:f8:90:cd:86:57:1c:4d:23:
1f:8c:7e:8f:d7:77:00:c2:19:df:7d:02:62:10:ee:
7f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:61:6B:4B:4A:D2:AB:63:0B:06:7B:52:B4:6A:19:0F:47:52:24:37
X509v3 Authority Key Identifier:
keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:d2:21:ac:6b:b1:cc:a5:36:da:65:f9:fd:de:b2:ae:7b:20:
b8:f4:14:1e:44:94:ff:e7:a6:af:94:56:79:3b:22:61:14:aa:
ac:3d:44:bc:80:68:70:c2:33:47:b7:99:e6:7f:8d:22:bd:64:
f3:b7:28:75:70:5c:15:95:24:5e:90:df:dc:a4:1a:c3:75:48:
7a:3c:86:01:c4:7b:8b:f0:4a:fa:0c:68:cc:51:d0:9c:59:0e:
8e:20:6f:7c:fe:eb:9d:de:79:4b:ba:e4:2f:bc:1b:74:f0:8d:
06:25:cb:4b:01:54:bb:d9:37:4f:d6:4f:73:cb:3e:3e:2e:da:
9a:29:0e:05:de:cd:1f:71:ce:fd:48:9f:01:45:4e:b1:0c:9e:
a3:61:87:fd:af:25:a2:e5:ba:ab:82:08:0f:f6:58:63:2d:77:
f5:a9:82:f7:15:70:b6:2f:bb:52:00:57:83:e9:5b:5e:55:8c:
f8:6b:d6:01:3f:2b:83:95:3a:bc:fd:0f:d5:a4:e3:fc:30:a9:
ba:fd:35:e7:9e:3a:ae:92:b2:a4:54:1e:ee:f8:3b:17:b2:88:
48:74:6c:4c:c5:38:4d:b7:06:4d:e3:aa:15:31:a0:bd:d7:a1:
22:5d:48:a5:96:87:b2:c1:a0:c9:2e:c3:6f:0b:68:3a:5f:05:
d1:f0:c3:f6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyubAG6W/RUt9weNiCnBG6gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwOWZkYTA0N2IzYTBiMWM4MjA0MzVlNjk5Mzg4NjYwZGEz
MmM2M2YwHhcNMjYwMzAyMTIwMDM5WhcNMjYwMzAzMTIwMDM5WjAzMTEwLwYDVQQD
EygxMDYxNmI0YjRhZDJhYjYzMGIwNjdiNTJiNDZhMTkwZjQ3NTIyNDM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjXCbIaCYc9Nib1TQk3JLEu+1s/kt
URUdETfUCWthFckEuuLxcNQ7r8GEQd2pHa3TteIH5FrMh7o7s0oA2OAbIYDbVEaC
b+PU9FjfQVF2SizQohqVi1anv5gvbIHbazy8oaiqWVbIJYJQ4Rx27UL6iwX7j1A7
Pucs0zjmPrQDpkjIdZH6vqaQy4qa6D1J+nxZgW+G32Gjei13qcaaY9WSSF/in79l
xdEbtZ+RM5Ho1PZmc0dgBtJ1S/aP7nqxjuHtcUUJm04/xu0uV8SDSXqvAvNHaTrv
/VX6qycvWqtLYEWicmKhop4a+JDNhlccTSMfjH6P13cAwhnffQJiEO5/1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBBha0tK0qtjCwZ7UrRqGQ9HUiQ3MB8GA1UdIwQY
MBaAFKCf2gR7OgscggQ15pk4hmDaMsY/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi84YjRkMzItMDM2NS00ZGFhLTlkNWIt
Mjk5MjBlNTE2N2Q5LzEvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi84YjRkMzItMDM2NS00ZGFhLTlkNWItMjk5MjBlNTE2N2Q5
LzEvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAttIhrGux
zKU22mX5/d6yrnsguPQUHkSU/+emr5RWeTsiYRSqrD1EvIBocMIzR7eZ5n+NIr1k
87codXBcFZUkXpDf3KQaw3VIejyGAcR7i/BK+gxozFHQnFkOjiBvfP7rnd55S7rk
L7wbdPCNBiXLSwFUu9k3T9ZPc8s+Pi7amikOBd7NH3HO/UifAUVOsQyeo2GH/a8l
ouW6q4IID/ZYYy139amC9xVwti+7UgBXg+lbXlWM+GvWAT8rg5U6vP0P1aTj/DCp
uv015546rpKypFQe7vg7F7KISHRsTMU4TbcGTeOqFTGgvdehIl1IpZaHssGgyS7D
bwtoOl8F0fDD9g==
-----END CERTIFICATE-----
Generated at Mon Mar 2 16:48:17 2026 by rpki-client