Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
File: oUx52o8IwpnEYya3m55CTkmmh1s.mft (raw, json)
Hash identifier: 8yxj2e9aX7vzE32bB68XGbfm66HyyfX9h7UGzVtuoYM=
Subject key identifier: 1F:7E:12:72:EF:2D:37:76:E0:CE:09:96:C5:AB:0F:C0:71:DB:AE:83
Authority key identifier: A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
Certificate issuer: /CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Certificate serial: 019CAB6B80B14DE340E3B807E34B11009E42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
Manifest number: 17D6
Signing time: Sun 01 Mar 2026 22:01:15 +0000
Manifest this update: Sun 01 Mar 2026 22:01:15 +0000
Manifest next update: Mon 02 Mar 2026 22:01:15 +0000
Files and hashes: 1: oUx52o8IwpnEYya3m55CTkmmh1s.crl (hash: gctyaln/BojNnQiMJ8vOvRVxjxkdDFcO3LubX24rgVU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:80:b1:4d:e3:40:e3:b8:07:e3:4b:11:00:9e:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Validity
Not Before: Mar 1 22:01:15 2026 GMT
Not After : Mar 2 22:01:15 2026 GMT
Subject: CN=1f7e1272ef2d3776e0ce0996c5ab0fc071dbae83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9a:7e:89:d0:1c:d7:f9:37:79:21:a5:f7:83:
9b:c8:a5:55:a2:12:fa:7d:16:3c:34:7e:a0:ef:62:
20:d8:dc:e5:fb:17:41:e9:83:49:ec:a3:9a:85:3b:
49:28:f4:b3:1b:ab:58:2f:73:9a:ec:52:8b:6d:14:
12:b6:50:b3:e7:03:86:57:10:32:03:ca:e3:af:25:
00:1e:54:49:8f:0b:57:6c:10:a4:84:23:a7:64:cb:
df:e4:33:de:8a:0c:91:1c:71:25:fa:45:69:16:8c:
28:cd:02:c5:26:0c:99:c1:77:f8:97:ac:d7:69:55:
22:ef:c7:e5:a7:67:c1:50:87:27:72:58:14:a9:7a:
4e:66:a5:f0:77:0a:38:54:25:ca:3b:03:fc:58:13:
7d:2a:7a:0c:2c:31:71:c3:35:4e:3d:ec:ca:0b:e9:
d3:64:6c:37:6f:35:35:35:6c:ce:94:66:2a:73:bf:
fc:bf:c9:1d:20:2c:96:48:2b:53:69:13:0d:97:b8:
6f:2a:d9:ca:e6:3c:dd:8c:84:f8:97:2a:06:9f:eb:
9a:80:09:0c:20:35:6d:49:56:1f:b7:74:93:f9:4d:
2d:42:72:2f:37:df:26:42:04:71:c5:1e:1c:77:e4:
f2:c8:71:26:53:90:2a:4a:2b:5a:9f:3a:07:29:49:
a0:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:7E:12:72:EF:2D:37:76:E0:CE:09:96:C5:AB:0F:C0:71:DB:AE:83
X509v3 Authority Key Identifier:
keyid:A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:47:ec:c6:be:b8:b7:74:1a:ec:a3:3e:7e:3b:f0:4a:0c:bc:
53:bd:df:1a:9d:7f:2b:06:79:4f:8b:3d:c6:2c:4a:1f:b0:ce:
cf:af:d4:d2:78:ba:71:e5:6d:c4:26:45:66:43:4e:65:14:4c:
9e:b2:cc:fa:c2:f0:9e:2f:f7:25:d9:d9:bb:8b:a7:e4:f8:92:
98:cd:3d:6f:33:35:21:1c:b1:db:c3:0b:20:68:40:48:dd:af:
3f:85:7d:a1:d3:c1:eb:8e:c2:ea:eb:aa:9e:4d:f8:7f:ff:6a:
d6:00:5d:16:b6:04:94:6d:8c:e1:97:24:e6:ab:3c:f7:df:05:
36:15:9c:f5:e4:7f:aa:a3:4b:b4:1a:24:0b:cd:c9:1b:6d:87:
59:5d:21:52:ab:8a:ad:e8:04:9c:23:cc:87:1e:56:68:9e:6b:
bc:b0:36:8c:ed:6f:0a:fc:2f:9e:4c:f2:b9:08:78:14:d6:0a:
88:ca:1b:a1:9b:6b:ac:27:bd:72:b7:2d:33:03:58:45:5c:bb:
8e:5f:2c:34:a2:e9:b4:c0:93:d9:90:a8:33:d5:ce:65:05:d7:
95:3c:37:b9:df:b4:7f:54:24:59:62:a8:86:4e:71:95:0c:1b:
a6:56:e3:4e:42:25:89:6b:53:19:8f:03:2c:9c:d1:b2:92:0d:
75:7a:d8:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:48:59 2026 by rpki-client