Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
File: oL_QbOhVti2baIzYxTXV9JTNOTI.mft (raw, json)
Hash identifier: D5qIW2FthOTznoGp3/L4/l3l+VRbaPWdqa3tpsnQn+s=
Subject key identifier: 98:75:E8:96:4C:15:22:F2:0F:10:22:F6:EA:9B:4F:9F:41:C0:AD:82
Authority key identifier: A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
Certificate issuer: /CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Certificate serial: 019CACEB74737806D8190021835B3CBACE45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
Manifest number: 184B
Signing time: Mon 02 Mar 2026 05:00:37 +0000
Manifest this update: Mon 02 Mar 2026 05:00:37 +0000
Manifest next update: Tue 03 Mar 2026 05:00:37 +0000
Files and hashes: 1: LKfnJFP3stLPWkjsWhakvnaxplg.roa (hash: 3FNKamFL0cuW1/UK40gTZTnTQ2szlVWiH3Kqp5bB2Jc=)
2: _UAEb8lxXMfLr99B3gLyKpq6SRc.roa (hash: 5fNZHaDxkH+elaL5Caoe2vhcopBQ8ICg8obtjvq1FY0=)
3: oL_QbOhVti2baIzYxTXV9JTNOTI.crl (hash: h7Tbw9ZqrLuV5Xe0ENwxNMC1r9Odyl+K995ijPsj2yg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:74:73:78:06:d8:19:00:21:83:5b:3c:ba:ce:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Validity
Not Before: Mar 2 05:00:37 2026 GMT
Not After : Mar 3 05:00:37 2026 GMT
Subject: CN=9875e8964c1522f20f1022f6ea9b4f9f41c0ad82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a0:cb:a3:37:94:66:d3:71:05:01:a8:58:d7:
e2:5f:65:dc:df:a6:54:48:78:b3:a0:03:65:f6:7f:
e0:0d:1e:5d:31:f9:6e:9f:41:d3:39:3d:a5:b5:b9:
6d:e5:8a:02:ef:32:7c:aa:03:04:e7:4a:52:b1:20:
d3:48:42:ce:be:1b:5d:0d:e1:df:02:66:eb:a2:18:
20:5f:f3:5c:0d:96:d2:a1:e8:dc:e6:ab:67:43:af:
57:ff:93:3f:59:9f:11:81:db:a5:f8:8f:40:79:8c:
d4:81:7a:c0:07:c6:e9:ea:11:61:0b:5e:21:03:58:
3f:03:b8:b5:4e:4a:58:29:ed:b3:17:d8:eb:48:62:
31:50:87:fa:ca:97:80:4d:2b:c9:f8:db:27:92:96:
c6:7d:14:10:b4:96:0b:0b:3b:03:47:5e:17:f1:99:
3e:76:fa:e6:f4:04:bf:db:16:aa:34:ec:01:5b:a4:
f5:af:5c:62:c7:1b:c6:39:a7:88:e5:ab:26:2e:60:
72:c6:48:f5:ab:07:21:66:1d:6a:68:44:20:81:ac:
57:88:33:96:7f:63:3e:4b:79:75:fb:03:c9:42:45:
86:1a:99:f8:4c:25:1e:01:2a:5d:39:cc:d7:c8:d6:
98:fe:ef:02:94:4a:e2:c6:bf:a5:5a:55:b6:04:70:
0a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:75:E8:96:4C:15:22:F2:0F:10:22:F6:EA:9B:4F:9F:41:C0:AD:82
X509v3 Authority Key Identifier:
keyid:A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:9d:83:a5:8d:ac:1c:22:2b:f7:77:16:ac:7a:d9:88:29:57:
