Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f55df1-0ba6-430f-809d-6b035cee1981/1/oE_JgO38R54EauArEOVyRbuSyLc.mft
File: oE_JgO38R54EauArEOVyRbuSyLc.mft (raw, json)
Hash identifier: ceY1ttbYOsrY7j5PwTFnlgRUtHASs0wHivhfsvJ4pVg=
Subject key identifier: 35:71:F4:76:8B:64:21:87:8D:2D:70:51:3D:B6:48:F6:5A:8B:E9:F8
Authority key identifier: A0:4F:C9:80:ED:FC:47:9E:04:6A:E0:2B:10:E5:72:45:BB:92:C8:B7
Certificate issuer: /CN=a04fc980edfc479e046ae02b10e57245bb92c8b7
Certificate serial: 019D99CFEBB11459ED0903D74B232EF33292
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oE_JgO38R54EauArEOVyRbuSyLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f55df1-0ba6-430f-809d-6b035cee1981/1/oE_JgO38R54EauArEOVyRbuSyLc.mft
Manifest number: 08C5
Signing time: Fri 17 Apr 2026 05:00:33 +0000
Manifest this update: Fri 17 Apr 2026 05:00:33 +0000
Manifest next update: Sat 18 Apr 2026 05:00:33 +0000
Files and hashes: 1: EKDCPhWPs30l0DSrD9ZjD1tFQkw.asa (hash: /VjX2BQnC3wIjMi5VEBP8mPkyeVmam6lGlm8WGBjxBI=)
2: oE_JgO38R54EauArEOVyRbuSyLc.crl (hash: GnqVSUHgxBAL97Xf3zt25kl3OVsiHgRZvCVych9NkDw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/f55df1-0ba6-430f-809d-6b035cee1981/1/oE_JgO38R54EauArEOVyRbuSyLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/f55df1-0ba6-430f-809d-6b035cee1981/1/oE_JgO38R54EauArEOVyRbuSyLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oE_JgO38R54EauArEOVyRbuSyLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:cf:eb:b1:14:59:ed:09:03:d7:4b:23:2e:f3:32:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a04fc980edfc479e046ae02b10e57245bb92c8b7
Validity
Not Before: Apr 17 05:00:33 2026 GMT
Not After : Apr 18 05:00:33 2026 GMT
Subject: CN=3571f4768b6421878d2d70513db648f65a8be9f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4c:80:da:dd:b5:63:9f:dc:42:87:41:73:c1:
73:0c:ae:fb:1d:31:29:60:e0:97:62:f2:12:f9:f4:
31:ba:ad:47:79:41:f0:5e:11:27:2c:c5:cf:22:cd:
f3:05:4c:fd:db:0d:54:ae:bb:d9:fb:4e:25:a1:47:
1c:31:e6:3f:e0:57:6e:ed:8b:4e:a3:5e:35:8a:48:
54:1f:25:b1:f4:06:9a:1a:8a:42:fe:ad:de:d5:b9:
3f:99:13:3f:1c:b3:5f:fe:5c:e1:57:86:e8:09:ec:
cf:5f:55:20:4b:ef:55:68:d2:ce:83:bd:68:f3:56:
2d:4a:07:e9:31:33:3c:8f:91:1b:86:78:1d:9f:12:
4d:9c:7f:3e:10:59:7a:2f:58:15:f5:77:06:86:0f:
11:0e:9f:05:b3:33:c8:ed:c6:9c:80:c0:6d:06:18:
2a:c8:a1:a0:a2:ff:22:07:3f:e9:b0:f9:d7:dd:ed:
c4:e6:26:88:8f:87:ac:78:f1:40:51:db:99:84:0d:
0b:5a:42:87:77:8b:10:3c:f8:62:28:6f:b1:b5:64:
4d:bc:dc:a6:41:d7:77:6c:91:b9:e2:f3:01:3b:3a:
a9:10:47:9b:2d:2a:2b:11:13:3b:fc:bc:51:45:1e:
1a:bc:9f:0f:c4:70:fa:9e:39:8f:cc:4b:ef:72:7c:
d1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:71:F4:76:8B:64:21:87:8D:2D:70:51:3D:B6:48:F6:5A:8B:E9:F8
X509v3 Authority Key Identifier:
