Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
File: oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft (raw, json)
Hash identifier: r0Kmxjys0GIi8nvMBZlGrfiAj/fu7FQA2dIH3GVF93M=
Subject key identifier: DE:8C:3D:B2:81:96:8B:57:21:76:46:B6:49:E1:83:C2:C1:75:8B:C8
Authority key identifier: A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
Certificate issuer: /CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Certificate serial: 019CAA21C8A9D0917EF0091A9F369518E9CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
Manifest number: 09B8
Signing time: Sun 01 Mar 2026 16:01:06 +0000
Manifest this update: Sun 01 Mar 2026 16:01:06 +0000
Manifest next update: Mon 02 Mar 2026 16:01:06 +0000
Files and hashes: 1: AtniHnWS_m5XJnsdI3EUIOstzH4.roa (hash: KMRx9/qM9+4wF0F9XLzExOU323HbvcZo4zC4bgJQesg=)
2: oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl (hash: ItXnhiq1pbf+hCbZ7dMwZi5hm18XEv9m1ZI9nAxW8pY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:c8:a9:d0:91:7e:f0:09:1a:9f:36:95:18:e9:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Validity
Not Before: Mar 1 16:01:06 2026 GMT
Not After : Mar 2 16:01:06 2026 GMT
Subject: CN=de8c3db281968b57217646b649e183c2c1758bc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c6:a0:7b:4f:46:c5:d5:26:d8:b9:0c:8e:52:
9c:47:0d:76:d2:ad:48:20:17:94:8d:9a:15:d7:27:
e0:b1:24:15:ce:f8:2f:9d:bc:00:56:a7:ca:2f:61:
52:cf:1f:ba:07:86:84:15:7b:3a:4b:21:70:e7:8c:
0f:6b:18:1d:4c:3e:5a:ff:76:00:b6:db:2e:61:f4:
86:f8:e2:06:de:34:fc:89:ac:e8:48:c0:60:8d:11:
c5:d7:70:87:55:1a:1f:31:6c:e2:03:9b:67:c6:bf:
85:af:6d:e3:c2:15:1b:03:c4:02:e0:c8:ab:54:06:
89:17:e9:2b:33:6a:8d:12:77:62:ef:65:e1:42:5a:
59:81:71:21:8f:f6:88:1d:be:d4:0d:7e:b0:22:d8:
04:22:bf:ce:0c:38:a5:68:d4:9b:85:e4:ac:f1:09:
72:fa:99:83:a7:57:55:30:32:f0:da:3f:cd:8f:70:
7b:3b:81:dc:cd:e2:98:8c:2a:86:29:44:5a:93:c5:
20:58:98:f2:9a:ec:02:33:6b:ca:a0:1d:89:60:7c:
3e:8f:54:cb:dd:d6:2e:8e:93:91:a7:1e:17:67:fa:
42:42:0a:84:76:aa:60:4a:1d:38:90:62:23:e8:48:
80:3c:e6:42:68:d4:a0:27:49:28:f1:d2:ee:cc:76:
b9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:8C:3D:B2:81:96:8B:57:21:76:46:B6:49:E1:83:C2:C1:75:8B:C8
X509v3 Authority Key Identifier:
keyid:A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:d7:8f:e7:65:4b:50:e2:88:9c:f9:0d:5f:61:96:3c:ac:31:
74:2b:96:19:20:db:a3:46:eb:7a:9d:8d:a5:1b:7b:76:76:88:
4f:f8:5e:06:98:ba:b9:9d:18:51:1f:8f:6d:b3:9d:37:70:98:
85:6d:de:98:06:31:80:10:4d:c4:6c:e9:18:f1:96:5a:fc:df:
91:fa:8d:2b:c9:b1:9c:f7:7a:9e:77:73:dd:f9:5b:da:b9:e8:
2e:e4:5e:7a:3c:e0:da:f5:04:d4:bb:7a:1b:40:7b:5d:66:16:
c8:29:d4:a0:20:ce:bb:0e:da:93:ee:f3:de:e5:26:7b:53:c0:
a4:15:b6:81:ac:ca:c1:a7:d9:87:2f:49:60:78:f4:55:90:b2:
67:40:c0:a1:21:b5:c5:b1:3d:80:2b:49:bf:15:43:d9:c3:80:
2c:3d:f6:d2:b7:ea:ef:99:f7:76:be:19:de:8e:33:f6:11:3f:
d5:a6:20:86:ec:9f:ab:37:0e:29:61:e0:c0:93:63:c4:1c:47:
cd:ff:3a:2e:16:25:23:25:ea:2a:91:ab:3d:46:9c:9d:d0:ed:
7d:7c:b2:b6:b8:6d:3c:45:ec:7c:11:d4:3a:5d:37:3b:ba:38:
ac:05:8a:dd:20:a0:5c:9d:7e:e2:86:03:93:bf:cc:bc:75:5d:
d6:88:54:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:18:04 2026 by rpki-client