Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
File: 0OhNbWqe7eaC7xtcePGz8KMxORE.mft (raw, json)
Hash identifier: O7Ji+T51ZXAOWYmtIzz7l2Se9QiMgX/xqJ9cpQLNF/c=
Subject key identifier: 54:AC:66:05:9A:34:CD:75:AA:9B:FE:92:D9:7C:64:95:B8:09:9D:B3
Authority key identifier: D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
Certificate issuer: /CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Certificate serial: 019D992B697DAA8A1E9E2D723B542C4DB6C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
Manifest number: 0A95
Signing time: Fri 17 Apr 2026 02:00:52 +0000
Manifest this update: Fri 17 Apr 2026 02:00:52 +0000
Manifest next update: Sat 18 Apr 2026 02:00:52 +0000
Files and hashes: 1: 0OhNbWqe7eaC7xtcePGz8KMxORE.crl (hash: amRVTlXmSIWYh/SHG4Lm0crTof5be7kBsDc0fMsYqdw=)
2: iG53FLKNGEtI7O_-qbJCuOHpkfY.roa (hash: btGtfmg9m2lBCFlLyRHCIrg7YepxRxneqBtZfQH7n/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:69:7d:aa:8a:1e:9e:2d:72:3b:54:2c:4d:b6:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Validity
Not Before: Apr 17 02:00:52 2026 GMT
Not After : Apr 18 02:00:52 2026 GMT
Subject: CN=54ac66059a34cd75aa9bfe92d97c6495b8099db3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d0:39:13:ca:7d:49:c9:00:f2:61:61:c6:43:
2b:96:6d:bb:43:17:d8:e3:b4:6d:05:73:20:4e:5a:
f7:14:f3:0c:5c:70:d3:03:dc:4a:2c:0b:0b:9a:f6:
64:da:90:f8:89:de:12:36:70:52:dc:1a:6c:fc:23:
e2:b6:97:76:0a:e2:64:fb:02:6b:97:7a:ec:98:02:
18:da:06:9f:69:1a:e6:4a:af:77:f8:0d:61:ce:a3:
c0:9a:01:00:15:d2:50:78:6c:5a:b4:2f:04:69:67:
e3:ef:01:bd:48:4c:16:cf:0f:31:14:4d:73:08:df:
e6:a1:d3:35:85:db:61:21:85:9b:10:9c:fd:28:3e:
24:38:20:5f:bd:42:27:5f:a6:60:c5:4f:97:d1:05:
5c:7b:7e:a7:40:51:8c:29:fd:ea:57:8d:79:5b:73:
b0:05:ce:c8:2f:e7:18:0a:f8:3e:95:78:db:ac:89:
f8:d8:88:6e:e2:58:be:aa:b1:bb:67:8b:fd:7a:67:
99:8d:03:c8:24:95:25:81:1d:b3:a8:be:85:07:ee:
0a:e4:cd:ee:27:f1:48:e2:31:9d:a3:c9:85:f5:8f:
0c:bd:6d:d8:19:29:80:6a:64:86:7d:f8:cd:fb:71:
f4:c5:1e:4d:ff:3d:35:40:13:c4:03:ce:0f:5f:6a:
8b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:AC:66:05:9A:34:CD:75:AA:9B:FE:92:D9:7C:64:95:B8:09:9D:B3
X509v3 Authority Key Identifier:
keyid:D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:6a:37:3c:0e:3e:1b:ba:5b:e1:2b:bc:2d:7c:66:a0:ff:4f:
53:e2:e6:55:5c:d4:52:80:aa:65:1d:84:4e:0c:4a:59:fc:67:
3a:66:95:10:95:16:ea:5b:fa:39:d1:b7:9b:99:06:c1:94:ab:
ba:43:4b:3e:38:3c:37:fa:78:23:37:e2:e9:67:55:5a:d8:31:
a5:75:16:af:d6:9c:ff:be:a8:ba:05:fe:f1:10:22:e6:17:10:
e9:ee:1c:04:de:f4:3b:b4:6a:49:3c:c1:3f:42:36:0a:46:2e:
57:24:b3:ab:2a:bb:72:a3:a7:ad:37:a8:23:46:90:14:d8:df:
cc:96:ca:b9:58:56:1a:39:86:fb:af:51:ce:47:0f:16:57:92:
51:fe:3f:c3:55:0a:8f:21:67:05:38:e6:ba:a5:1a:c3:6f:1c:
47:89:5d:8b:65:0b:7c:62:d2:b1:05:23:9d:c9:d1:ed:ed:81:
eb:a5:36:3f:85:e5:e3:10:28:19:4d:fb:24:1c:22:cd:dc:c2:
f1:f4:ac:15:7a:52:b9:12:b1:4d:a5:1b:c1:84:7d:e2:2c:c3:
fb:ff:4b:bc:ab:57:6a:04:6f:25:55:33:56:01:9c:db:c2:e2:
c9:4d:1b:e9:45:5c:e2:4a:18:0b:a2:f8:99:7c:98:fe:3f:2a:
fe:9a:1e:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:08:05 2026 by rpki-client