Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f55df1-0ba6-430f-809d-6b035cee1981/1/oE_JgO38R54EauArEOVyRbuSyLc.mft
File: oE_JgO38R54EauArEOVyRbuSyLc.mft (raw, json)
Hash identifier: rSv/Va6ZuoxEEhRjlndIoSlctzocB2jVv+slHA1S274=
Subject key identifier: B3:4E:2C:D8:FD:FC:F1:FD:FD:29:8F:83:E2:08:74:EC:C5:52:D2:35
Authority key identifier: A0:4F:C9:80:ED:FC:47:9E:04:6A:E0:2B:10:E5:72:45:BB:92:C8:B7
Certificate issuer: /CN=a04fc980edfc479e046ae02b10e57245bb92c8b7
Certificate serial: 019CA869DAE43450C16E5716185FA412D2E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oE_JgO38R54EauArEOVyRbuSyLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f55df1-0ba6-430f-809d-6b035cee1981/1/oE_JgO38R54EauArEOVyRbuSyLc.mft
Manifest number: 0848
Signing time: Sun 01 Mar 2026 08:00:35 +0000
Manifest this update: Sun 01 Mar 2026 08:00:35 +0000
Manifest next update: Mon 02 Mar 2026 08:00:35 +0000
Files and hashes: 1: EKDCPhWPs30l0DSrD9ZjD1tFQkw.asa (hash: /VjX2BQnC3wIjMi5VEBP8mPkyeVmam6lGlm8WGBjxBI=)
2: oE_JgO38R54EauArEOVyRbuSyLc.crl (hash: 0conM3NxVK1GRXoLMkyVAz/XjZv8Z79p+raPQgGk1GA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/f55df1-0ba6-430f-809d-6b035cee1981/1/oE_JgO38R54EauArEOVyRbuSyLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/f55df1-0ba6-430f-809d-6b035cee1981/1/oE_JgO38R54EauArEOVyRbuSyLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oE_JgO38R54EauArEOVyRbuSyLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a8:69:da:e4:34:50:c1:6e:57:16:18:5f:a4:12:d2:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a04fc980edfc479e046ae02b10e57245bb92c8b7
Validity
Not Before: Mar 1 08:00:35 2026 GMT
Not After : Mar 2 08:00:35 2026 GMT
Subject: CN=b34e2cd8fdfcf1fdfd298f83e20874ecc552d235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4b:78:a5:36:52:28:3f:02:f1:81:80:bd:58:
3a:2b:6d:46:a0:02:95:52:67:1d:2b:2e:13:65:97:
58:30:6c:b9:25:6b:dd:0a:54:c0:ad:78:e8:a3:cf:
8f:6c:88:17:88:d9:6f:a8:8f:c3:4f:58:2e:e3:7b:
06:22:3a:fa:a2:d6:86:b5:1a:35:80:84:7a:1a:23:
41:99:d0:90:7a:ae:a9:63:28:55:a6:55:2b:3c:d5:
a5:4e:e3:77:6a:6d:74:d0:c5:6f:6f:cf:0b:58:1a:
d7:16:c7:cc:1b:d3:73:99:b9:2f:01:af:53:08:6e:
4e:1b:9b:24:b0:59:97:ed:ca:59:17:f7:07:bc:6c:
3d:9c:95:2c:d3:ee:4c:e9:15:97:39:3e:46:5d:d8:
58:ec:c9:2e:fe:ed:cc:02:58:1d:b4:60:89:4f:83:
09:60:9a:09:1d:24:d5:10:8b:a5:ef:ad:d5:3a:bf:
29:40:25:5c:b7:38:63:48:3c:75:3b:e1:1a:41:7d:
55:83:29:e3:64:3e:20:ee:35:5b:26:75:84:0c:6d:
e5:80:b2:20:9c:69:60:92:eb:d0:76:23:06:e5:67:
47:74:04:f6:7b:2f:20:b6:08:e3:bf:e8:53:1b:ce:
c8:19:17:d2:1b:8e:2d:f9:66:12:1f:84:5e:4c:68:
65:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:4E:2C:D8:FD:FC:F1:FD:FD:29:8F:83:E2:08:74:EC:C5:52:D2:35
X509v3 Authority Key Identifier:
