Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
File: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft (raw, json)
Hash identifier: AWc9CCHMzEUy9fqPVvAOs8Q4tF8azUrZvljWKay/sgw=
Subject key identifier: A8:48:FA:6F:78:82:CF:CA:20:67:B4:E0:84:ED:79:89:46:81:56:6F
Authority key identifier: A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
Certificate issuer: /CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Certificate serial: 019CADFEA8E3EE9C078D4190A0EE4CF94B35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
Manifest number: 1845
Signing time: Mon 02 Mar 2026 10:01:13 +0000
Manifest this update: Mon 02 Mar 2026 10:01:13 +0000
Manifest next update: Tue 03 Mar 2026 10:01:13 +0000
Files and hashes: 1: UDOQeKm21_HbogaX80qPDYGLszg.roa (hash: oQCYUWGJBiukXuu22aVYGVLYnrdXQVCn7RQqhgm8PBQ=)
2: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl (hash: H6j8M9ziSAoDDB+5jJDRaWoOCb213TClaA1Bb6zwndQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:a8:e3:ee:9c:07:8d:41:90:a0:ee:4c:f9:4b:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Validity
Not Before: Mar 2 10:01:13 2026 GMT
Not After : Mar 3 10:01:13 2026 GMT
Subject: CN=a848fa6f7882cfca2067b4e084ed79894681566f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b6:12:34:bf:0b:b6:dd:70:e1:d2:b7:85:10:
db:2f:7b:81:1a:9b:a5:ba:b5:15:6a:4f:1e:18:57:
b0:d2:9a:4c:d1:bf:ee:1c:a0:f5:10:2d:78:6e:73:
5b:11:a0:ac:b4:93:73:75:18:b2:1f:a1:fa:9e:b6:
5b:f0:c5:4f:fc:6e:7c:5c:d3:f3:74:a8:22:9b:d3:
04:c4:33:fe:44:d2:52:69:84:c7:75:d4:1e:7e:06:
49:99:c5:de:c8:50:24:08:de:33:08:d8:81:8b:9b:
64:31:40:b2:bf:a2:00:3f:33:ce:8d:b0:d1:58:19:
2e:10:b6:40:ad:9f:49:91:76:ff:f5:eb:de:2f:93:
03:de:77:2f:1d:a7:f1:46:dd:90:6c:14:2a:c2:b9:
63:a7:8b:5c:5a:ab:14:5e:ae:3f:76:74:b5:69:ae:
4d:26:21:fd:b2:bb:cd:a9:8f:c3:b9:e0:ea:ec:84:
05:23:9b:e8:f7:6b:59:33:ca:38:13:d1:fc:5a:0d:
1e:b2:cc:a4:28:e4:99:7c:0b:15:d7:25:f9:81:2d:
25:aa:1c:03:be:5e:d9:e8:b0:34:41:f0:42:3e:26:
26:c4:9e:14:79:56:36:52:19:07:ad:08:15:b4:fc:
24:35:7e:4c:47:d0:c6:02:86:72:ad:e1:9b:93:34:
10:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:48:FA:6F:78:82:CF:CA:20:67:B4:E0:84:ED:79:89:46:81:56:6F
X509v3 Authority Key Identifier:
keyid:A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:7e:06:e7:3f:6f:a4:7d:ba:f1:89:7c:3f:88:c4:1f:10:2d:
79:49:3a:29:7a:6c:52:4d:ab:3d:b9:c6:17:14:57:1e:52:0e:
42:ed:20:be:29:8d:6e:12:48:27:6a:3b:f7:68:0a:47:38:72:
cf:55:1b:8b:49:b0:76:61:0d:06:17:03:08:2b:a8:89:61:f3:
45:c3:7a:81:43:42:92:20:38:59:50:6c:4b:74:9b:e1:28:11:
31:dc:91:a1:69:9f:83:86:b8:3a:d2:ef:49:c2:ba:c7:39:75:
64:ae:15:c5:cc:8d:8f:93:b8:8e:ae:bc:6c:a0:b3:b6:b1:e0:
96:1a:d9:f1:22:b1:db:e3:3e:19:dd:bf:37:04:a2:5c:a9:d6:
27:ff:23:ba:1b:f8:ae:14:bd:a1:9a:b7:ca:c1:c5:a2:c6:36:
01:0b:25:b3:f2:9b:d6:30:e9:86:d9:bc:9e:fb:06:cb:6d:dc:
97:0e:48:ca:f1:c6:14:0d:71:9c:7a:2e:d3:46:6b:93:91:1f:
6c:c3:c0:d7:61:2a:ca:db:6e:08:ec:04:d4:d6:5a:7e:35:a0:
14:17:33:6f:59:83:47:48:bf:33:62:8f:d6:0b:ce:1c:38:13:
57:e7:ce:14:47:73:6b:3a:d0:c3:cb:39:41:1e:3a:46:02:5e:
ae:2c:39:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:04:14 2026 by rpki-client