
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
File: oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft (raw, json)
Hash identifier: fOm90roNxhxez7byu5kivkRmIC3XGrwWQbOwifOYO1Q=
Subject key identifier: 7B:57:D2:29:EF:07:26:8C:E7:51:25:A9:F4:93:D7:61:3A:06:C5:EF
Authority key identifier: A1:37:89:1D:D4:F3:DF:83:77:2D:7C:FE:71:83:84:3C:BF:F4:4D:54
Certificate issuer: /CN=a137891dd4f3df83772d7cfe7183843cbff44d54
Certificate serial: 019CADFE4A94DAB3505C06FCFB808E1C70EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
Manifest number: 12EA
Signing time: Mon 02 Mar 2026 10:00:49 +0000
Manifest this update: Mon 02 Mar 2026 10:00:49 +0000
Manifest next update: Tue 03 Mar 2026 10:00:49 +0000
Files and hashes: 1: oTeJHdTz34N3LXz-cYOEPL_0TVQ.crl (hash: dQWGslWC2182uxcBwzKXu6SdMMIAhEX9Z+y9LTyAPkY=)
2: wKG5f7dn1-pgRZqivJIzmXImgvk.roa (hash: 9MbV7Vdo6+ToMH+TbPulkfdTZLPlSBCEwYkmIQl3ggs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:4a:94:da:b3:50:5c:06:fc:fb:80:8e:1c:70:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a137891dd4f3df83772d7cfe7183843cbff44d54
Validity
Not Before: Mar 2 10:00:49 2026 GMT
Not After : Mar 3 10:00:49 2026 GMT
Subject: CN=7b57d229ef07268ce75125a9f493d7613a06c5ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:52:11:02:b6:6a:cc:5a:1a:2e:49:db:1c:92:
5d:00:ef:95:70:59:87:4e:ef:19:37:07:39:c1:52:
ae:10:8f:a0:9a:6e:d2:ab:01:66:41:5a:18:d8:34:
4e:8b:c7:e3:64:e4:ff:d5:60:c7:a4:52:a5:47:c0:
7a:ec:c5:e3:87:ff:64:47:7e:7a:df:0e:8d:1b:ea:
1f:02:31:7a:1e:80:16:1b:de:fc:50:ca:bb:1c:23:
0e:b8:2d:d9:06:56:bd:f2:b4:6b:b3:2f:e6:70:d5:
86:e9:5a:11:54:38:66:5b:f6:4c:0d:de:7e:f7:33:
cc:c4:53:f2:b4:a6:0e:16:8b:98:10:6a:6e:14:7a:
72:28:98:ad:2d:98:5e:f2:ca:1f:cb:c5:b7:4c:09:
2b:c2:67:08:28:c6:26:32:b6:d4:be:f0:a4:02:07:
9c:9f:e1:8c:7b:e0:a8:dc:3d:24:76:69:60:49:09:
4f:74:ef:39:b9:1d:1f:c4:2d:e2:7a:8c:fe:69:fe:
c6:36:d8:4b:08:b2:a6:1a:48:0c:bd:e5:e1:5a:a5:
02:d3:74:fe:bd:b2:f0:de:ef:58:af:de:7c:b9:83:
6c:c7:e0:89:d7:08:22:51:c4:c6:9a:c7:fa:07:21:
5f:de:c7:d6:ea:b3:55:55:15:9b:90:4f:de:b5:e9:
47:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:57:D2:29:EF:07:26:8C:E7:51:25:A9:F4:93:D7:61:3A:06:C5:EF
X509v3 Authority Key Identifier:
keyid:A1:37:89:1D:D4:F3:DF:83:77:2D:7C:FE:71:83:84:3C:BF:F4:4D:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:f2:3b:07:12:6e:a7:fb:74:cf:fa:2b:1b:6e:3e:81:c8:24:
d4:41:d2:c3:3c:5d:6b:ef:96:e8:55:78:c0:fc:e3:21:cd:2a:
64:c6:5e:9b:8c:0b:ce:3b:ed:e6:8d:d9:b5:c7:b2:28:6d:74:
32:78:47:20:ec:83:83:76:2d:84:23:b6:a2:6f:ab:ca:a6:53:
0f:9a:e4:99:a9:a6:71:8f:99:40:4d:50:59:46:e0:68:e9:fd:
64:57:af:7d:12:03:d6:49:d8:56:62:c6:85:ee:69:63:80:60:
bf:6d:33:d4:1d:f4:44:77:69:da:fe:00:95:a5:04:75:e5:4a:
73:f6:16:2f:41:35:ae:84:67:45:b9:c8:63:28:7a:f5:60:78:
3a:2d:33:ca:b7:69:84:0a:64:83:d4:b2:bb:39:c2:3b:f6:3f:
6b:92:95:60:43:d7:c0:58:65:55:e5:7f:28:76:aa:f3:88:84:
bf:11:62:1e:c1:82:29:9f:58:75:0b:1a:81:da:15:11:fc:d2:
c4:56:3a:9e:3b:99:cb:32:01:e1:4a:e8:d0:99:f1:46:88:66:
e9:a9:de:ee:9b:cd:be:89:4e:19:5f:14:45:2b:6f:e8:df:50:
18:a2:cb:58:3e:73:5c:a5:60:82:bc:53:15:44:b4:51:79:1b:
02:8e:c3:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:27:08 2026 by rpki-client