Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
File: oE3odQHH0wgsdmWfTevZQohDtMs.mft (raw, json)
Hash identifier: IKSWEnkZi9AIPwFiGNgHUfvGmh2W6UQJPOVq5MnCo/0=
Subject key identifier: 61:B1:F0:A1:AC:5F:BD:E6:C9:C6:2C:28:1C:91:3F:2E:94:36:41:AF
Authority key identifier: A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
Certificate issuer: /CN=a04de87501c7d3082c76659f4debd9428843b4cb
Certificate serial: 019CADC7F71A7C206E8BA84E9035C8FE7176
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
Manifest number: 142A
Signing time: Mon 02 Mar 2026 09:01:29 +0000
Manifest this update: Mon 02 Mar 2026 09:01:29 +0000
Manifest next update: Tue 03 Mar 2026 09:01:29 +0000
Files and hashes: 1: GhCvmgJfuG506WuiaBMBgDUJQZU.roa (hash: I8NuJF/bk5fAsj3b12qVIfzMf7umbiG0VV3yAbXwHJo=)
2: oE3odQHH0wgsdmWfTevZQohDtMs.crl (hash: 4ZV7R19muEzltLQEBWBSPbrl8Wc23kC9CHO11qCMnuk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c7:f7:1a:7c:20:6e:8b:a8:4e:90:35:c8:fe:71:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a04de87501c7d3082c76659f4debd9428843b4cb
Validity
Not Before: Mar 2 09:01:29 2026 GMT
Not After : Mar 3 09:01:29 2026 GMT
Subject: CN=61b1f0a1ac5fbde6c9c62c281c913f2e943641af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:02:ef:62:4f:95:3e:43:9d:00:50:93:4d:96:
83:99:74:f5:bd:33:c9:c3:43:b5:7a:fd:7f:28:a5:
e1:b8:05:74:70:b7:c8:16:e7:4f:c6:a7:c8:e5:aa:
17:0c:4e:f4:d1:01:36:35:4d:ac:8c:c5:e3:c2:0d:
64:45:7b:0d:c5:84:59:3f:2b:ee:66:2b:7c:07:f6:
f9:a7:59:28:d0:f0:8f:8f:6c:fc:ad:8b:da:78:ac:
df:b7:a1:99:a9:47:f7:7d:e8:e9:fb:71:0e:9c:8e:
90:2d:34:43:87:15:2a:96:88:d4:94:d5:c1:7b:dd:
42:9b:83:e5:1f:f7:1f:a9:6f:f4:6a:bb:67:18:54:
be:89:d0:2b:67:cf:ca:06:75:57:a2:99:49:a0:cb:
7a:12:e8:bc:b0:c8:c1:7c:5b:9a:f8:5f:ee:f6:a7:
9a:75:fd:0c:83:cb:6a:fa:5b:67:e1:9c:f1:03:f8:
3b:7f:a3:3c:4c:74:c9:9e:90:2c:58:67:51:3f:2c:
13:44:55:de:f0:60:30:f9:54:c1:76:b1:7c:05:79:
a7:01:40:ff:97:c9:98:43:54:bf:84:36:93:1c:b6:
3f:87:9a:aa:7a:cd:ab:3b:c0:a0:b2:79:b8:57:d9:
d3:a9:da:ec:5a:28:6d:0d:4d:25:cf:b4:b1:e5:44:
eb:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B1:F0:A1:AC:5F:BD:E6:C9:C6:2C:28:1C:91:3F:2E:94:36:41:AF
X509v3 Authority Key Identifier:
keyid:A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:22:53:bb:fa:66:c8:c0:2b:ba:f5:32:e9:a0:36:16:1a:ef:
55:4c:ba:d8:2d:31:e9:53:7f:96:17:7a:3c:e3:78:37:de:d8:
