Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
File: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft (raw, json)
Hash identifier: DSX5vOSgP6l196WcHDDub8VNHjnYpvLPlX1fi2Bufvo=
Subject key identifier: 58:45:3F:8C:38:61:67:AA:B6:0C:46:CC:1D:12:40:A3:26:13:1C:60
Authority key identifier: A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
Certificate issuer: /CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Certificate serial: 019D9999B414B5BAA890635D2A5EE2020B62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 04:01:20 +0000
Manifest this update: Fri 17 Apr 2026 04:01:20 +0000
Manifest next update: Sat 18 Apr 2026 04:01:20 +0000
Files and hashes: 1: UDOQeKm21_HbogaX80qPDYGLszg.roa (hash: oQCYUWGJBiukXuu22aVYGVLYnrdXQVCn7RQqhgm8PBQ=)
2: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl (hash: RfFa2c20QrOpWjZIS9Sl+19dcq0N8CgHg1CUzqI2kLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:b4:14:b5:ba:a8:90:63:5d:2a:5e:e2:02:0b:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Validity
Not Before: Apr 17 04:01:20 2026 GMT
Not After : Apr 18 04:01:20 2026 GMT
Subject: CN=58453f8c386167aab60c46cc1d1240a326131c60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e7:bf:72:5b:95:31:b6:54:0e:b7:61:e5:2f:
07:89:8d:0b:fc:85:d2:bf:31:8a:ed:61:32:3c:79:
60:d8:b7:c8:79:15:59:ec:fe:85:41:28:eb:9e:ed:
ce:c3:a3:ac:ef:18:13:05:f0:1c:84:26:20:63:60:
c6:48:a1:58:f4:27:54:01:c7:de:65:89:8b:77:1d:
cf:c6:64:ee:17:b1:a7:e0:f7:19:d0:a3:ae:6c:44:
4e:15:bb:c7:5d:fd:97:fd:bd:d3:24:e2:50:d8:02:
50:5c:8c:e6:28:4b:48:a5:5e:7d:db:67:7f:d0:91:
8e:58:25:0a:14:d5:a4:8c:67:5a:dc:11:68:5a:3a:
7f:72:5d:96:bf:e1:a4:79:07:db:39:bd:fd:25:27:
50:a8:08:99:2e:4b:72:80:b8:79:1b:24:e8:ad:9d:
c3:53:37:b4:b5:f2:a0:df:6f:63:81:cf:de:aa:c0:
f0:81:17:20:4a:20:97:5d:62:f0:7e:97:2a:ce:a5:
6e:9b:05:7e:e2:fa:8c:f9:8e:ec:22:ab:b7:53:84:
cc:24:81:ae:d8:56:71:af:ed:fd:be:9a:02:25:22:
5e:d2:4d:1b:5b:b3:01:c9:82:c2:c8:6d:f6:2a:35:
a5:f6:f2:c5:a7:56:00:e2:a1:bf:1b:ed:e3:c5:45:
b7:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:45:3F:8C:38:61:67:AA:B6:0C:46:CC:1D:12:40:A3:26:13:1C:60
X509v3 Authority Key Identifier:
keyid:A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:e7:ca:f8:c3:09:9f:80:31:eb:e2:db:2f:ab:24:84:f3:4d:
5b:8f:18:43:92:da:b8:a1:82:e3:4a:90:a8:80:e9:e7:ce:6a:
a9:b5:e1:0e:6a:f5:fc:19:56:c9:28:81:00:3a:f2:3f:0b:df:
16:22:e8:17:e0:ce:3a:05:da:69:29:40:f8:89:31:e5:c8:40:
63:ba:f5:b0:b1:e6:34:16:f7:77:b9:c3:02:a7:65:06:7b:62:
90:95:4b:7f:f6:b3:3c:c6:11:30:96:1d:3c:0c:a7:7a:63:1e:
7f:b2:db:95:39:9d:89:c4:4a:37:d4:7a:38:a1:81:21:01:a5:
ad:c8:23:fe:73:5b:67:9e:a9:64:a7:81:bc:82:80:02:0f:1e:
3a:c7:e4:9f:d6:d6:23:38:52:8a:74:8f:38:fc:52:7f:02:c2:
38:20:da:53:a5:3f:8b:37:41:10:a1:21:3c:21:b5:e7:b3:d6:
3a:29:41:a5:64:12:68:b7:a7:79:c1:95:57:bd:8d:7b:44:c8:
b7:fb:1c:5a:fd:ae:d5:95:8e:63:d0:ee:ab:42:b4:9d:25:2f:
bb:2c:89:2b:51:33:6b:cc:3e:dd:d8:a1:9f:98:f3:4d:c3:d8:
b0:0d:10:52:f9:e8:9d:63:c6:8e:91:af:e9:6e:d4:df:57:54:
ed:ba:6e:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:43:53 2026 by rpki-client