Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
File: oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft (raw, json)
Hash identifier: MRBdpyGDZntvuxlmhquL4zOzIo+PmZ4q4WQROaicX7o=
Subject key identifier: CB:81:04:A7:5F:49:23:10:08:FD:D8:C1:ED:C9:66:12:5C:E3:68:56
Authority key identifier: A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
Certificate issuer: /CN=a220dda64843a4ee364b089356ca87995830fd77
Certificate serial: 019D9AAC1EBC277072C58D575927EC0D28F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
Manifest number: 0FE9
Signing time: Fri 17 Apr 2026 09:01:04 +0000
Manifest this update: Fri 17 Apr 2026 09:01:04 +0000
Manifest next update: Sat 18 Apr 2026 09:01:04 +0000
Files and hashes: 1: J576zMYsvhdS1kduYOyMDY6tWBo.roa (hash: HQssjrgmFTJtkMHgZxRNGivJgKKVgxjUhkrUCmJCcew=)
2: oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl (hash: uYcfWymrHTasXeOB48Hr/V8fzNUxUTHXJK+NoDLbmqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 09:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ac:1e:bc:27:70:72:c5:8d:57:59:27:ec:0d:28:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a220dda64843a4ee364b089356ca87995830fd77
Validity
Not Before: Apr 17 09:01:04 2026 GMT
Not After : Apr 18 09:01:04 2026 GMT
Subject: CN=cb8104a75f49231008fdd8c1edc966125ce36856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e8:30:03:47:28:91:a0:05:11:64:ea:6d:b1:
8e:06:d3:0a:44:c9:16:3d:f5:e8:52:ee:a8:c3:fc:
d7:a0:44:6e:42:74:7c:e6:b2:50:a7:ed:1a:1d:4b:
26:bc:01:e6:ef:8d:50:e8:9b:8b:1b:59:3b:7d:75:
c5:98:0a:48:d1:f7:7e:c9:22:f2:12:46:de:e2:e1:
e7:fa:16:a0:c7:ea:b3:c7:15:1d:b8:eb:a4:1a:48:
b0:15:7c:6f:84:da:39:2a:d0:9c:29:70:2f:e3:23:
c5:79:10:6a:51:91:e9:2c:35:38:cf:12:04:ac:18:
89:2b:b3:04:65:bd:d7:e6:ca:e7:6b:61:3b:b4:c2:
1d:b5:2a:98:2e:70:38:4e:66:91:00:03:2e:40:6a:
5e:60:87:47:34:9e:de:d4:4b:e2:77:23:c3:98:60:
8f:b7:f8:c2:31:e1:b3:b9:7c:c1:2a:21:50:34:0c:
07:c6:2a:ce:7c:61:62:77:d7:03:13:a2:06:53:8b:
98:f9:47:bb:bf:fb:2a:78:ce:f1:07:4e:af:f0:06:
19:e0:48:61:f3:72:c5:70:b3:63:1a:97:5c:c1:a0:
aa:53:c6:af:aa:4d:57:88:47:92:d6:de:94:4e:80:
cd:ec:b3:54:7a:01:e8:6f:99:c7:de:ef:8d:22:94:
e0:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:81:04:A7:5F:49:23:10:08:FD:D8:C1:ED:C9:66:12:5C:E3:68:56
X509v3 Authority Key Identifier:
keyid:A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:6a:40:ff:8b:62:b9:40:09:78:5b:26:aa:31:55:08:df:20:
90:f8:07:91:20:15:55:aa:b6:16:bd:4a:91:74:14:ee:f5:8f:
f7:9f:b4:29:3e:a2:57:cc:5c:81:d9:1c:7e:59:5a:41:18:ff:
8b:64:9b:08:d9:4f:7a:aa:f3:bb:dc:8e:ee:ac:c8:8f:68:44:
21:1d:5a:36:ea:21:6a:a9:4d:2b:93:c5:6d:01:ca:7d:11:47:
25:16:c5:b2:29:4c:49:de:c0:b5:43:b9:c7:84:a7:6c:06:ab:
68:fe:8d:81:ec:5f:f8:02:a1:a5:a8:53:8c:08:fa:66:ac:69:
c8:bc:ef:eb:59:bc:aa:79:c6:62:48:28:b1:14:93:b8:b4:a8:
e4:3c:82:2a:84:08:93:77:c5:86:90:74:44:2a:d2:ca:cf:8f:
74:dc:21:e9:c9:66:7e:f8:cf:85:57:55:be:ac:1c:5f:36:3d:
43:7b:9c:61:fd:28:e0:6d:d4:39:77:08:43:8e:47:35:0d:03:
05:10:f0:6e:39:d0:d6:04:cc:3f:fc:aa:77:7a:89:1a:2d:00:
0b:3c:99:ce:4c:a3:dc:35:3b:24:a7:52:6b:e6:f8:c9:50:7a:
26:fe:88:8f:63:a2:43:c3:3b:94:20:de:e9:7a:a4:f6:4c:3c:
83:5c:0e:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:12:35 2026 by rpki-client