7a:fb:a8:3a:59:66:34:8a:8d:72:76:03:71:fe:ff:46:4f:4e:
65:a6:ef:84:78:9a:70:47:83:3f:7c:31:03:a3:59:f7:cd:63:
20:53:d4:d9:d3:81:5c:24:37:05:65:8c:24:af:db:1f:19:dc:
e7:69:34:d9:16:2f:51:e7:ec:84:0e:2c:b8:48:8d:4d:fd:41:
03:be:a2:75:fd:4a:7c:b9:6c:07:72:83:fb:3f:82:82:e1:bd:
80:9f:dd:79:4f:79:66:b0:da:c1:5e:f6:2f:73:71:fa:75:29:
31:1f:b4:b4:c9:37:31:99:91:f5:68:ab:72:ba:c5:cd:d6:48:
04:ee:41:8d:d6:c7:c3:65:24:e4:00:87:52:05:5c:97:0c:01:
d4:4e:7e:2a:e7:4b:31:b8:c0:d0:2b:e8:51:15:2c:b5:9f:1e:
e0:0c:da:47:3f:a9:01:80:72:c8:d8:86:7b:73:68:d1:b8:88:
1b:e5:31:7c:49:aa:fc:58:5f:62:3e:7b:4d:e7:57:a3:05:2b:
f4:de:84:ca:6d:df:48:83:f5:3d:e1:13:b8:00:78:ec:89:e6:
fe:48:c3:35
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytx/cafCBui6hOkDXI/nF2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwNGRlODc1MDFjN2QzMDgyYzc2NjU5ZjRkZWJkOTQyODg0
M2I0Y2IwHhcNMjYwMzAyMDkwMTI5WhcNMjYwMzAzMDkwMTI5WjAzMTEwLwYDVQQD
Eyg2MWIxZjBhMWFjNWZiZGU2YzljNjJjMjgxYzkxM2YyZTk0MzY0MWFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtwLvYk+VPkOdAFCTTZaDmXT1vTPJ
w0O1ev1/KKXhuAV0cLfIFudPxqfI5aoXDE700QE2NU2sjMXjwg1kRXsNxYRZPyvu
Zit8B/b5p1ko0PCPj2z8rYvaeKzft6GZqUf3fejp+3EOnI6QLTRDhxUqlojUlNXB
e91Cm4PlH/cfqW/0artnGFS+idArZ8/KBnVXoplJoMt6Eui8sMjBfFua+F/u9qea
df0Mg8tq+ltn4ZzxA/g7f6M8THTJnpAsWGdRPywTRFXe8GAw+VTBdrF8BXmnAUD/
l8mYQ1S/hDaTHLY/h5qqes2rO8Cgsnm4V9nTqdrsWihtDU0lz7Sx5UTrxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGGx8KGsX73mycYsKByRPy6UNkGvMB8GA1UdIwQY
MBaAFKBN6HUBx9MILHZln03r2UKIQ7TLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0Uzb2RRSEgwd2dzZG1XZlRldlpRb2hEdE1zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS80NjVjOTAtNzBmYi00MDE1LWI5Njkt
NzQ4Zjc4NzgzODhhLzEvb0Uzb2RRSEgwd2dzZG1XZlRldlpRb2hEdE1zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS80NjVjOTAtNzBmYi00MDE1LWI5NjktNzQ4Zjc4NzgzODhh
LzEvb0Uzb2RRSEgwd2dzZG1XZlRldlpRb2hEdE1zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADSJTu/pm
yMAruvUy6aA2FhrvVUy62C0x6VN/lhd6PON4N97YevuoOllmNIqNcnYDcf7/Rk9O
ZabvhHiacEeDP3wxA6NZ981jIFPU2dOBXCQ3BWWMJK/bHxnc52k02RYvUefshA4s
uEiNTf1BA76idf1KfLlsB3KD+z+CguG9gJ/deU95ZrDawV72L3Nx+nUpMR+0tMk3
MZmR9WircrrFzdZIBO5BjdbHw2Uk5ACHUgVclwwB1E5+KudLMbjA0CvoURUstZ8e
4AzaRz+pAYByyNiGe3No0biIG+UxfEmq/FhfYj57TedXowUr9N6Eym3fSIP1PeET
uAB47Inm/kjDNQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 13:38:26 2026 by rpki-client