Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
File: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft (raw, json)
Hash identifier: wDnEQSCa7N9IHwD9ef4P0mmsAxTQs/ibRp/lrxtWIJg=
Subject key identifier: 47:6E:2E:56:BF:78:66:86:55:5C:BB:E1:BA:E8:5F:BF:BB:99:3C:C6
Authority key identifier: A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE
Certificate issuer: /CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de
Certificate serial: 019CACB45B721A07C916A7357D0CE34F6441
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
Manifest number: 1175
Signing time: Mon 02 Mar 2026 04:00:26 +0000
Manifest this update: Mon 02 Mar 2026 04:00:26 +0000
Manifest next update: Tue 03 Mar 2026 04:00:26 +0000
Files and hashes: 1: E_iRTXv34ZqZD3pIYO9UjKGuMZM.roa (hash: i1fiJO0e9H9m1mOdq45mO4/oIY+M6L6ueaw+taXDZdY=)
2: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl (hash: 4HVnOWjY80KzYVuwRF3WJFNxMaL8l8w3PFNB4sMWINI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:5b:72:1a:07:c9:16:a7:35:7d:0c:e3:4f:64:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de
Validity
Not Before: Mar 2 04:00:26 2026 GMT
Not After : Mar 3 04:00:26 2026 GMT
Subject: CN=476e2e56bf786686555cbbe1bae85fbfbb993cc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:88:2f:65:85:bd:ac:4a:9a:61:f3:18:51:61:
ad:f1:98:61:81:d4:77:90:ad:94:16:c6:f0:80:5b:
0c:3b:b9:f0:b8:2b:47:ad:96:e2:d8:df:2d:71:92:
6b:24:d7:f4:b7:4b:45:6e:96:dd:03:d1:34:97:86:
74:fd:b9:1f:e2:ee:4b:09:17:d4:42:35:8f:14:f0:
18:4a:0e:38:e4:b9:d1:9f:88:bf:55:9a:d9:0a:2c:
31:4b:88:67:ee:13:5e:2b:70:85:69:7b:89:1a:20:
ea:43:9b:81:6f:a4:52:e3:14:6f:a5:3c:e4:00:cd:
ce:b4:09:4b:b0:d5:8d:51:b7:64:af:0c:32:af:14:
04:45:44:5f:cc:a8:03:0d:2b:1e:f6:15:e3:03:05:
d0:07:1a:88:22:5d:19:13:01:11:1b:0c:9b:a9:08:
ca:51:b3:2d:5f:78:58:01:54:6f:b2:e3:c5:c0:5b:
b2:d0:5c:b7:62:fb:1e:e7:f5:ff:da:27:be:1f:6e:
7a:5b:31:30:ef:32:2b:94:99:8a:b1:32:21:ac:eb:
8e:fc:59:b2:26:5d:10:90:bb:d9:40:7a:86:9e:16:
e5:d2:0d:33:3f:e1:08:f7:ac:cc:c5:4d:67:21:a9:
80:e9:ab:28:d0:7f:2a:c4:5b:46:1d:1b:8c:5f:8c:
fe:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:6E:2E:56:BF:78:66:86:55:5C:BB:E1:BA:E8:5F:BF:BB:99:3C:C6
X509v3 Authority Key Identifier:
keyid:A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:91:32:50:78:2e:34:2b:35:98:9a:b3:37:6e:95:81:70:c1:
57:c3:81:d1:48:d5:83:de:94:42:17:b3:03:1d:9f:81:10:2c:
33:6e:04:8b:b5:85:3e:2f:a4:62:0a:40:77:b9:f4:20:7b:d2:
19:49:64:38:09:fa:19:12:29:27:78:75:e6:58:bd:c3:17:3e:
3f:b5:53:31:8a:52:7e:9c:18:8b:a2:b4:d9:8a:45:3e:ab:48:
a9:a3:5d:ad:86:5b:84:77:92:db:7d:e1:95:28:70:41:8d:db:
ca:e1:b4:91:64:e9:12:7d:ee:4f:dd:20:ab:0f:92:e8:c5:37:
69:31:f8:fe:6b:13:da:90:a3:bf:bd:e0:36:95:f0:00:0a:88:
a9:fe:81:00:13:55:af:4f:4e:c6:e1:c4:8d:7a:68:56:7d:96:
4b:5c:e7:dc:47:f9:98:2b:d5:f8:c6:cb:48:10:49:74:a4:3c:
0f:ee:73:54:16:a8:96:ea:ea:c0:0d:e9:53:2d:eb:6c:75:c2:
97:5c:1f:a1:6b:56:2f:2a:9a:e4:74:fd:d6:2d:3b:8c:71:f5:
e8:88:41:eb:80:82:36:96:34:65:d3:20:ba:96:1b:09:2d:a3:
31:f0:5c:1b:7b:48:7b:14:47:64:8c:32:6a:09:44:05:db:6b:
22:24:f3:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:14:49 2026 by rpki-client