Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
File: oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft (raw, json)
Hash identifier: 7OH3ttYLP/GcPkxR+GXXWFzkH7uxGT9ZD7yPqL93zCw=
Subject key identifier: 8C:78:15:52:18:A1:0F:8A:6F:96:A9:8C:A4:EA:F3:E6:0A:CA:C7:8E
Authority key identifier: A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
Certificate issuer: /CN=a220dda64843a4ee364b089356ca87995830fd77
Certificate serial: 019CAD22F2CA755A81DDDA1C3991A64D7BB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
Manifest number: 0F6E
Signing time: Mon 02 Mar 2026 06:01:14 +0000
Manifest this update: Mon 02 Mar 2026 06:01:14 +0000
Manifest next update: Tue 03 Mar 2026 06:01:14 +0000
Files and hashes: 1: J576zMYsvhdS1kduYOyMDY6tWBo.roa (hash: HQssjrgmFTJtkMHgZxRNGivJgKKVgxjUhkrUCmJCcew=)
2: oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl (hash: qqzt3aJkXtZKV9a5ac8tAoA2530NOZkTaZ9HPslTbDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 06:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:f2:ca:75:5a:81:dd:da:1c:39:91:a6:4d:7b:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a220dda64843a4ee364b089356ca87995830fd77
Validity
Not Before: Mar 2 06:01:14 2026 GMT
Not After : Mar 3 06:01:14 2026 GMT
Subject: CN=8c78155218a10f8a6f96a98ca4eaf3e60acac78e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:bd:6c:a7:ca:9e:91:31:0a:f5:35:d6:d6:30:
42:b8:01:0a:df:d7:6c:7d:78:fb:31:ae:36:a4:68:
15:96:2a:b1:d4:81:a7:0c:cc:a9:14:75:29:c7:f1:
62:f2:d7:3f:ac:3e:2a:c5:4d:c9:78:ef:c8:e0:bd:
be:7a:25:85:19:06:21:d6:af:35:fa:98:20:ac:83:
64:b9:40:d8:5d:b2:14:6e:6e:a8:bf:0d:ae:57:e4:
fb:9f:08:50:05:9b:4b:9a:d4:03:e4:91:e0:72:e1:
99:40:09:9f:b1:2f:cb:22:66:52:51:a7:c7:47:f2:
2e:3e:27:a7:67:91:a4:c8:e7:5f:9d:92:b0:f6:ef:
ce:a8:cb:85:6a:a4:68:5f:4a:9e:a9:a0:29:b1:5d:
a0:21:e2:22:7d:3e:1b:94:ed:9a:0c:2b:d1:5d:a6:
20:f6:10:36:47:6d:57:d5:57:22:59:72:ee:0c:e2:
f0:a2:dc:37:ad:de:66:45:a3:0d:63:80:29:a1:88:
a0:f4:e6:b7:97:2c:73:d1:2d:08:79:21:53:6b:e5:
10:16:eb:21:12:6b:89:38:86:6a:79:3d:59:e1:87:
21:9a:41:17:21:61:12:68:50:99:b6:50:f9:01:5f:
77:6b:21:88:b0:34:83:f6:cf:53:94:c0:c0:06:9c:
ae:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:78:15:52:18:A1:0F:8A:6F:96:A9:8C:A4:EA:F3:E6:0A:CA:C7:8E
X509v3 Authority Key Identifier:
keyid:A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:27:2f:6d:81:59:73:32:e2:57:a9:33:fb:59:fa:ed:20:7f:
91:41:60:96:ad:8c:c0:3a:d8:38:b5:8d:41:84:08:1e:d3:7d:
b4:e5:e9:c6:1a:eb:23:24:78:82:6a:5a:51:70:2c:c5:f5:c1:
20:0d:50:fd:d0:a8:a1:81:97:8e:e2:f8:d3:35:73:f2:31:a4:
e7:d3:73:c0:02:d3:63:9a:eb:4d:a3:5f:3d:07:80:3a:0c:c6:
7f:ab:d9:8a:ef:d6:86:43:4a:b2:4c:54:b7:21:c5:05:17:9e:
dd:e0:21:92:e7:74:fc:20:31:13:3c:5a:5c:d2:1f:b5:5d:bf:
29:87:d4:cb:df:69:b9:bf:1a:db:8a:81:c2:32:89:03:7b:a3:
dc:b7:39:d1:c3:73:d3:b8:06:a0:62:05:02:85:28:9a:62:8c:
d8:c7:c7:f0:eb:2a:9c:fa:7a:69:9e:6d:15:12:53:49:fd:dd:
98:5b:5c:b5:6b:64:59:43:16:7b:46:8b:41:1e:c5:10:c3:da:
58:4e:e9:c2:5d:bd:38:30:5e:c0:d2:b1:89:55:ae:7b:4b:4b:
53:71:96:8e:63:9e:60:90:91:7d:81:01:16:cf:d8:e9:21:e8:
38:17:12:2a:bf:11:dd:dd:b7:9f:ba:9f:00:ba:32:ad:a3:bb:
7b:f8:56:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:26:00 2026 by rpki-client