Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
File: oE3odQHH0wgsdmWfTevZQohDtMs.mft (raw, json)
Hash identifier: A4iIFzfqpbe6p6h2I9quA7EcjztgHJSjAxG9LfpQ4Hg=
Subject key identifier: A5:E3:C3:F3:29:98:59:37:FA:2E:5F:C8:E8:EA:4F:D7:7D:69:C5:AD
Authority key identifier: A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
Certificate issuer: /CN=a04de87501c7d3082c76659f4debd9428843b4cb
Certificate serial: 019D9B50BE1DBE9D90426543D2C7BA218EFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
Manifest number: 14A5
Signing time: Fri 17 Apr 2026 12:00:53 +0000
Manifest this update: Fri 17 Apr 2026 12:00:53 +0000
Manifest next update: Sat 18 Apr 2026 12:00:53 +0000
Files and hashes: 1: GhCvmgJfuG506WuiaBMBgDUJQZU.roa (hash: I8NuJF/bk5fAsj3b12qVIfzMf7umbiG0VV3yAbXwHJo=)
2: oE3odQHH0wgsdmWfTevZQohDtMs.crl (hash: MF9xyHMQz+VR6BaoWOss0x5DAnbSoBsfaSxR1/lTlbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:50:be:1d:be:9d:90:42:65:43:d2:c7:ba:21:8e:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a04de87501c7d3082c76659f4debd9428843b4cb
Validity
Not Before: Apr 17 12:00:53 2026 GMT
Not After : Apr 18 12:00:53 2026 GMT
Subject: CN=a5e3c3f329985937fa2e5fc8e8ea4fd77d69c5ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b8:85:dc:10:2d:07:07:c2:f3:63:ea:bc:77:
64:72:d5:53:56:e5:bf:5b:9d:eb:9b:05:8c:0a:54:
c0:f3:c8:7a:9f:f9:02:cd:e1:97:97:45:d9:5c:e6:
bc:d5:38:93:22:85:81:55:c9:47:dc:7f:f9:81:e4:
7f:0a:73:e6:40:02:80:8d:25:27:bb:c0:5a:35:88:
41:12:9c:32:7d:17:59:16:0f:7d:f3:07:2f:01:92:
f3:77:64:91:42:27:3a:76:2e:4f:fa:7b:80:d6:91:
ee:6c:54:ae:2f:20:14:c1:5d:f4:72:b2:50:da:bc:
5f:10:99:65:97:6b:65:28:73:11:04:08:13:51:16:
2e:56:9a:70:85:91:56:3f:cc:76:d6:38:64:8e:f1:
e4:dd:99:66:3b:21:c4:1c:6e:bb:ce:bc:26:b3:b9:
24:4b:f0:4f:07:8a:33:6e:c8:13:cc:7a:57:34:8f:
79:a4:9a:72:f7:8b:fd:74:35:10:9a:63:0c:8c:a2:
27:ce:b4:dd:63:65:ee:5d:28:f2:41:b0:d5:b1:c2:
f0:3f:93:93:c9:5e:54:e2:39:ed:90:54:db:d1:09:
ed:65:af:8d:4f:0e:e6:e7:4e:f4:6c:40:b7:15:b1:
56:69:71:f6:73:b9:94:61:28:64:db:12:57:fb:80:
2f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:E3:C3:F3:29:98:59:37:FA:2E:5F:C8:E8:EA:4F:D7:7D:69:C5:AD
X509v3 Authority Key Identifier:
keyid:A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:77:d7:11:6c:59:2f:1b:1e:63:97:9f:bd:16:a6:b9:5a:74:
5f:13:07:b3:7f:0d:ca:a2:86:71:29:74:1a:1f:69:5b:da:3e:
d0:1b:91:0e:fe:ca:03:bb:bf:b8:33:c3:26:33:f5:e9:6e:88:
99:c3:69:af:7e:11:62:a0:9b:25:82:a4:ac:13:07:a2:ae:f9:
4a:37:71:d4:48:4f:19:8c:ea:67:24:29:75:52:24:23:3e:96:
b6:06:1a:e1:93:30:28:d0:a9:8e:b0:75:ff:c4:13:9c:23:83:
55:01:7c:ae:65:6e:82:fa:91:58:7f:0c:2d:4e:88:5e:3c:9b:
67:93:fe:7c:fd:ff:9d:c8:f6:d4:a7:b0:49:5a:cc:1f:61:14:
fc:d3:76:ee:c1:87:2c:c2:ad:7b:36:bb:76:b1:f7:62:1f:e1:
d0:7f:83:f5:5b:d3:ad:01:7d:fe:0e:bc:e0:83:e1:33:19:00:
85:30:ca:ba:3d:59:ff:8c:fc:d6:55:bd:86:b6:a6:dd:31:1b:
da:e3:72:a8:b7:cd:9d:b5:07:97:dc:c4:b3:44:f1:d0:dd:5b:
2f:b4:62:9d:20:c3:b2:a5:94:f4:7d:db:8c:02:94:33:63:b5:
05:12:e0:4e:bc:7a:f8:75:bc:3e:3f:35:29:c0:44:1c:e3:64:
1c:45:dd:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:12:16 2026 by rpki-client