Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft
File: owjczEdYTD-oJh23kmouQBcrP3k.mft (raw, json)
Hash identifier: BkWxKOmBYtHkCLkaaXxf6fuK9G1OGUCK78xyK+1NplE=
Subject key identifier: BF:61:C5:F9:DC:F1:C2:05:78:06:F4:00:A6:6F:34:C8:48:22:30:5A
Authority key identifier: A3:08:DC:CC:47:58:4C:3F:A8:26:1D:B7:92:6A:2E:40:17:2B:3F:79
Certificate issuer: /CN=a308dccc47584c3fa8261db7926a2e40172b3f79
Certificate serial: 019D9A071645ED773B70E2744C99D9393235
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/owjczEdYTD-oJh23kmouQBcrP3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft
Manifest number: 0593
Signing time: Fri 17 Apr 2026 06:00:48 +0000
Manifest this update: Fri 17 Apr 2026 06:00:48 +0000
Manifest next update: Sat 18 Apr 2026 06:00:48 +0000
Files and hashes: 1: owjczEdYTD-oJh23kmouQBcrP3k.crl (hash: J0OlwSXGOR3V5sV0tC7vTxtgztkJawxjhX1oZuwxw9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/owjczEdYTD-oJh23kmouQBcrP3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:16:45:ed:77:3b:70:e2:74:4c:99:d9:39:32:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a308dccc47584c3fa8261db7926a2e40172b3f79
Validity
Not Before: Apr 17 06:00:48 2026 GMT
Not After : Apr 18 06:00:48 2026 GMT
Subject: CN=bf61c5f9dcf1c2057806f400a66f34c84822305a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f2:2b:d3:c0:3f:98:07:05:7c:90:53:cc:cf:
94:fc:06:37:3f:0b:f2:2f:c9:0f:39:5a:fb:26:3a:
71:8e:72:da:5c:28:11:4a:82:7a:fb:d5:c5:90:95:
4b:c9:0d:65:45:04:91:78:df:43:b7:9f:9d:6f:7e:
69:08:07:83:72:a3:0a:c0:75:82:27:db:ad:97:e0:
c4:74:73:d4:7f:6b:44:2b:62:93:e5:b9:dc:6c:19:
68:78:23:49:3f:72:ff:e4:55:80:ab:9f:3f:f4:16:
33:39:da:09:71:c1:26:e7:90:cd:22:25:8c:9b:25:
23:82:98:78:9e:e4:1c:f9:8f:f2:41:d4:fa:92:04:
27:dc:2d:01:44:df:2d:bf:1c:5f:ee:b0:66:2c:66:
12:61:e7:e9:64:80:10:a0:80:94:f2:b3:d1:ff:56:
78:7d:0d:f3:85:5e:c2:0c:77:af:05:00:18:b4:e9:
25:d8:9e:3d:96:f4:f1:a2:dd:7f:0c:58:26:84:4d:
a2:81:1f:20:90:b1:a4:96:c3:d2:a0:59:02:89:8c:
6b:4c:de:d7:4d:2c:77:8f:99:7f:22:82:00:8e:3b:
0c:6a:ac:86:0a:20:87:14:63:a9:e4:ca:a3:9e:a7:
68:b8:3f:b6:47:51:2a:91:dc:17:37:10:16:54:cc:
5d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:61:C5:F9:DC:F1:C2:05:78:06:F4:00:A6:6F:34:C8:48:22:30:5A
X509v3 Authority Key Identifier:
keyid:A3:08:DC:CC:47:58:4C:3F:A8:26:1D:B7:92:6A:2E:40:17:2B:3F:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/owjczEdYTD-oJh23kmouQBcrP3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:4d:59:d4:ce:13:32:15:6f:5e:e4:12:cf:d6:36:32:b1:de:
73:db:84:6d:fe:65:9a:66:34:6a:f3:a0:99:68:b7:0d:ec:3e:
69:52:37:ae:73:5c:70:a0:5b:a0:df:2d:18:4b:fb:cf:22:4e:
82:1d:02:7e:ea:0b:80:0a:52:99:d8:f8:04:a1:cf:25:ee:5e:
23:8f:e8:40:91:0f:ff:c7:80:21:7e:69:46:d4:4d:7d:30:eb:
4a:f1:83:1b:04:22:24:95:14:39:20:ab:ca:97:ed:c9:ef:f0:
b9:06:d1:e6:1c:e2:d5:91:2c:45:b8:61:c9:d1:31:68:f3:ce:
2d:5d:5c:b5:03:bd:b5:0d:ff:01:d4:fa:b1:6f:f8:97:44:de:
dc:1c:82:29:0d:c1:04:ee:ee:d2:a3:30:58:e5:88:05:47:ef:
ad:2b:32:0b:82:f5:4e:2a:4a:bd:26:59:c3:34:eb:ca:bc:1a:
86:9d:2b:9d:f0:65:16:ed:d3:d7:dd:b4:4a:42:98:5c:fc:3a:
18:e6:ba:38:37:6e:7e:74:11:fa:a4:04:4f:f1:5d:42:6f:fa:
50:ef:12:64:0e:2a:6e:05:e3:b2:7b:34:2f:5e:c9:35:51:90:
90:4d:67:96:cd:01:dd:d9:77:49:5f:57:42:5b:7f:c3:3e:b5:
7d:f4:41:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:07:56 2026 by rpki-client