Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
File: oUx52o8IwpnEYya3m55CTkmmh1s.mft (raw, json)
Hash identifier: 0RhiTDSHl4R/WhGYD5RS9CGt52szlV2UdPiz4iF7rcw=
Subject key identifier: D8:EB:AA:D8:A0:B1:45:A0:B5:CB:1E:96:27:5E:65:2B:7B:A3:74:87
Authority key identifier: A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
Certificate issuer: /CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Certificate serial: 019D98F4680FA52E276EF025A8622CB4E831
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
Manifest number: 1851
Signing time: Fri 17 Apr 2026 01:00:47 +0000
Manifest this update: Fri 17 Apr 2026 01:00:47 +0000
Manifest next update: Sat 18 Apr 2026 01:00:47 +0000
Files and hashes: 1: oUx52o8IwpnEYya3m55CTkmmh1s.crl (hash: 7DifWn4HXSw6y0gY4DbVFmNR/6Xd3oMG9DIF3hCTCcg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:68:0f:a5:2e:27:6e:f0:25:a8:62:2c:b4:e8:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Validity
Not Before: Apr 17 01:00:47 2026 GMT
Not After : Apr 18 01:00:47 2026 GMT
Subject: CN=d8ebaad8a0b145a0b5cb1e96275e652b7ba37487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:5b:bf:a6:6a:66:98:65:7f:f2:00:ea:e7:52:
df:1b:82:13:ce:2d:52:e6:fe:6a:61:42:b5:f6:8d:
41:47:b2:d9:9e:0a:4a:dc:2f:95:73:5f:0b:68:40:
1a:0e:27:9d:d8:1b:05:1c:20:95:e0:50:e8:df:74:
ea:19:7e:8f:aa:ba:e8:3f:bc:99:18:8a:d6:d0:79:
12:5f:b6:fb:71:00:d8:1f:21:5d:c0:05:6b:a6:b3:
b6:69:fe:58:1a:53:aa:f8:d6:2c:b5:6b:3c:d2:b2:
35:48:b3:9c:1a:d3:85:db:04:1d:c7:bc:4f:51:f7:
2c:e9:b2:c9:af:1d:19:de:41:6c:2e:9e:d3:99:10:
d0:9a:8f:ce:c2:d6:9c:bd:ad:86:ad:29:c6:f0:4a:
a2:ce:49:b8:8f:4a:54:75:03:52:65:af:34:01:81:
11:e7:e7:a7:76:bf:03:3a:84:d6:20:6d:31:66:cb:
67:82:35:fa:31:fd:6a:89:29:63:ac:f6:4e:e5:74:
b0:66:dd:ef:e2:03:6e:7c:ce:88:2c:d3:69:eb:db:
b4:37:68:d4:8c:92:16:18:52:bc:7e:ab:d9:a1:1a:
9b:f4:32:18:7b:13:68:4e:7d:88:be:af:be:30:ee:
f2:69:7b:82:53:98:83:32:c5:73:fa:ce:9e:48:04:
c4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:EB:AA:D8:A0:B1:45:A0:B5:CB:1E:96:27:5E:65:2B:7B:A3:74:87
X509v3 Authority Key Identifier:
keyid:A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:a4:71:b9:9f:b4:23:f8:b1:46:20:1b:94:d8:59:4e:9c:24:
d7:c7:e8:0d:70:ed:e8:ae:bf:61:9c:61:b0:e1:03:ab:77:77:
ea:a0:0e:82:af:be:51:aa:a5:55:7c:45:3c:02:28:98:a4:4c:
6e:f7:67:19:5d:04:8c:b4:61:b5:bc:ee:ec:70:63:55:67:5a:
f6:53:91:b6:6c:9a:27:1b:a4:05:d6:65:85:8a:5e:0f:b2:9c:
2a:a4:22:16:5d:6e:08:2e:3d:fb:57:1e:40:90:71:65:c8:6b:
b0:7a:d5:cd:9b:5a:33:d4:a9:29:12:ce:dd:74:a7:e0:7d:c7:
ac:4c:f8:a6:81:88:e1:a7:a8:dd:21:78:36:dc:77:69:48:97:
4e:8b:1d:bc:84:51:98:2c:e6:d6:f4:5e:3c:99:01:9c:5a:83:
1d:29:52:34:7f:bb:b4:24:93:90:24:9c:fd:39:dd:b7:d9:1c:
e1:f3:1c:08:cb:70:e5:ae:9d:ce:04:da:0a:de:a7:b0:92:7e:
61:20:f2:c0:c1:72:87:5f:bf:62:01:96:8a:dc:fa:b5:d0:7c:
fc:ba:c6:c8:52:46:ce:90:49:54:46:60:f5:98:85:06:eb:a8:
6f:ec:01:2d:48:6a:0a:28:6e:37:32:25:7c:c4:b1:c7:8a:81:
b0:01:ed:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:22:51 2026 by rpki-client