Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
File: oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft (raw, json)
Hash identifier: IahyqZDIsC4uPg2+GGU3MpJoGBe5bhdIFhaNZr24yT8=
Subject key identifier: 05:C5:85:50:25:1A:72:9D:47:29:07:94:23:7F:F7:0F:E6:56:54:BF
Authority key identifier: A1:37:89:1D:D4:F3:DF:83:77:2D:7C:FE:71:83:84:3C:BF:F4:4D:54
Certificate issuer: /CN=a137891dd4f3df83772d7cfe7183843cbff44d54
Certificate serial: 019D99994D537EFCCBD09CE111020BD9500A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
Manifest number: 1364
Signing time: Fri 17 Apr 2026 04:00:53 +0000
Manifest this update: Fri 17 Apr 2026 04:00:53 +0000
Manifest next update: Sat 18 Apr 2026 04:00:53 +0000
Files and hashes: 1: oTeJHdTz34N3LXz-cYOEPL_0TVQ.crl (hash: QAqma0f6bYd+hNRc03YcSklATaLql9Sotxyck6nMsuo=)
2: wKG5f7dn1-pgRZqivJIzmXImgvk.roa (hash: 9MbV7Vdo6+ToMH+TbPulkfdTZLPlSBCEwYkmIQl3ggs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:4d:53:7e:fc:cb:d0:9c:e1:11:02:0b:d9:50:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a137891dd4f3df83772d7cfe7183843cbff44d54
Validity
Not Before: Apr 17 04:00:53 2026 GMT
Not After : Apr 18 04:00:53 2026 GMT
Subject: CN=05c58550251a729d47290794237ff70fe65654bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:50:2a:dc:df:49:9c:ac:63:42:c0:1f:1f:4b:
eb:92:cd:c9:e1:42:e7:6d:13:62:21:fd:25:fa:0a:
69:b1:53:8b:a9:35:fd:92:0d:dc:70:ad:53:b1:08:
c3:c1:9a:aa:28:2a:52:3c:6b:33:e6:ec:62:4b:af:
64:14:05:7f:90:37:f3:d7:2a:c4:e2:43:f8:a6:16:
b6:fa:df:4c:f0:33:6d:79:82:ed:fa:11:b5:b4:84:
b0:3e:ad:f6:87:e8:92:68:df:46:c5:62:45:20:29:
c4:aa:52:72:c8:62:2b:a8:b8:a4:27:b1:03:aa:6f:
27:fb:b2:5e:1c:17:ee:ee:30:f3:f7:76:72:9a:00:
ea:65:a3:ed:4a:81:0e:c1:9c:80:9e:34:e5:f2:1c:
81:a6:cd:eb:67:f4:cc:60:90:5f:fd:7d:5a:89:c4:
65:d7:93:d3:fc:5f:7f:4c:93:37:29:a6:09:2c:81:
00:a2:57:47:a5:41:6e:e9:04:63:56:5e:48:e4:c9:
96:5f:98:fc:e1:05:1a:86:f4:b0:b7:19:23:28:5d:
a7:8e:a9:e7:27:46:fc:b3:98:f3:d8:b3:1f:55:2c:
7e:f4:90:3d:d8:4f:31:32:0f:72:e4:24:f6:51:e4:
9f:9a:a7:60:47:54:95:a7:53:5c:14:c8:57:aa:53:
24:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:C5:85:50:25:1A:72:9D:47:29:07:94:23:7F:F7:0F:E6:56:54:BF
X509v3 Authority Key Identifier:
keyid:A1:37:89:1D:D4:F3:DF:83:77:2D:7C:FE:71:83:84:3C:BF:F4:4D:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:5f:68:73:12:8f:63:4a:e7:af:53:76:4d:9f:28:f0:cd:e2:
51:a4:bf:13:da:99:c5:53:91:c3:0a:e9:89:4e:62:66:3f:dd:
41:61:ae:59:3f:22:4f:e4:3a:5b:38:af:89:72:27:37:5b:5a:
da:e5:37:7e:05:b3:3a:57:f9:27:49:8a:82:32:1b:b2:23:0a:
0b:21:08:a0:aa:b7:f6:2a:16:62:e4:1a:07:a2:1b:b1:22:28:
48:27:0f:c8:95:0d:75:3c:dc:05:f6:3e:68:1b:1d:a7:db:89:
50:25:0c:15:a7:96:e4:20:6b:15:5c:e6:62:29:b4:28:96:f9:
4d:fb:68:45:ec:19:55:dd:20:a6:76:da:d7:d1:ab:ff:63:73:
cb:01:83:3b:2d:86:e6:6b:5b:59:bf:7c:74:76:7f:6f:ca:63:
0a:2e:e1:04:98:aa:68:5b:4a:66:1c:6d:58:09:44:b0:2c:e6:
ae:23:ea:72:7d:dc:0f:ed:6e:87:52:68:dd:df:2a:f4:e1:fa:
94:4e:6a:e5:b3:69:a5:29:de:b7:50:f2:3f:df:99:03:f1:9f:
0d:06:1d:35:eb:76:63:1c:25:86:04:14:a8:7e:9a:7e:c8:1a:
9e:5f:29:2f:c1:68:1a:60:69:59:97:e4:ef:2a:b4:02:8b:60:
86:2b:98:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:09:55 2026 by rpki-client