Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft
File: owVfB71HqGR4w79HOSVzrNU9Y24.mft (raw, json)
Hash identifier: qHIaYonzRhe55ZUfMo7jUeFPmib9dX6FKZ10tV8KuII=
Subject key identifier: EE:5A:0F:8D:7C:D0:FD:AE:8E:5B:C0:C7:4B:11:F6:28:02:C4:47:B8
Authority key identifier: A3:05:5F:07:BD:47:A8:64:78:C3:BF:47:39:25:73:AC:D5:3D:63:6E
Certificate issuer: /CN=a3055f07bd47a86478c3bf47392573acd53d636e
Certificate serial: 019D9962557CDC4E600C3C5326E2A183DF10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/owVfB71HqGR4w79HOSVzrNU9Y24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft
Manifest number: 18BD
Signing time: Fri 17 Apr 2026 03:00:51 +0000
Manifest this update: Fri 17 Apr 2026 03:00:51 +0000
Manifest next update: Sat 18 Apr 2026 03:00:51 +0000
Files and hashes: 1: owVfB71HqGR4w79HOSVzrNU9Y24.crl (hash: PKkK+b7eQQ4rgeFXJDwdqSnHcVIj6CT/AT9tmHkPHeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft
rsync://rpki.ripe.net/repository/DEFAULT/owVfB71HqGR4w79HOSVzrNU9Y24.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:55:7c:dc:4e:60:0c:3c:53:26:e2:a1:83:df:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3055f07bd47a86478c3bf47392573acd53d636e
Validity
Not Before: Apr 17 03:00:51 2026 GMT
Not After : Apr 18 03:00:51 2026 GMT
Subject: CN=ee5a0f8d7cd0fdae8e5bc0c74b11f62802c447b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:5d:01:38:f4:a2:14:4e:44:e1:15:8e:93:64:
71:40:b2:ea:32:0d:32:7a:26:11:f3:92:c6:3e:6f:
69:74:ee:aa:c4:bc:b6:81:17:01:e4:00:6d:a9:b5:
f8:f9:c4:39:13:8e:fd:f7:a1:1b:64:ad:7a:31:ed:
85:49:da:f2:73:1f:ee:46:87:05:27:f0:17:b6:5a:
95:55:a7:77:1b:65:56:0e:ab:69:30:e9:47:f5:a8:
57:47:14:c9:eb:7b:87:73:3d:ce:71:c3:51:4a:5c:
b2:35:3b:6f:f1:4b:e5:d3:10:e0:19:bb:fc:4e:1f:
5b:7a:21:1f:3a:5c:f2:a6:ca:22:71:a6:05:38:b2:
23:ac:ad:9f:09:96:90:fb:ad:20:d0:e9:ac:61:c7:
29:ff:60:6b:05:37:d7:c6:89:26:d3:6b:f9:df:5b:
57:d6:87:c2:48:95:c5:4d:0f:3d:fb:95:34:6c:3e:
5b:a6:a6:8f:c7:d5:36:41:0e:f9:95:a9:ea:c8:6f:
62:bc:eb:2c:8d:5e:07:44:1e:2e:17:ad:73:c7:2f:
8a:3f:34:57:ce:90:3d:69:3e:b3:fc:8b:1b:f9:3d:
8e:7c:27:03:b0:bf:67:50:fc:9b:d7:6f:b9:c2:ad:
e1:b7:fe:62:4f:07:ff:2a:d0:a0:6b:f9:91:cb:45:
e8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:5A:0F:8D:7C:D0:FD:AE:8E:5B:C0:C7:4B:11:F6:28:02:C4:47:B8
X509v3 Authority Key Identifier:
keyid:A3:05:5F:07:BD:47:A8:64:78:C3:BF:47:39:25:73:AC:D5:3D:63:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/owVfB71HqGR4w79HOSVzrNU9Y24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:a8:5b:bb:62:98:02:99:9c:6e:18:9a:4c:19:d9:d4:da:23:
7b:64:77:71:80:e8:eb:a2:4c:42:65:f3:96:f8:0f:67:50:9f:
56:02:20:97:26:7a:2d:40:ff:4b:3c:d7:19:66:08:69:1b:ae:
47:23:4d:07:fa:4b:f8:c7:d0:a6:60:f9:14:60:42:7f:b2:df:
9c:7b:70:29:63:07:17:a0:bc:18:b4:2c:30:56:e2:33:28:31:
10:a4:3e:e0:89:50:80:61:03:b1:aa:bb:ac:89:f8:72:a4:4c:
31:f7:df:5a:fc:43:67:9e:31:5b:45:a3:e4:92:88:e7:65:46:
54:8a:f5:e4:a7:3a:6a:24:31:ba:e5:45:7e:2e:ab:37:1d:9d:
2f:15:72:a4:d1:07:b3:0e:b4:e0:c7:87:94:a7:a0:53:18:25:
fb:10:fb:ea:0c:e7:99:2b:ba:67:80:60:c0:69:d6:f8:a1:41:
5c:9e:0b:4b:2c:67:ce:3a:da:35:3e:6f:60:71:df:85:42:7d:
34:fc:ef:1e:ba:81:49:08:68:21:3e:0a:ef:ce:48:dc:c4:79:
98:09:c5:46:1c:59:59:02:06:85:f3:38:f4:ff:7f:59:e5:bf:
ae:d1:29:f4:8d:c4:bd:3d:5f:e2:c6:f5:23:f5:a0:fe:e6:98:
6f:b4:df:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:59:23 2026 by rpki-client