keyid:A0:4F:C9:80:ED:FC:47:9E:04:6A:E0:2B:10:E5:72:45:BB:92:C8:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oE_JgO38R54EauArEOVyRbuSyLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f55df1-0ba6-430f-809d-6b035cee1981/1/oE_JgO38R54EauArEOVyRbuSyLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f55df1-0ba6-430f-809d-6b035cee1981/1/oE_JgO38R54EauArEOVyRbuSyLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:75:4f:12:ca:e6:6c:95:fe:2d:b7:bb:15:ea:7b:75:13:22:
2c:ab:f3:cf:4c:00:d4:0a:ec:89:9f:5c:91:35:8e:94:b0:90:
91:c8:3a:dd:de:5d:b7:65:67:3a:bd:9a:1b:a0:0e:ac:06:76:
d0:f6:d9:97:0b:37:f0:1f:26:8f:7b:05:fb:f5:2b:8f:b0:5b:
b9:f5:27:45:9f:b2:76:83:f9:e7:ee:28:9e:5b:b6:53:50:f0:
23:0e:57:e6:d5:db:f9:2b:18:3e:a0:c2:f7:3d:52:ca:b8:45:
ee:ea:1f:49:ac:bc:9a:0d:ce:e3:25:b0:44:c8:70:71:61:15:
30:6b:fa:2e:42:30:35:04:43:81:bc:25:48:70:38:19:a0:97:
50:25:cd:53:c0:cc:1b:50:12:dd:71:f5:53:05:99:ad:13:87:
5d:29:91:68:99:c8:6d:99:23:18:d8:d3:1e:60:cf:34:53:9e:
7d:4c:b6:d9:b5:d3:c6:57:d9:56:ee:99:09:07:95:84:cd:13:
97:a9:47:ae:41:bd:80:d6:0a:a5:79:11:5d:2e:33:8f:c9:26:
9d:91:35:ae:9a:61:98:c9:9f:e3:0a:9c:d8:84:4f:71:7b:8a:
8c:ab:db:91:84:f8:bd:45:04:7a:1f:02:63:ef:bd:b5:1e:80:
a0:b4:57:2c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Zz+uxFFntCQPXSyMu8zKSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwNGZjOTgwZWRmYzQ3OWUwNDZhZTAyYjEwZTU3MjQ1YmI5
MmM4YjcwHhcNMjYwNDE3MDUwMDMzWhcNMjYwNDE4MDUwMDMzWjAzMTEwLwYDVQQD
EygzNTcxZjQ3NjhiNjQyMTg3OGQyZDcwNTEzZGI2NDhmNjVhOGJlOWY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwkyA2t21Y5/cQodBc8FzDK77HTEp
YOCXYvIS+fQxuq1HeUHwXhEnLMXPIs3zBUz92w1UrrvZ+04loUccMeY/4Fdu7YtO
o141ikhUHyWx9AaaGopC/q3e1bk/mRM/HLNf/lzhV4boCezPX1UgS+9VaNLOg71o
81YtSgfpMTM8j5EbhngdnxJNnH8+EFl6L1gV9XcGhg8RDp8FszPI7cacgMBtBhgq
yKGgov8iBz/psPnX3e3E5iaIj4esePFAUduZhA0LWkKHd4sQPPhiKG+xtWRNvNym
Qdd3bJG54vMBOzqpEEebLSorERM7/LxRRR4avJ8PxHD6njmPzEvvcnzRcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDVx9HaLZCGHjS1wUT22SPZai+n4MB8GA1UdIwQY
MBaAFKBPyYDt/EeeBGrgKxDlckW7ksi3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0VfSmdPMzhSNTRFYXVBckVPVnlSYnVTeUxjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9mNTVkZjEtMGJhNi00MzBmLTgwOWQt
NmIwMzVjZWUxOTgxLzEvb0VfSmdPMzhSNTRFYXVBckVPVnlSYnVTeUxjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9mNTVkZjEtMGJhNi00MzBmLTgwOWQtNmIwMzVjZWUxOTgx
LzEvb0VfSmdPMzhSNTRFYXVBckVPVnlSYnVTeUxjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQXVPEsrm
bJX+Lbe7Fep7dRMiLKvzz0wA1ArsiZ9ckTWOlLCQkcg63d5dt2VnOr2aG6AOrAZ2
0PbZlws38B8mj3sF+/Urj7BbufUnRZ+ydoP55+4onlu2U1DwIw5X5tXb+SsYPqDC
9z1SyrhF7uofSay8mg3O4yWwRMhwcWEVMGv6LkIwNQRDgbwlSHA4GaCXUCXNU8DM
G1AS3XH1UwWZrROHXSmRaJnIbZkjGNjTHmDPNFOefUy22bXTxlfZVu6ZCQeVhM0T
l6lHrkG9gNYKpXkRXS4zj8kmnZE1rpphmMmf4wqc2IRPcXuKjKvbkYT4vUUEeh8C
Y++9tR6AoLRXLA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:56:17 2026 by rpki-client