Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
File: oNxs0zNOAmkDIjc8O1BuQYT67H8.mft (raw, json)
Hash identifier: 4V/2I3RUxZPB/UEekBKGLkniKNALlRH1EMtvJWhSxL8=
Subject key identifier: 77:53:74:FF:A5:CA:6F:7F:FF:49:76:9E:32:2F:54:0D:8E:15:D9:26
Authority key identifier: A0:DC:6C:D3:33:4E:02:69:03:22:37:3C:3B:50:6E:41:84:FA:EC:7F
Certificate issuer: /CN=a0dc6cd3334e02690322373c3b506e4184faec7f
Certificate serial: 019CAC0FFCDC09DAD41DD45ACAE4C851809C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNxs0zNOAmkDIjc8O1BuQYT67H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
Manifest number: 0673
Signing time: Mon 02 Mar 2026 01:00:54 +0000
Manifest this update: Mon 02 Mar 2026 01:00:54 +0000
Manifest next update: Tue 03 Mar 2026 01:00:54 +0000
Files and hashes: 1: NyOZwRR31L4QERSunRsVBOO4EnI.roa (hash: JNaIlhx9XEnG7hI6SJPh01zqvkEjWomvOZdybUhEE4U=)
2: oNxs0zNOAmkDIjc8O1BuQYT67H8.crl (hash: eCQCzk/6sXPjJnxGHPrwUOEUvSyXEjLJCFMt0FtLp/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNxs0zNOAmkDIjc8O1BuQYT67H8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:fc:dc:09:da:d4:1d:d4:5a:ca:e4:c8:51:80:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0dc6cd3334e02690322373c3b506e4184faec7f
Validity
Not Before: Mar 2 01:00:54 2026 GMT
Not After : Mar 3 01:00:54 2026 GMT
Subject: CN=775374ffa5ca6f7fff49769e322f540d8e15d926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:ff:5f:72:07:a9:4a:67:32:93:a3:fe:ee:64:
b9:7f:66:e1:f9:52:57:64:dd:d0:86:1f:aa:fc:28:
4c:0b:3e:8e:51:b2:51:73:ba:75:14:8a:23:5d:10:
f1:5d:2f:d1:75:17:3d:25:f6:b8:6b:63:89:31:23:
61:1d:0e:8e:5c:fd:28:4a:7b:b9:04:72:a2:42:ac:
f2:ed:37:5b:9f:b5:62:bb:ee:f9:4c:77:2b:ef:9c:
f4:37:8d:8c:2f:4f:ae:ee:5c:27:6c:ec:b7:37:21:
19:8f:ed:51:69:0c:5b:9b:e2:86:d3:3f:66:c5:2c:
20:e9:79:83:23:c2:da:1f:d7:d8:fe:c3:52:aa:39:
88:85:63:69:1c:41:c3:2d:6a:18:66:91:c6:fa:98:
a0:a5:31:df:44:74:13:72:76:d9:ee:25:6b:5f:ee:
60:54:df:5d:c1:47:33:84:e6:e9:94:97:f4:9a:fd:
bf:f6:37:6b:38:80:da:b0:78:67:1b:0d:70:50:d6:
3c:2f:e8:8d:45:f6:2a:54:ce:11:0e:34:5c:7e:8b:
c4:a2:18:bf:b5:83:6b:a9:2a:64:b3:9d:8c:df:d3:
1f:ee:22:00:08:28:61:27:66:9c:b3:ad:0f:37:92:
ba:04:83:78:3a:da:87:31:30:90:ce:f1:2a:91:7f:
20:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:53:74:FF:A5:CA:6F:7F:FF:49:76:9E:32:2F:54:0D:8E:15:D9:26
X509v3 Authority Key Identifier:
keyid:A0:DC:6C:D3:33:4E:02:69:03:22:37:3C:3B:50:6E:41:84:FA:EC:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNxs0zNOAmkDIjc8O1BuQYT67H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:ca:ad:96:21:c3:69:0b:97:26:88:59:f6:2c:92:a8:dc:b6:
9a:3e:f6:5c:b4:5d:06:1e:3c:3c:95:1e:d0:d2:08:d8:64:93:
8f:70:99:21:5c:48:d5:86:5a:ac:aa:92:2f:fa:fa:2b:ff:fa:
82:96:ef:56:db:1b:f5:ab:f7:08:c4:79:74:6d:b7:b4:c8:21:
38:b7:27:06:1a:35:45:24:27:02:fc:d1:3e:0f:b4:c3:26:dd:
08:68:e4:76:16:df:52:1c:1a:39:c7:0b:31:88:e0:83:be:4f:
98:f8:54:69:c4:50:e7:fc:e7:92:69:37:d4:4b:e9:f0:9f:f3:
23:88:1a:c0:cb:f7:1b:2e:ae:a8:ae:5f:ba:6f:ff:1a:82:bd:
2d:0d:c4:7a:fd:40:ad:61:2a:c8:ea:5a:ca:32:ed:b2:7c:dc:
c2:a4:00:eb:2c:56:bb:58:dc:5f:ae:20:c6:2a:2d:30:99:8a:
de:8a:5b:c1:43:30:4e:0c:ab:33:62:53:1e:ed:bf:17:9f:ae:
32:25:c9:fb:2b:76:a8:66:05:b7:bf:73:1c:43:5b:e6:8f:c2:
d6:a8:48:ad:af:51:40:ee:f8:03:4a:15:b6:90:09:28:ad:65:
e7:a5:c3:09:5b:1f:9e:e1:2a:c7:19:be:a4:ff:e4:35:70:66:
76:a7:5b:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:59:10 2026 by rpki-client