Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
File: oLwgSfIYtv2rytdZTCUjso2kd8E.mft (raw, json)
Hash identifier: nXN1HS7SxfxAADsT9WSZqfviIQrEHbMuoAX7ueWVmL0=
Subject key identifier: EF:22:56:5A:61:7D:88:EB:DD:B8:E4:A8:3B:5F:43:18:78:1C:B3:AB
Authority key identifier: A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
Certificate issuer: /CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Certificate serial: 019CAC47885F2E56E4DB642FAB155A7C3F3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
Manifest number: 17DB
Signing time: Mon 02 Mar 2026 02:01:35 +0000
Manifest this update: Mon 02 Mar 2026 02:01:35 +0000
Manifest next update: Tue 03 Mar 2026 02:01:35 +0000
Files and hashes: 1: oLwgSfIYtv2rytdZTCUjso2kd8E.crl (hash: dvFfyO/m0PG95gg56JgZjMii/FaXXPVsqccb+n1ianI=)
2: p7q0kuT4l_QfTZ5_ImIne2o94fw.roa (hash: +S1UVYMeaTeGs9fWcZKSGrpvJ3bbJy0eiN+e0mJvcII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:88:5f:2e:56:e4:db:64:2f:ab:15:5a:7c:3f:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Validity
Not Before: Mar 2 02:01:35 2026 GMT
Not After : Mar 3 02:01:35 2026 GMT
Subject: CN=ef22565a617d88ebddb8e4a83b5f4318781cb3ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ad:91:bd:8d:0a:fa:39:40:5e:73:8e:05:95:
1c:c1:2c:95:63:24:3d:6f:36:34:b2:10:db:2a:13:
b6:c8:00:98:4f:76:fb:b7:94:6c:1d:12:bc:32:2b:
79:cb:e5:24:64:25:10:fd:6e:c7:7b:f3:82:00:98:
99:99:cb:9f:69:c7:c3:ff:c6:2b:e8:a5:bb:f1:44:
d8:de:d4:1f:e3:25:53:bb:34:38:ad:49:83:a7:54:
d6:a9:27:26:4a:34:da:7d:58:a9:7a:9e:81:d1:54:
38:55:72:88:a8:48:ce:53:3b:17:e7:25:31:33:d6:
97:ce:f1:05:8e:b1:24:61:98:aa:9a:0b:ae:5f:8f:
9a:aa:74:de:42:0b:8a:17:9e:d3:07:74:47:df:df:
71:aa:94:6b:0d:c2:0c:12:39:80:37:27:0f:5c:5e:
40:61:48:12:66:2a:13:45:6d:f3:b5:e7:7e:e9:43:
66:9e:be:58:ba:5d:1d:91:48:f9:ed:50:e2:e4:98:
b7:f5:b9:22:84:24:bc:3d:e6:51:b8:82:95:e1:b9:
3b:58:b5:7a:d9:8f:b1:94:cc:94:25:14:54:99:4a:
0c:e3:bd:9f:20:f1:77:ca:18:6d:14:a6:0f:7f:ed:
f7:56:e0:fe:d7:a3:c5:95:ca:87:3c:0c:9e:cf:f3:
3a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:22:56:5A:61:7D:88:EB:DD:B8:E4:A8:3B:5F:43:18:78:1C:B3:AB
X509v3 Authority Key Identifier:
keyid:A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:21:1e:30:97:6a:53:e0:15:33:6a:79:6e:4e:c8:9f:28:e3:
bc:52:f9:8e:46:4a:2b:4e:d8:0c:47:3e:1f:15:26:5f:1d:0f:
1d:17:5a:30:42:86:10:8f:df:a7:d2:42:f7:7f:9f:e1:ae:44:
d1:9f:5d:49:05:99:69:f2:0c:1a:ec:e6:18:69:56:88:d8:6a:
c9:10:cb:cb:86:4e:6f:a7:93:6c:2c:f4:14:28:b5:fa:ed:ef:
21:2b:00:35:fd:de:94:41:91:57:f7:3b:33:8a:a8:a4:42:79:
7a:42:10:1f:bd:31:7c:dc:70:24:ad:c5:8b:bc:6e:1b:c6:ed:
38:93:85:0b:83:f4:c5:3e:b8:13:bd:ae:b5:22:6c:69:e6:16:
a6:c7:88:e8:20:d3:fd:36:99:e7:24:95:d1:72:d6:d1:b8:a4:
14:66:5c:f1:6e:fb:48:b4:67:7b:f9:87:59:6c:c2:bd:68:64:
06:a4:9f:8d:a2:6e:ef:94:57:66:e5:1e:b5:1a:b2:23:95:d5:
c4:0e:42:a8:6f:8e:bd:1a:63:f1:2c:50:27:64:7d:4a:16:43:
ac:8c:57:06:53:b8:5e:1b:4b:87:d8:8b:cd:b5:fd:14:0c:b3:
3f:2d:15:a7:5f:e2:c3:6c:4e:82:e9:b7:1e:ae:18:20:ce:28:
91:a7:34:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:40:51 2026 by rpki-client