Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
File: OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft (raw, json)
Hash identifier: Va/+mMCoyrqtUrCvcUU2RBvWMKIUnttck3EUW+vfGbg=
Subject key identifier: FE:BC:D0:18:D7:E1:4D:0C:55:2B:4D:D0:A8:2C:4B:E0:A7:E4:99:BB
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 019CAC0FE13840F404650E079B045E9BE9BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
Manifest number: 135D
Signing time: Mon 02 Mar 2026 01:00:47 +0000
Manifest this update: Mon 02 Mar 2026 01:00:47 +0000
Manifest next update: Tue 03 Mar 2026 01:00:47 +0000
Files and hashes: 1: 8YjfuQgdLCvL-Jpmwk6qtizfv_I.roa (hash: brAMlNDL72wfdOjb6ddjdyt7eJo3B0Foc3PWILSQa/8=)
2: 9n4VcJdW8qnQyuWz0vME2QO1fbA.roa (hash: S37EYsMTrmOyNa0qB2TT/fhsEUbmtLIrd9epgXzmCws=)
3: GZDzHGbDx7dfkoatOEujE-QeXX0.roa (hash: rp5gMVM6d0QMtfUx8hE8lYmJBJMynSH2EW1XEZUY1fk=)
4: NzRF1KMW-RjrnCQ45Ns__CGotH0.roa (hash: vgtU60XykZYUOdD/K3o47xgLUs91d2y5R24TZ2aLcb4=)
5: OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl (hash: r+s9MgmjcSAUHvScwuEXqr0e0DIqswZ4ChQiXdw/cv0=)
6: hHhTehEBjNf1KtA383HryRHP5GU.roa (hash: 553Jp1J+2Jv+MXIIihnE80X01/4/KUBqAe/MNZh5Kwc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:e1:38:40:f4:04:65:0e:07:9b:04:5e:9b:e9:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: Mar 2 01:00:47 2026 GMT
Not After : Mar 3 01:00:47 2026 GMT
Subject: CN=febcd018d7e14d0c552b4dd0a82c4be0a7e499bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:84:d8:aa:88:7b:cd:fd:ae:61:a1:d0:04:63:
bf:83:3a:3b:c2:55:99:ae:dc:67:7f:20:7b:59:80:
72:4f:75:16:43:8f:3d:14:7c:a6:f9:82:bd:6b:e2:
32:07:24:43:e8:45:a3:14:7f:29:ea:8b:d6:f3:d4:
d9:59:78:4e:0b:1c:23:92:4b:09:33:c8:eb:1a:d7:
4e:c1:7e:61:60:08:27:80:db:a9:51:e1:f9:5d:b7:
b3:55:37:90:fe:d7:04:46:e6:9a:a0:25:d3:21:b6:
c0:43:0f:c1:41:fe:d3:50:3e:75:53:64:61:5c:46:
02:52:95:9d:93:8c:ca:44:11:b9:56:36:80:a6:18:
0b:30:af:4d:1a:81:2a:fe:d0:d0:9b:2d:4f:62:e0:
31:ef:48:8e:59:fb:da:ce:1b:0c:ee:6e:51:85:10:
b4:89:32:39:1c:94:92:b9:6f:2c:f1:30:d8:f7:89:
6b:b7:ba:09:0f:a2:1f:cb:f2:dd:6f:ef:c7:4e:9e:
70:27:07:02:85:e9:d7:d3:5e:6c:72:a8:2f:35:fd:
50:4a:03:62:43:84:7a:07:a6:96:ec:f7:ed:89:90:
ed:f9:5d:09:e1:a2:e2:3d:ff:c0:92:5b:23:1f:66:
7c:a9:6f:56:86:7f:b0:74:37:fa:88:45:9b:3a:cb:
13:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:BC:D0:18:D7:E1:4D:0C:55:2B:4D:D0:A8:2C:4B:E0:A7:E4:99:BB
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:7c:73:af:c5:8a:84:bf:b6:83:9b:8b:19:62:4b:f7:ed:93:
31:9c:cb:fb:f2:0c:49:c8:b7:41:89:29:df:90:b0:36:e8:bc:
93:59:71:69:10:d3:f3:b1:c8:02:08:55:88:69:11:58:1f:40:
13:23:ee:10:40:28:a2:5a:cf:89:88:23:03:41:e9:b6:3e:a9:
41:2a:95:2a:a5:e1:75:1b:8c:b9:35:c7:f9:29:3d:7c:c3:2a:
57:97:b0:c5:86:52:d3:29:a7:78:a8:0e:dd:26:69:1f:e0:85:
6c:5b:6b:4a:c6:4b:98:57:28:be:7c:e9:1e:f6:1d:f1:b9:7a:
ca:c6:cf:01:fe:b7:a3:b3:f4:8f:07:a8:21:c1:82:68:68:c7:
b1:82:37:ff:0b:a7:c1:96:43:e2:e7:b8:98:d5:ca:b0:de:46:
d7:7b:7c:5d:e7:46:96:1b:b1:b2:99:fd:5e:24:87:16:37:c0:
79:23:39:5f:ab:5c:fe:d0:8f:d9:59:41:ab:9c:c7:4f:38:83:
ac:77:84:18:43:e2:c8:a0:21:f3:16:34:2a:07:e8:91:4e:74:
0f:89:8d:33:1d:66:3d:db:cb:0c:81:ac:25:19:7c:ab:1a:1f:
8b:1c:cc:86:98:14:eb:af:02:1d:0d:68:ac:a4:76:29:53:e1:
f0:e2:df:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:32:04 2026 by rpki-client