Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
File: o8lj0aEdANOEre35u4blOEmpsYw.mft (raw, json)
Hash identifier: NpKXHBifzGQF6vjxA4ZXYf9jSzdbjEqZ5CUS9UXf1Hs=
Subject key identifier: 7A:EF:76:25:3C:FC:C5:7D:1F:01:74:17:C5:99:E9:AC:A0:BD:81:59
Authority key identifier: A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C
Certificate issuer: /CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c
Certificate serial: 019CAC0FA1AA94F155947361A26A89E42003
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
Manifest number: 184A
Signing time: Mon 02 Mar 2026 01:00:31 +0000
Manifest this update: Mon 02 Mar 2026 01:00:31 +0000
Manifest next update: Tue 03 Mar 2026 01:00:31 +0000
Files and hashes: 1: o8lj0aEdANOEre35u4blOEmpsYw.crl (hash: p7otTlG5tnTOUkCwuPc41ciAseVbpNegt/vkFTmU5b0=)
2: sbWj3cDEvspo2pzFM90qmBN7XGY.roa (hash: ZCuFftw5Wl2QKtDaCFVmcabJrAkBRibR6g/1SyLs2gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:a1:aa:94:f1:55:94:73:61:a2:6a:89:e4:20:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c
Validity
Not Before: Mar 2 01:00:31 2026 GMT
Not After : Mar 3 01:00:31 2026 GMT
Subject: CN=7aef76253cfcc57d1f017417c599e9aca0bd8159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:79:41:6d:33:90:da:30:72:1f:51:a6:20:22:
d5:95:94:79:e5:f4:45:d4:7d:04:75:2b:a2:c1:f0:
80:a4:34:b1:8d:87:bd:00:6f:b8:b0:b4:10:cd:d8:
fc:d8:b7:a6:0e:86:f3:6a:96:ae:2c:7f:69:2d:75:
7c:ab:d6:59:bd:8e:30:96:52:91:be:af:1a:0b:f3:
24:f4:99:1f:e9:86:68:92:87:be:ca:92:89:68:86:
c3:3e:1e:d3:bc:fd:95:76:38:c4:a0:72:21:5d:78:
eb:76:bd:f9:54:7d:ef:04:0e:b0:c7:90:b5:7d:69:
db:ef:c3:05:a3:7e:cb:68:83:fc:42:13:d6:cf:0f:
9b:cb:10:12:5c:4b:c8:59:16:a7:bf:73:3f:90:91:
fb:b7:9b:c8:12:1e:e3:93:33:49:81:ff:5c:49:38:
c5:2d:39:cb:65:b9:fd:4a:7d:c7:d6:47:c2:2e:6f:
c2:78:f8:40:8e:3b:28:ed:18:c5:4c:e0:9a:2a:70:
5b:fe:db:1d:16:eb:e2:44:a2:20:b0:f1:89:79:59:
a6:dd:2a:3e:4c:f5:4e:31:80:e9:e1:be:03:c1:df:
92:c4:8e:7a:0f:db:9d:aa:5d:1c:13:23:59:30:93:
80:73:e2:95:8c:4a:5b:25:a9:24:72:17:15:57:fc:
dd:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:EF:76:25:3C:FC:C5:7D:1F:01:74:17:C5:99:E9:AC:A0:BD:81:59
X509v3 Authority Key Identifier:
keyid:A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:96:de:02:52:c9:6f:92:92:eb:54:07:e5:b2:e2:e5:29:3b:
63:c8:67:29:a3:73:c5:7d:6a:93:9b:ea:e7:dd:87:7c:39:48:
eb:bc:93:c3:3d:f2:86:f9:1b:b3:78:e9:73:fe:d1:b3:89:ba:
e4:49:6f:43:05:5f:4a:c9:f6:ff:7a:d6:a2:82:c4:b2:16:a8:
2e:25:03:eb:b9:d5:dc:46:0b:f7:19:bf:ea:28:d6:43:24:a6:
a6:32:b3:d8:bb:69:1c:66:2f:2c:3a:70:66:d7:a4:16:c8:af:
00:2c:a7:a3:ca:12:b5:75:80:10:af:23:a2:1f:5b:46:57:67:
b1:5b:30:8e:ac:59:b2:d3:f2:bc:48:c2:76:27:c2:7d:f6:bb:
3e:35:6b:6d:2a:33:22:0a:24:0a:da:cd:fd:c0:c8:68:1f:b4:
0f:e1:f5:7a:bb:27:1c:2b:4c:bc:fc:81:12:66:f6:cc:b8:71:
12:1c:aa:3c:f0:5f:d2:86:58:bb:b9:0d:5b:15:c1:38:12:06:
a3:78:7d:d1:2c:d1:e4:20:4e:a8:2d:fa:ae:d7:e8:8e:a4:91:
83:c4:1c:9b:88:f4:34:60:9d:55:f7:92:db:18:f1:7f:96:32:
fb:e3:a6:da:ae:69:c9:6a:a1:24:98:8d:10:6e:81:de:dd:65:
7b:c2:b4:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:50:52 2026 by rpki-client