c7:44:24:3c:b8:f9:1d:54:62:e5:f4:2e:13:06:9e:66:de:31:
3a:e6:7b:17:6e:9c:90:fe:70:0a:49:87:07:0b:b8:6b:35:38:
cf:59:f4:89:19:dd:e9:ea:71:80:7e:cc:cc:3d:bd:3c:6c:42:
fe:5c:30:77:ac:23:64:1a:2e:8d:a3:56:c1:7a:f3:22:e1:0b:
f3:da:80:91:5f:29:90:fe:96:51:25:21:d5:d9:c0:f1:9f:ac:
e5:68:96:46:57:8e:7e:49:8c:86:af:48:bd:b2:2f:6d:ba:45:
d6:8b:0f:36:4d:40:a3:e2:2f:d1:71:11:22:82:ca:fe:53:dd:
c3:e2:16:09:f5:21:94:ed:22:37:88:bc:12:9a:27:7c:af:d4:
6e:4a:ab:04:49:90:4c:0e:d5:4c:fe:e1:05:b9:63:b5:73:66:
72:fd:9f:be:d5:ec:6f:ae:64:dc:6d:14:19:12:b4:ba:3d:42:
bf:e5:b4:3b:da:c8:0e:16:63:d5:5d:9b:70:fc:15:1f:9c:b5:
d9:b5:fe:bf:61:c3:b2:13:65:ae:ca:ca:88:c3:9f:41:d1:a8:
5d:d3:9b:45:a6:af:39:ac:0e:3c:5b:b0:65:eb:80:39:0b:71:
d9:5d:41:2b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZys63RzeAbYGQAhg1s8us5FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwYmZkMDZjZTg1NWI2MmQ5YjY4OGNkOGM1MzVkNWY0OTRj
ZDM5MzIwHhcNMjYwMzAyMDUwMDM3WhcNMjYwMzAzMDUwMDM3WjAzMTEwLwYDVQQD
Eyg5ODc1ZTg5NjRjMTUyMmYyMGYxMDIyZjZlYTliNGY5ZjQxYzBhZDgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoqDLozeUZtNxBQGoWNfiX2Xc36ZU
SHizoANl9n/gDR5dMflun0HTOT2ltblt5YoC7zJ8qgME50pSsSDTSELOvhtdDeHf
AmbrohggX/NcDZbSoejc5qtnQ69X/5M/WZ8Rgdul+I9AeYzUgXrAB8bp6hFhC14h
A1g/A7i1TkpYKe2zF9jrSGIxUIf6ypeATSvJ+NsnkpbGfRQQtJYLCzsDR14X8Zk+
dvrm9AS/2xaqNOwBW6T1r1xixxvGOaeI5asmLmByxkj1qwchZh1qaEQggaxXiDOW
f2M+S3l1+wPJQkWGGpn4TCUeASpdOczXyNaY/u8ClErixr+lWlW2BHAKCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJh16JZMFSLyDxAi9uqbT59BwK2CMB8GA1UdIwQY
MBaAFKC/0GzoVbYtm2iM2MU11fSUzTkyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8wMzMxNmQtMDRlMC00NjYwLWE2M2Ut
NjcxODM5MjAwNjA0LzEvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS8wMzMxNmQtMDRlMC00NjYwLWE2M2UtNjcxODM5MjAwNjA0
LzEvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAx52DpY2s
HCIr93cWrHrZiClXx0QkPLj5HVRi5fQuEwaeZt4xOuZ7F26ckP5wCkmHBwu4azU4
z1n0iRnd6epxgH7MzD29PGxC/lwwd6wjZBoujaNWwXrzIuEL89qAkV8pkP6WUSUh
1dnA8Z+s5WiWRleOfkmMhq9IvbIvbbpF1osPNk1Ao+Iv0XERIoLK/lPdw+IWCfUh
lO0iN4i8EponfK/UbkqrBEmQTA7VTP7hBbljtXNmcv2fvtXsb65k3G0UGRK0uj1C
v+W0O9rIDhZj1V2bcPwVH5y12bX+v2HDshNlrsrKiMOfQdGoXdObRaavOawOPFuw
ZeuAOQtx2V1BKw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 10:13:54 2026 by rpki-client