Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
File: osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft (raw, json)
Hash identifier: gQXREGA0VyS0yjgspqN4v4w89CiEdmoMPBoKVsvEbjA=
Subject key identifier: B0:59:BC:FB:89:12:D7:EA:0F:5F:51:C0:16:AB:B8:B7:FC:2B:BA:22
Authority key identifier: A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35
Certificate issuer: /CN=a2c56441d83df94bbd0e60144a554639e40e0535
Certificate serial: 019CAAFD3D152160D70D24EA84B1DEFB3529
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
Manifest number: 1038
Signing time: Sun 01 Mar 2026 20:00:48 +0000
Manifest this update: Sun 01 Mar 2026 20:00:48 +0000
Manifest next update: Mon 02 Mar 2026 20:00:48 +0000
Files and hashes: 1: dvdR9JcJ1adEKhDQHP6JqbDnN2Y.roa (hash: VM5iSA8uwKH8wYL20uR8+pC8sXRM47ndx6laWeDwxAU=)
2: osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl (hash: 7GsPqw4tPQCM4RGug14TiQMPAeSRC5yw/vCOynuTku8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:3d:15:21:60:d7:0d:24:ea:84:b1:de:fb:35:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2c56441d83df94bbd0e60144a554639e40e0535
Validity
Not Before: Mar 1 20:00:48 2026 GMT
Not After : Mar 2 20:00:48 2026 GMT
Subject: CN=b059bcfb8912d7ea0f5f51c016abb8b7fc2bba22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:aa:68:26:5b:9e:ed:49:9d:0a:50:a0:10:73:
2f:c8:e2:f0:b3:7d:a2:ce:af:60:a5:30:d5:10:4e:
5c:7f:60:3c:f4:9b:0d:a8:cc:3b:c9:2b:f8:f9:42:
a3:23:33:43:68:db:b0:d8:55:e1:18:05:33:89:65:
e5:ab:69:ac:6c:71:cb:f5:78:b0:b6:5e:d2:e9:2e:
46:d7:03:49:a0:e5:80:39:dd:08:3d:df:3c:74:83:
b9:31:8a:a9:e4:57:68:69:ab:06:88:fe:19:90:5a:
6b:74:9f:2f:08:87:91:33:0c:88:2c:a0:f6:bd:eb:
8e:58:c2:16:96:8f:e5:87:96:3e:fa:3d:20:35:b4:
2d:98:96:c3:bf:0b:94:7f:e0:8e:6b:6c:e5:d2:7e:
20:1c:b8:aa:82:34:3f:ae:60:b2:cd:c3:c1:41:c4:
9c:67:aa:7a:83:fc:2b:1d:77:e2:89:ab:f4:03:92:
05:fc:f2:74:6b:62:31:f2:13:4c:27:f5:dc:91:3e:
21:55:30:c7:c0:a1:a0:ae:e0:be:41:b7:59:16:3c:
16:bc:bf:83:19:8a:f3:9f:6a:ea:a8:a7:c4:e4:d1:
e6:4e:46:17:b2:30:5d:b9:16:ee:f6:7c:a5:36:5f:
2b:8f:f2:1c:f1:7a:34:e3:5e:20:64:d0:2e:c2:63:
64:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:59:BC:FB:89:12:D7:EA:0F:5F:51:C0:16:AB:B8:B7:FC:2B:BA:22
X509v3 Authority Key Identifier:
keyid:A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:ae:b9:2e:5e:07:3c:bb:ab:e5:29:20:68:2f:11:32:fc:82:
51:7e:32:25:9a:da:86:fe:58:50:9f:ed:6f:32:9d:34:a8:ba:
6d:dc:29:f5:4d:59:3c:02:df:61:9e:aa:b6:05:94:3b:f7:f4:
f8:5b:8d:d1:1a:f5:7c:29:69:3d:08:7c:52:7d:e2:0c:d2:3f:
11:17:10:00:74:12:42:80:e2:3d:54:b0:3d:c0:c2:e6:6d:d8:
a8:70:56:44:3a:89:10:88:b9:0e:cb:d3:85:72:2b:f7:92:4d:
6b:51:3f:13:03:2e:dc:03:7c:70:8e:59:d8:db:9f:9b:4e:12:
a1:3a:56:d4:ea:d2:2c:52:68:76:34:84:9f:f1:d6:97:38:8d:
ff:49:24:69:0b:3d:29:bc:3c:41:28:22:a9:34:f0:fa:de:2f:
b8:71:b3:a8:d0:b5:e6:46:a5:c6:c9:dc:fd:3f:51:7f:02:34:
37:0d:c7:4b:a6:df:87:d8:d1:92:0e:af:f9:7f:ff:2b:c9:22:
45:3e:b3:bd:50:f8:76:ad:e9:8d:69:3f:e1:c5:cf:18:5a:3d:
3b:f3:27:7f:bf:82:06:13:40:38:bb:77:11:eb:b5:3c:de:73:
9c:08:fd:ff:6c:b5:ca:88:28:ad:97:70:52:85:d8:83:3a:c4:
bc:bc:5e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:42:25 2026 by rpki-client