Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
File: OA-TW80EhiXnAVXPLMKCniwgcqY.mft (raw, json)
Hash identifier: TqQiF1ESe+qw9DTj2m1jBVVhFJMAKNOr6LkSMPsmF6w=
Subject key identifier: 65:46:85:5C:06:F4:72:1D:22:72:13:06:94:FA:96:AA:61:07:5E:00
Authority key identifier: 38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
Certificate issuer: /CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Certificate serial: 019CADFE8B9614A865F99C88A6FEE9280C51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
Manifest number: 052D
Signing time: Mon 02 Mar 2026 10:01:06 +0000
Manifest this update: Mon 02 Mar 2026 10:01:06 +0000
Manifest next update: Tue 03 Mar 2026 10:01:06 +0000
Files and hashes: 1: OA-TW80EhiXnAVXPLMKCniwgcqY.crl (hash: jTe0YFnARnsUhrmAwCK9SinjPAs8/BbMcF9D5xnqLHI=)
2: Q9r_G5mN-fpHCEEziTRaRU3KmFI.roa (hash: hXNMo0ooe3x7ylZ3iHUiRzE6Xm2lDI4+UmM5cDjZux0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 10:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:8b:96:14:a8:65:f9:9c:88:a6:fe:e9:28:0c:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Validity
Not Before: Mar 2 10:01:06 2026 GMT
Not After : Mar 3 10:01:06 2026 GMT
Subject: CN=6546855c06f4721d2272130694fa96aa61075e00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b2:49:b1:48:57:63:16:f7:d0:6d:30:da:66:
ae:3b:8b:01:33:af:d8:37:b5:fc:c5:6b:83:df:68:
14:7c:5a:30:f4:41:7d:bc:0f:13:84:cc:29:17:6c:
8a:dc:d7:e7:eb:41:0a:05:f9:53:c7:41:24:ac:38:
a5:44:99:5f:2c:a3:2b:c5:75:9e:cd:92:64:f1:ba:
a0:58:e2:78:d9:ec:9e:6d:00:53:2a:f2:30:3e:9f:
b4:11:47:55:b5:f0:95:6a:90:ee:0b:38:63:99:50:
8d:83:09:c3:95:0e:77:75:a6:ac:fa:02:a3:19:aa:
d0:b5:5a:43:42:b5:10:d9:6d:03:52:e9:e0:1d:34:
58:85:da:6a:d1:54:14:15:56:bf:ad:98:bf:c8:e2:
2f:cd:56:f7:73:f6:35:33:a2:a0:64:42:19:a0:59:
9e:65:8f:1a:94:8e:0f:78:53:cc:df:7d:66:c2:51:
90:5e:2a:42:3d:5a:51:b0:b8:28:0f:73:46:cf:62:
2a:e5:42:a1:a5:ec:66:d7:d0:8c:0a:6a:9f:db:ff:
39:c6:a3:26:3f:61:c6:ab:c9:03:ee:bc:f2:dd:5b:
f1:e4:02:e0:3c:aa:2a:3c:b3:6c:0f:d0:c9:a0:a1:
ba:4d:90:ff:b1:71:8b:f2:21:b6:f3:bd:3a:5f:a7:
d3:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:46:85:5C:06:F4:72:1D:22:72:13:06:94:FA:96:AA:61:07:5E:00
X509v3 Authority Key Identifier:
keyid:38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:34:c2:26:af:d5:55:0c:54:e7:7b:38:b8:72:c5:ac:64:c0:
14:d5:7d:6b:fe:fe:1f:1e:c7:84:6d:50:9f:b3:a6:99:73:17:
8e:ae:b4:05:2f:d1:fd:90:10:4c:13:d9:47:3d:c7:3b:c2:ff:
f0:c7:ee:1b:9f:b1:90:b1:20:5b:d3:29:9a:08:ea:12:fc:fb:
92:22:46:1f:d3:bf:e1:a7:c9:a3:2f:99:ab:e9:ad:0d:f1:0b:
5b:09:20:47:47:4c:1c:b2:15:e6:f6:e7:01:8c:3c:9e:a5:15:
b3:21:f1:09:24:7c:b6:63:b6:46:bb:bb:29:87:be:16:c8:b2:
59:4c:e2:39:f1:bc:7b:aa:32:db:ee:7d:f5:d2:44:9f:cf:30:
2d:1b:b6:ec:93:3b:75:ec:c1:97:f4:87:00:19:cb:40:87:40:
da:b3:cb:2e:91:c1:90:2e:32:8f:6d:bc:20:15:38:d9:0b:b6:
37:df:cf:f0:3a:b5:24:ea:ef:36:55:47:e6:ca:ba:d8:66:60:
21:d9:06:84:85:05:3a:4a:3a:bf:c3:5a:73:18:2f:9b:36:2d:
93:46:3f:e5:18:20:6f:53:f1:d6:26:da:4d:6b:45:61:f8:51:
a7:ea:dd:9a:cc:65:f4:f4:04:a3:5f:7e:96:43:e7:6b:43:a5:
92:ef:c4:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 18:31:09 2026 by rpki-client