keyid:A0:4F:C9:80:ED:FC:47:9E:04:6A:E0:2B:10:E5:72:45:BB:92:C8:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oE_JgO38R54EauArEOVyRbuSyLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f55df1-0ba6-430f-809d-6b035cee1981/1/oE_JgO38R54EauArEOVyRbuSyLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f55df1-0ba6-430f-809d-6b035cee1981/1/oE_JgO38R54EauArEOVyRbuSyLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:56:a5:3a:13:3e:6f:3d:99:48:5f:e3:5d:0e:6a:b3:07:92:
98:80:a9:b2:e9:f7:d6:c3:f6:3d:8e:91:18:ca:13:57:85:96:
e6:54:d1:b8:ee:ce:26:32:b5:49:4c:04:7d:1e:9e:6f:0c:c2:
2a:6d:18:f2:c9:e4:30:d8:82:98:83:80:9a:a0:cc:3d:68:c3:
b8:65:d1:8a:23:4a:65:90:e9:a8:09:9d:4f:3d:f2:5f:ab:4f:
8b:03:c9:07:5d:bb:d5:c1:07:7e:cc:c8:84:12:2e:56:bd:cb:
04:c3:e2:51:c9:c9:ba:0f:97:02:93:59:be:ce:a9:50:5e:d8:
a9:b1:cb:34:ec:91:18:e9:3b:0d:ea:60:db:fd:8d:cb:3d:a3:
29:7f:e9:a5:a2:b9:7f:b0:b3:49:a0:29:46:25:f3:6b:89:3c:
ab:e8:b8:8c:52:50:94:00:99:4e:44:1e:61:b7:4a:74:e4:8e:
5e:66:3f:78:91:b5:d0:e7:9a:89:6b:8a:5a:c2:a3:3b:b7:4c:
dd:17:c3:3c:18:bf:03:64:77:ea:79:50:c8:36:4f:a8:13:73:
65:8e:00:c1:c9:cd:dd:94:d1:28:df:5f:94:3f:6e:24:10:5e:
8a:56:14:b2:84:2b:cb:10:fd:3a:67:3d:36:4b:81:e6:51:a2:
59:ea:6c:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyoadrkNFDBblcWGF+kEtLpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwNGZjOTgwZWRmYzQ3OWUwNDZhZTAyYjEwZTU3MjQ1YmI5
MmM4YjcwHhcNMjYwMzAxMDgwMDM1WhcNMjYwMzAyMDgwMDM1WjAzMTEwLwYDVQQD
EyhiMzRlMmNkOGZkZmNmMWZkZmQyOThmODNlMjA4NzRlY2M1NTJkMjM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUt4pTZSKD8C8YGAvVg6K21GoAKV
UmcdKy4TZZdYMGy5JWvdClTArXjoo8+PbIgXiNlvqI/DT1gu43sGIjr6otaGtRo1
gIR6GiNBmdCQeq6pYyhVplUrPNWlTuN3am100MVvb88LWBrXFsfMG9NzmbkvAa9T
CG5OG5sksFmX7cpZF/cHvGw9nJUs0+5M6RWXOT5GXdhY7Mku/u3MAlgdtGCJT4MJ
YJoJHSTVEIul763VOr8pQCVctzhjSDx1O+EaQX1VgynjZD4g7jVbJnWEDG3lgLIg
nGlgkuvQdiMG5WdHdAT2ey8gtgjjv+hTG87IGRfSG44t+WYSH4ReTGhlRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLNOLNj9/PH9/SmPg+IIdOzFUtI1MB8GA1UdIwQY
MBaAFKBPyYDt/EeeBGrgKxDlckW7ksi3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0VfSmdPMzhSNTRFYXVBckVPVnlSYnVTeUxjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9mNTVkZjEtMGJhNi00MzBmLTgwOWQt
NmIwMzVjZWUxOTgxLzEvb0VfSmdPMzhSNTRFYXVBckVPVnlSYnVTeUxjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9mNTVkZjEtMGJhNi00MzBmLTgwOWQtNmIwMzVjZWUxOTgx
LzEvb0VfSmdPMzhSNTRFYXVBckVPVnlSYnVTeUxjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGlalOhM+
bz2ZSF/jXQ5qsweSmICpsun31sP2PY6RGMoTV4WW5lTRuO7OJjK1SUwEfR6ebwzC
Km0Y8snkMNiCmIOAmqDMPWjDuGXRiiNKZZDpqAmdTz3yX6tPiwPJB1271cEHfszI
hBIuVr3LBMPiUcnJug+XApNZvs6pUF7YqbHLNOyRGOk7Depg2/2Nyz2jKX/ppaK5
f7CzSaApRiXza4k8q+i4jFJQlACZTkQeYbdKdOSOXmY/eJG10OeaiWuKWsKjO7dM
3RfDPBi/A2R36nlQyDZPqBNzZY4AwcnN3ZTRKN9flD9uJBBeilYUsoQryxD9Omc9
NkuB5lGiWepsQw==
-----END CERTIFICATE-----
Generated at Sun Mar 1 14:44:55 2026 by rpki-client