Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
File: oLwgSfIYtv2rytdZTCUjso2kd8E.mft (raw, json)
Hash identifier: bx/Q4ke6QXJyNNBOqVIdNCtYzDX6XkYCTcot3OyZQjU=
Subject key identifier: F6:9E:38:5B:07:97:26:93:D3:9C:A8:14:39:68:A2:6C:A3:9F:C6:68
Authority key identifier: A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
Certificate issuer: /CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Certificate serial: 019D9BBEB9295831BC79D3AB843D21276048
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
Manifest number: 1857
Signing time: Fri 17 Apr 2026 14:01:00 +0000
Manifest this update: Fri 17 Apr 2026 14:01:00 +0000
Manifest next update: Sat 18 Apr 2026 14:01:00 +0000
Files and hashes: 1: oLwgSfIYtv2rytdZTCUjso2kd8E.crl (hash: v4340rVVH+GfM52fkc6HXA7gaGfzxHf5BS1oaDKvvys=)
2: p7q0kuT4l_QfTZ5_ImIne2o94fw.roa (hash: +S1UVYMeaTeGs9fWcZKSGrpvJ3bbJy0eiN+e0mJvcII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:b9:29:58:31:bc:79:d3:ab:84:3d:21:27:60:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Validity
Not Before: Apr 17 14:01:00 2026 GMT
Not After : Apr 18 14:01:00 2026 GMT
Subject: CN=f69e385b07972693d39ca8143968a26ca39fc668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:33:d5:5f:42:c3:64:1a:cb:e5:0e:70:70:d7:
6e:54:00:22:b2:14:df:5f:02:8e:0e:9b:51:7d:a5:
b9:7f:7d:67:91:24:01:d6:c0:a9:2f:4e:62:3c:f1:
90:78:b3:7d:34:9e:2c:c1:9b:8f:b5:f6:69:89:27:
5d:2b:7e:99:e7:64:f2:e2:70:7e:f9:45:27:11:cc:
bb:4b:a8:91:be:36:5d:e2:78:11:16:5b:26:f9:11:
bd:cc:74:c5:a5:d7:4d:4e:ae:da:12:80:9b:3f:3e:
7a:c8:54:20:07:65:73:2f:b6:25:01:5e:0e:49:7b:
b0:e5:f7:ca:f6:8b:73:b1:b7:3a:eb:86:9a:d5:8f:
9a:3e:a7:61:95:c0:53:5a:98:ff:dd:61:10:09:e5:
05:63:53:91:74:d7:0d:81:ae:c2:03:ba:73:e9:2a:
e9:fa:c6:6c:10:53:d4:ab:3b:52:ca:3a:f8:ec:ae:
24:6d:09:9e:e8:d7:a3:7b:70:a7:19:23:2b:e6:62:
1e:2d:9d:6f:ee:d7:cd:16:37:19:42:ce:23:7b:79:
97:12:3f:8c:a9:d2:fc:53:e9:cf:7b:cc:bb:86:60:
70:6d:03:e3:ae:a3:d3:4b:72:a5:79:e0:fe:af:d2:
22:18:c8:b0:af:80:a3:19:8c:29:36:8c:82:16:58:
57:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:9E:38:5B:07:97:26:93:D3:9C:A8:14:39:68:A2:6C:A3:9F:C6:68
X509v3 Authority Key Identifier:
keyid:A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:df:33:69:c3:89:aa:8f:a7:3b:cb:16:69:d0:dd:bf:fa:5f:
17:90:69:e2:ac:e0:ec:7a:fc:36:f4:b8:0c:f9:0c:7e:ea:04:
fa:74:5b:84:ce:fb:a5:db:28:4c:dd:5a:44:e8:41:f0:8d:c6:
f1:87:2e:50:2a:81:31:96:c6:d4:83:1c:ac:68:62:f5:24:89:
e8:90:7c:c7:52:4b:eb:da:c7:d8:82:f2:46:93:87:57:a6:96:
43:08:d1:2e:f4:da:40:b4:35:64:53:2f:10:40:8a:02:d0:3a:
e7:b2:11:1a:02:7c:2f:58:57:a9:52:e6:93:cd:fa:31:be:34:
e4:2a:ef:8a:b5:b0:21:4c:ed:00:fd:1f:0f:58:ce:43:45:d3:
0c:06:ca:00:33:f9:14:a7:b2:f9:74:50:64:1f:8b:99:23:06:
17:de:92:c8:c4:bd:dc:ab:00:d7:bb:54:78:08:94:08:67:01:
5f:6b:4e:3a:88:70:b2:48:e0:30:48:e5:d4:5a:5a:1e:f7:a0:
30:cb:6d:54:ab:28:76:4e:a3:02:ec:4c:26:be:95:c5:ba:63:
f3:93:2b:58:93:9d:f2:24:45:fb:e7:9d:39:be:10:4b:ca:0b:
f4:8b:21:62:50:1f:d6:7c:24:06:0f:8a:9d:bf:1b:dc:f0:a5:
4f:e7:28:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:26:34 2026 by rpki-client