Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
File: oLwgSfIYtv2rytdZTCUjso2kd8E.mft (raw, json)
Hash identifier: AGMLRyKxrVZ4mSVZJPwcFxEXSNZpbIVYBQ4/K0EGYGM=
Subject key identifier: 3B:7C:CA:D6:6F:2A:98:8C:10:3B:25:65:51:83:7E:38:C8:84:5D:0B
Authority key identifier: A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
Certificate issuer: /CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Certificate serial: 019D9DAD6DF8B3F1FAFDE2B08EE0E588F200
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
Manifest number: 1858
Signing time: Fri 17 Apr 2026 23:01:21 +0000
Manifest this update: Fri 17 Apr 2026 23:01:21 +0000
Manifest next update: Sat 18 Apr 2026 23:01:21 +0000
Files and hashes: 1: oLwgSfIYtv2rytdZTCUjso2kd8E.crl (hash: thqb+vcmt1WM69pacYGvCnVAqhKXCCTGMp7e6TB6hns=)
2: p7q0kuT4l_QfTZ5_ImIne2o94fw.roa (hash: +S1UVYMeaTeGs9fWcZKSGrpvJ3bbJy0eiN+e0mJvcII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 21:23:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:ad:6d:f8:b3:f1:fa:fd:e2:b0:8e:e0:e5:88:f2:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Validity
Not Before: Apr 17 23:01:21 2026 GMT
Not After : Apr 18 23:01:21 2026 GMT
Subject: CN=3b7ccad66f2a988c103b256551837e38c8845d0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2a:c1:2b:13:3f:38:9b:ec:60:4c:b7:3f:8f:
d0:78:c6:e0:a8:c4:c4:96:19:a5:58:d1:e5:48:27:
09:8a:3e:52:14:b8:a9:6a:72:ce:3f:ea:cb:bc:31:
1a:28:36:86:68:3f:fe:42:da:8a:4f:00:48:52:fd:
58:49:4f:96:77:c4:62:db:1c:86:34:46:58:9e:b5:
a6:32:f9:ad:20:02:49:04:64:0f:84:8d:61:be:ae:
bf:10:51:5e:4d:15:f1:6b:39:5c:55:c7:42:bc:8d:
60:ff:27:dc:11:13:24:27:de:94:7a:29:e1:17:31:
1a:ad:5d:c1:23:58:e6:67:f9:1f:cf:9f:3b:7c:77:
ff:13:09:28:d5:93:9d:48:d5:63:18:40:61:e8:c7:
ba:d6:bc:5d:ca:31:da:30:51:8f:d9:0d:6c:5d:90:
96:ef:4a:0d:f1:a3:18:52:9f:33:dc:3d:86:e0:18:
95:16:1f:17:c5:ed:f4:52:11:60:90:40:bb:b9:58:
39:3d:8f:a6:9b:e1:e4:11:e7:39:d5:9f:f0:e0:2a:
a2:ce:e2:dc:df:ac:94:ca:8f:0d:4d:b9:7c:f2:25:
f6:46:dc:fc:c4:a0:69:4a:f9:99:ad:ad:b1:c6:22:
42:6d:7d:f7:70:80:94:41:18:4f:76:39:f5:d2:17:
b8:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:7C:CA:D6:6F:2A:98:8C:10:3B:25:65:51:83:7E:38:C8:84:5D:0B
X509v3 Authority Key Identifier:
keyid:A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:65:1e:1e:86:05:df:4b:23:d5:3c:b5:9d:7d:46:e4:fd:40:
46:55:f3:57:da:b9:fa:82:88:2b:ca:23:e0:81:65:c3:91:ab:
0d:09:96:3b:ca:b7:c6:27:de:c1:07:09:2a:47:d0:53:34:96:
29:15:fc:78:a2:31:99:04:30:a7:be:bc:1f:64:55:b6:55:ba:
03:ca:5d:f7:e2:f6:04:d2:1e:d8:f0:7e:83:6e:b4:de:ef:4a:
75:b9:3e:d4:56:02:43:8e:fc:ad:d0:ae:fb:b3:fc:67:ba:dd:
d0:bf:49:17:36:fe:fa:6a:f3:ee:29:d5:4e:92:6d:4a:a8:1b:
da:25:23:f4:23:61:e1:cd:71:ed:f6:9e:61:cf:4e:9f:19:ac:
d7:dd:3b:de:12:82:49:7f:8c:b2:f6:15:b6:e3:39:33:34:16:
b9:f6:01:9d:14:f2:7d:2f:a0:14:ee:ac:1c:af:b9:59:3d:87:
0e:9c:0a:72:80:ec:b9:2c:84:a2:67:1a:6c:a0:92:5d:49:08:
87:f4:3d:89:51:f7:11:bd:f5:24:0d:0a:ff:d1:a6:ab:86:f6:
3d:3e:32:bc:32:9a:73:98:8c:01:42:ac:eb:dd:25:16:52:a6:
9b:77:7c:13:8e:2f:23:82:95:ce:44:61:58:5e:6f:e2:56:c7:
32:e2:57:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 04:40:23 2026 by rpki-client