Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.mft
File: O9VD0EZeovb-uCjxhQSwP0A6xmk.mft (raw, json)
Hash identifier: OOQu2fjERnsxrOYzGPz+9BHolQnwa7JL8zgaHEJgr5M=
Subject key identifier: 80:A1:A2:62:BC:6E:CE:B4:16:07:5D:CB:8A:7B:68:15:18:F3:00:E1
Authority key identifier: 3B:D5:43:D0:46:5E:A2:F6:FE:B8:28:F1:85:04:B0:3F:40:3A:C6:69
Certificate issuer: /CN=3bd543d0465ea2f6feb828f18504b03f403ac669
Certificate serial: 019CA90E85892E69AF45F7BEB557B263FD32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9VD0EZeovb-uCjxhQSwP0A6xmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.mft
Manifest number: 1280
Signing time: Sun 01 Mar 2026 11:00:27 +0000
Manifest this update: Sun 01 Mar 2026 11:00:27 +0000
Manifest next update: Mon 02 Mar 2026 11:00:27 +0000
Files and hashes: 1: GPPevbImSvGjVqWAzYGvcpc3FOs.roa (hash: MHorAz/UCfb7aKgx7pKoBAkAFlLncJNyaH/wm4EHMOY=)
2: O9VD0EZeovb-uCjxhQSwP0A6xmk.crl (hash: jPnXFwPA3OSwCXb9NcDYiztZaqBoeysQ7MztlmnlMUQ=)
3: XD7uuC6NUKDza7PfKtc_jHz7EnA.roa (hash: RPYu/+kKueNaM8YfpMGx6Mxi+JGMI3A7i1eBXpiVPd4=)
4: ntt8oBWCvDCUpNDHjPuie_5MUck.roa (hash: Yy1s4qDW987rNxjvZEbp1rZR84GXQU0RB/faIrx/grE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O9VD0EZeovb-uCjxhQSwP0A6xmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:0e:85:89:2e:69:af:45:f7:be:b5:57:b2:63:fd:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bd543d0465ea2f6feb828f18504b03f403ac669
Validity
Not Before: Mar 1 11:00:27 2026 GMT
Not After : Mar 2 11:00:27 2026 GMT
Subject: CN=80a1a262bc6eceb416075dcb8a7b681518f300e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6f:09:1c:29:a1:98:c7:5f:a1:1b:50:28:08:
79:c1:3e:80:19:a7:38:7f:06:d1:79:57:30:08:38:
e7:ae:54:65:54:05:9b:1b:b0:58:96:df:a1:95:ba:
7b:dc:4a:99:f3:fa:df:fe:4d:aa:00:ad:35:96:5c:
8f:77:3d:16:ee:2e:72:75:b8:27:c1:a2:e1:2a:2b:
0c:05:01:e9:c5:1f:01:6c:5a:ac:b5:33:7b:78:dd:
d2:3a:9b:d6:39:78:47:eb:bc:45:f8:a2:61:4f:20:
b8:2c:0b:21:95:27:e7:6f:54:86:2b:ad:59:91:8c:
68:6f:e0:89:a0:0e:cd:ae:d5:55:b4:fa:5a:d7:63:
66:0a:c7:d6:eb:4c:09:8e:78:75:35:af:51:8e:c8:
bc:67:14:9c:79:dc:af:2c:91:ba:9c:62:8f:5a:05:
ab:8e:9d:e3:60:00:a0:2e:df:9e:66:1f:a6:96:32:
84:e6:f5:84:80:18:32:3a:f9:2b:60:73:e3:4f:07:
5c:d8:f7:ef:3b:e7:6c:28:83:23:ea:21:68:87:82:
70:b7:d8:df:c6:48:41:fc:69:87:23:37:36:50:d8:
1e:1b:bd:53:42:c2:c0:17:57:7c:2a:93:45:2d:ff:
69:6b:95:a2:2b:d9:d0:8c:33:5c:9a:3b:19:24:d4:
1a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A1:A2:62:BC:6E:CE:B4:16:07:5D:CB:8A:7B:68:15:18:F3:00:E1
X509v3 Authority Key Identifier:
keyid:3B:D5:43:D0:46:5E:A2:F6:FE:B8:28:F1:85:04:B0:3F:40:3A:C6:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9VD0EZeovb-uCjxhQSwP0A6xmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:99:13:49:7c:39:e0:07:86:ae:44:7c:99:01:a2:de:f4:62:
d4:5f:49:27:e4:e1:1e:93:07:17:7d:fb:44:1e:9e:5f:d2:5b:
df:38:18:68:2b:02:22:d5:c5:7e:ff:98:99:51:ea:be:5c:41:
fd:36:5e:94:51:94:63:47:77:d0:4d:81:ff:12:69:95:f5:97:
0f:01:03:7b:c1:f3:4d:d7:87:da:99:01:68:c6:47:8c:0e:0f:
55:c2:b3:d7:9e:ff:24:eb:6a:45:f7:cf:52:3c:e0:0a:68:8b:
8e:65:06:ab:b9:dd:a2:10:29:38:b2:66:70:0f:fb:c5:10:82:
42:05:0c:9a:46:3a:dd:bc:aa:6e:f4:50:51:dc:09:17:e7:46:
1e:60:b6:82:1c:bd:8c:e6:f9:df:e8:b0:44:94:92:1f:48:3e:
e5:4e:1a:7c:9b:b9:3a:3a:98:51:4d:53:0a:2d:35:b3:d4:35:
94:67:97:3e:e2:aa:a3:36:20:e7:a2:59:ea:c2:db:32:90:0b:
6c:cc:41:47:c2:95:f4:f5:99:41:75:8c:f0:52:17:73:5c:9f:
40:42:14:63:e6:26:3d:bb:1a:c6:2e:90:fb:a1:29:45:7b:c5:
57:88:cc:e2:07:ce:24:ff:c4:60:1b:01:c2:7b:e6:e7:70:32:
b8:9d:5e:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:55:42 2026 by rpki-client