Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
File: oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft (raw, json)
Hash identifier: IUVNQ4tKZ356r7grHpouFt77J00yCpUkL23DxFpbiHg=
Subject key identifier: 99:0A:CA:32:D1:42:ED:8F:CC:0F:8B:2E:49:79:91:76:6D:C5:BA:A5
Authority key identifier: A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
Certificate issuer: /CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Certificate serial: 019D99998BAB92F90952CA0B122B4C328B85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
Manifest number: 0A34
Signing time: Fri 17 Apr 2026 04:01:09 +0000
Manifest this update: Fri 17 Apr 2026 04:01:09 +0000
Manifest next update: Sat 18 Apr 2026 04:01:09 +0000
Files and hashes: 1: AtniHnWS_m5XJnsdI3EUIOstzH4.roa (hash: KMRx9/qM9+4wF0F9XLzExOU323HbvcZo4zC4bgJQesg=)
2: oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl (hash: WGco+ROpoDiF4kd1x8596IzmFpATWqKB3AU3QDjdv14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:8b:ab:92:f9:09:52:ca:0b:12:2b:4c:32:8b:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Validity
Not Before: Apr 17 04:01:09 2026 GMT
Not After : Apr 18 04:01:09 2026 GMT
Subject: CN=990aca32d142ed8fcc0f8b2e497991766dc5baa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fa:73:64:a8:dd:ec:1a:31:59:57:f9:82:26:
33:8f:72:44:c8:5a:cb:d0:f3:58:0c:52:4b:5d:b9:
a7:ab:bf:58:85:74:52:45:63:08:24:0c:0a:26:95:
82:0e:93:6a:e6:9a:34:9e:e7:0b:36:c9:6d:46:b8:
92:fc:9f:d1:63:bc:af:36:19:b9:e4:6e:fc:cc:91:
d2:38:50:66:7c:9c:e0:05:b2:ae:f5:8f:a1:5c:72:
c7:bf:55:26:6d:9b:17:0d:05:86:41:02:5c:98:08:
cb:61:48:e8:56:6e:da:88:ad:f3:ec:ae:3f:b4:c6:
9f:49:5e:a9:da:3a:1a:25:02:22:00:3a:cd:48:25:
2f:19:a9:d9:d0:fc:f3:1f:2e:f0:85:06:0e:66:07:
f6:b8:50:8d:11:fd:a1:c9:54:18:f9:26:90:74:04:
bd:85:53:50:4c:6b:52:4e:8b:21:97:c3:14:43:56:
21:88:c6:4c:00:0d:72:5a:13:d9:74:4d:05:dd:d9:
94:68:f7:bc:6b:bf:6b:e1:a8:ef:f0:91:5b:8f:3e:
ec:f8:5e:3d:23:f0:3d:5d:16:98:92:75:49:bb:33:
14:57:da:7c:fa:73:3e:80:2a:93:48:33:01:87:c3:
51:91:3f:63:97:b9:ba:03:eb:6c:bc:75:f7:37:0a:
e0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:0A:CA:32:D1:42:ED:8F:CC:0F:8B:2E:49:79:91:76:6D:C5:BA:A5
X509v3 Authority Key Identifier:
keyid:A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:60:ab:07:45:6e:db:3b:42:37:8c:a6:45:f2:2e:11:6b:5a:
7c:f1:80:a9:fb:1e:23:31:3c:e8:f2:59:52:f4:66:1a:b9:ca:
e4:f6:30:ad:3e:7f:c3:67:db:0f:99:bc:87:a5:b0:c1:ee:d5:
fa:c3:8e:97:43:4a:23:c1:76:aa:60:64:da:ac:f3:93:c6:9a:
31:42:6e:14:88:c3:45:0f:73:0a:34:ea:39:1d:a8:9d:da:e2:
6e:1d:b5:38:05:01:73:bc:d2:7e:a9:9a:b7:51:ff:21:b8:4a:
2e:c7:ef:08:75:7a:fb:fa:bc:86:da:cc:4f:5d:ff:1c:ec:66:
84:64:a8:78:a0:54:68:45:f0:88:b1:c2:9c:74:df:ad:16:83:
83:6d:70:7a:b4:f8:f5:5e:31:03:76:70:af:d7:0d:61:25:42:
01:46:5f:13:21:6a:83:88:8e:25:05:67:95:2b:3d:32:e6:5c:
05:77:30:d8:6c:1e:d8:fd:cb:8f:f1:e1:1c:2d:22:0d:2c:ef:
ab:d1:6c:ad:9c:54:4c:ae:70:86:82:cf:9b:4c:f5:4a:3f:48:
f4:1e:f2:61:88:cf:f5:f1:b3:c2:1c:0c:d9:a7:bb:66:70:58:
05:36:34:b7:00:26:02:b3:28:64:18:4a:73:27:ee:e8:d7:32:
fc:a3:e7:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:49:53 2026 by rpki-client