Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/a7d981-c62d-41f9-8986-f46d243643f4/1/oS4kFDzKxv51k1zBF0Ilnn_4WYs.mft
File: oS4kFDzKxv51k1zBF0Ilnn_4WYs.mft (raw, json)
Hash identifier: KZvbDpmeM219BDtX2hdkSO0HbmC+ZzzaIjhkaqqQA8I=
Subject key identifier: B0:E8:AF:87:D1:0D:69:FB:20:96:10:21:AF:B0:68:21:01:B7:30:51
Authority key identifier: A1:2E:24:14:3C:CA:C6:FE:75:93:5C:C1:17:42:25:9E:7F:F8:59:8B
Certificate issuer: /CN=a12e24143ccac6fe75935cc11742259e7ff8598b
Certificate serial: 019CAD90AA823BEE96AC355BA02F408CFC16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oS4kFDzKxv51k1zBF0Ilnn_4WYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/a7d981-c62d-41f9-8986-f46d243643f4/1/oS4kFDzKxv51k1zBF0Ilnn_4WYs.mft
Manifest number: 16
Signing time: Mon 02 Mar 2026 08:01:05 +0000
Manifest this update: Mon 02 Mar 2026 08:01:05 +0000
Manifest next update: Tue 03 Mar 2026 08:01:05 +0000
Files and hashes: 1: Bl_J51ealE87PBDrcx3y2abYz_M.roa (hash: skpARlMkvLIJ9aXgoSnFArnzouHAgMx1Cjvtifcnmuo=)
2: oS4kFDzKxv51k1zBF0Ilnn_4WYs.crl (hash: OAm05b+xWyYSFoEO5i4/pPBrTF+5Imh8hJY7RrmSzQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/a7d981-c62d-41f9-8986-f46d243643f4/1/oS4kFDzKxv51k1zBF0Ilnn_4WYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/a7d981-c62d-41f9-8986-f46d243643f4/1/oS4kFDzKxv51k1zBF0Ilnn_4WYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/oS4kFDzKxv51k1zBF0Ilnn_4WYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 08:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:aa:82:3b:ee:96:ac:35:5b:a0:2f:40:8c:fc:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a12e24143ccac6fe75935cc11742259e7ff8598b
Validity
Not Before: Mar 2 08:01:05 2026 GMT
Not After : Mar 3 08:01:05 2026 GMT
Subject: CN=b0e8af87d10d69fb20961021afb0682101b73051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:03:13:47:86:5c:51:f7:04:93:89:2d:2c:22:
99:d3:ad:7b:6f:6a:fe:67:82:85:99:dc:73:7b:cf:
ed:27:33:b5:33:09:c1:1c:a9:84:9d:9e:33:cc:ef:
29:f1:85:b6:42:9c:c9:15:da:86:19:a0:08:e1:41:
67:dc:c9:f7:44:45:b5:25:7c:0d:bd:2b:11:1a:c3:
ed:22:19:fa:a4:1f:7c:24:57:57:93:bf:a1:ce:e8:
1d:56:4f:a2:4e:64:07:e1:b0:ef:07:71:d7:b9:22:
04:1a:75:f7:44:d8:c9:cc:a8:7e:1d:a1:ba:80:9f:
8a:4d:66:83:1c:a8:31:8c:a7:13:21:f3:a8:1e:4d:
80:d0:59:b4:42:d1:c0:92:6f:a0:be:53:e6:a9:1d:
5f:b4:c3:3c:f6:8a:75:4d:38:a8:b0:c8:1a:f0:7f:
68:06:c5:b4:b3:98:cd:8c:e8:d6:ed:81:a3:03:56:
d7:a7:13:84:dc:c4:47:98:cf:2e:fa:f9:a4:7c:48:
df:95:30:c6:2a:6e:47:4e:57:0e:2d:1d:46:98:cd:
5b:ff:9f:f6:6f:e7:66:d7:6f:fe:7b:93:af:4a:db:
ae:b3:d9:73:60:be:ae:c3:f4:ba:31:2b:94:67:6d:
71:f0:cf:c1:b2:33:a3:16:2f:39:43:88:aa:f2:0d:
46:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:E8:AF:87:D1:0D:69:FB:20:96:10:21:AF:B0:68:21:01:B7:30:51
X509v3 Authority Key Identifier:
keyid:A1:2E:24:14:3C:CA:C6:FE:75:93:5C:C1:17:42:25:9E:7F:F8:59:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oS4kFDzKxv51k1zBF0Ilnn_4WYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a7d981-c62d-41f9-8986-f46d243643f4/1/oS4kFDzKxv51k1zBF0Ilnn_4WYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a7d981-c62d-41f9-8986-f46d243643f4/1/oS4kFDzKxv51k1zBF0Ilnn_4WYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:55:71:fc:53:14:27:3d:d0:9b:b5:5d:f1:41:f9:32:ce:cf:
4f:c4:44:1a:da:8b:21:5d:01:84:85:cd:db:14:2d:ac:e7:cd:
27:7a:b2:00:bf:cf:ef:e5:72:03:05:0b:c8:19:06:0f:02:85:
a2:96:91:2d:70:ec:3f:2a:44:be:53:d4:ef:85:f6:d4:7d:e2:
ee:71:5c:7b:8d:d9:d0:c3:a4:82:e8:78:13:8a:08:39:54:ef:
7f:d1:11:94:a5:c8:1b:1c:2b:1a:f2:7f:95:c8:aa:01:9c:d6:
ca:1c:0b:c1:9e:0a:6a:66:81:57:cd:99:3c:c9:6a:30:f9:52:
3d:22:c5:24:40:dd:2b:92:ef:8c:8d:8c:d5:df:f3:3a:85:c8:
d2:b1:a2:4e:b6:32:7a:7b:92:ba:57:a7:09:69:dc:48:30:34:
6e:6c:3b:5e:45:33:2a:5e:cd:cf:c5:ef:38:a4:e8:ad:41:cc:
1d:d4:b5:fc:9a:be:1d:2d:b6:89:64:48:f0:d0:a7:03:94:ea:
e4:dd:be:88:3c:bf:3e:4e:8e:fe:c7:72:41:67:c6:73:a6:53:
9b:81:94:a4:2a:f9:0a:66:3f:b5:0d:ae:f6:54:40:92:06:25:
ba:0d:ed:90:8f:a8:12:b3:7c:d0:ec:45:d4:12:69:88:33:97:
ae:c9:9b:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:38:43 2026 by rpki-client