Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
File: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft (raw, json)
Hash identifier: D2T1Lux2hJXdF79AlzmIEuSzhMoT7fb7LaZYWMlZA2I=
Subject key identifier: AB:CC:DC:4C:42:C0:90:35:DD:A4:4B:14:7A:F4:E4:A3:A2:95:52:57
Authority key identifier: A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE
Certificate issuer: /CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de
Certificate serial: 019D9A3E7BEDBD982AB5532BF488C5E612E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
Manifest number: 11F0
Signing time: Fri 17 Apr 2026 07:01:19 +0000
Manifest this update: Fri 17 Apr 2026 07:01:19 +0000
Manifest next update: Sat 18 Apr 2026 07:01:19 +0000
Files and hashes: 1: E_iRTXv34ZqZD3pIYO9UjKGuMZM.roa (hash: i1fiJO0e9H9m1mOdq45mO4/oIY+M6L6ueaw+taXDZdY=)
2: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl (hash: 7eWWXxUm+KR2InUROliL0XFSWbMNXOTS4bA43yCCqzI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:7b:ed:bd:98:2a:b5:53:2b:f4:88:c5:e6:12:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de
Validity
Not Before: Apr 17 07:01:19 2026 GMT
Not After : Apr 18 07:01:19 2026 GMT
Subject: CN=abccdc4c42c09035dda44b147af4e4a3a2955257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c9:d8:b3:8e:76:d8:ef:ff:4f:6c:44:99:b6:
56:e0:a2:7e:a8:ae:72:0a:1b:f9:39:9b:cf:2f:f3:
84:01:05:7c:47:fd:4c:03:89:31:fd:53:65:d6:21:
38:0f:e0:42:09:9e:5d:2e:f4:41:09:3e:4c:09:9b:
bc:66:32:6f:ca:a3:3a:5c:9a:88:62:6d:09:61:ed:
93:f9:7c:52:61:44:49:e6:18:e5:4f:f5:90:6f:08:
d3:55:66:15:8a:ee:d2:f7:42:dc:15:52:59:38:27:
d7:af:24:6f:11:49:06:fa:1c:d7:39:57:be:d4:bd:
e4:73:2a:ac:c5:2f:42:5f:53:f2:f1:25:24:24:76:
fb:d0:60:e7:b7:56:c6:3d:94:d4:0e:04:ae:f3:b0:
08:47:0a:fd:02:49:54:56:f5:de:72:a5:de:c6:5f:
5d:0d:4e:64:09:f1:0c:c7:69:2c:8e:cc:11:46:36:
89:1f:08:bc:2e:64:0c:ad:f9:dc:32:1a:00:a4:e6:
1a:99:c0:20:e9:ab:00:ee:62:fb:62:86:aa:c0:e2:
07:54:bf:6b:a4:5e:65:57:d9:a6:fd:41:63:1f:ec:
89:e9:44:a9:01:fb:13:5d:e4:43:e8:81:34:2e:d4:
8a:11:26:87:bc:61:64:60:6e:b0:48:da:d1:bf:2b:
4b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:CC:DC:4C:42:C0:90:35:DD:A4:4B:14:7A:F4:E4:A3:A2:95:52:57
X509v3 Authority Key Identifier:
keyid:A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:0d:e3:67:40:d2:8e:26:61:ae:6b:bc:84:01:1f:dc:c1:0e:
0b:7c:6c:74:a8:53:7d:2e:ac:3f:ba:a2:b9:96:6d:76:94:e6:
27:65:52:85:c4:b7:bd:88:12:fc:e4:e2:23:32:4b:fe:27:07:
cc:67:cd:8d:78:1b:6f:ba:46:fd:2d:e1:d5:31:6f:bd:df:c5:
a6:e1:18:31:99:08:4a:f3:9e:75:9a:81:4b:64:a9:8e:e1:25:
18:96:27:6f:3b:8c:63:3f:07:91:be:e0:56:45:7e:96:47:e2:
75:b9:df:f8:54:41:d9:55:df:82:3d:02:92:53:0a:45:bd:98:
73:70:46:cf:4b:50:53:68:f7:de:ce:39:ca:24:79:bf:ee:d9:
98:85:b8:8c:ca:96:01:28:22:56:c5:4c:1c:4d:f8:49:e9:ef:
31:7d:0e:1f:c6:33:a8:71:12:89:39:77:fd:1e:cb:a3:23:94:
d9:f4:f4:35:b1:18:e2:be:88:e8:d9:4d:00:4c:06:84:00:a9:
13:d0:d2:ac:6a:5d:77:c5:52:9a:fb:7e:e1:f4:e3:6b:cb:49:
eb:5c:39:d2:44:9b:b3:4d:7f:20:9c:51:e5:e9:a5:f2:07:ab:
9b:59:25:c3:4a:9b:27:b7:83:78:30:7b:9a:ce:7f:bd:02:9b:
b0:80:62:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:17:01 2026 by rpki-client