Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
File: dlOpinSeVpdEoe3iyUDy5DPEQIo.mft (raw, json)
Hash identifier: 8Zo6BTRc2FG5iC66uYFCAkVwBYAGSE3VhSM/GEFHdAc=
Subject key identifier: A8:19:8D:E4:09:9D:B3:36:03:43:78:34:6C:F1:13:47:3D:FF:89:B8
Authority key identifier: 76:53:A9:8A:74:9E:56:97:44:A1:ED:E2:C9:40:F2:E4:33:C4:40:8A
Certificate issuer: /CN=7653a98a749e569744a1ede2c940f2e433c4408a
Certificate serial: 019CAAC6092E388E2C7F4957A8061802E365
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
Manifest number: 0BD7
Signing time: Sun 01 Mar 2026 19:00:31 +0000
Manifest this update: Sun 01 Mar 2026 19:00:31 +0000
Manifest next update: Mon 02 Mar 2026 19:00:31 +0000
Files and hashes: 1: RsF6wJG_DVoKQM6B-sCzW6WCDW0.roa (hash: qws597tbqP0XDfiuU1TMHHh3nxH1S6tAU3H9xRP9fH8=)
2: dlOpinSeVpdEoe3iyUDy5DPEQIo.crl (hash: /R5itfVoRA3eb3xKXoR3e71tYR/i4HiG15pmDZC7JGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:09:2e:38:8e:2c:7f:49:57:a8:06:18:02:e3:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7653a98a749e569744a1ede2c940f2e433c4408a
Validity
Not Before: Mar 1 19:00:31 2026 GMT
Not After : Mar 2 19:00:31 2026 GMT
Subject: CN=a8198de4099db336034378346cf113473dff89b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:82:b3:97:e1:16:8f:ad:e1:13:ec:30:2c:3f:
50:16:71:2e:5b:01:a4:39:06:3f:00:67:99:d2:d6:
98:84:cb:cc:b8:5c:0c:76:2f:26:5f:22:d0:6f:8e:
37:c4:0d:f3:ea:42:e0:07:87:48:75:e7:27:8e:13:
4a:85:b4:6c:f5:14:78:7d:e3:0a:2f:81:05:23:95:
54:5d:6e:25:78:f6:77:2d:f4:66:fb:5e:65:ab:72:
8d:42:68:34:08:92:a4:a4:53:a1:70:94:90:3c:29:
41:61:fb:ab:f5:aa:80:ca:fc:3d:23:b0:ad:2a:22:
5e:02:70:e8:6f:d0:98:a1:b3:ef:6a:d9:28:d4:bd:
fa:0d:38:c9:24:ff:67:39:38:da:3a:b0:60:5f:d8:
60:6d:63:61:b2:98:c9:49:95:fa:fc:4c:43:fd:cb:
eb:f0:89:90:a7:f2:82:6d:26:f0:95:d8:c6:bd:b5:
3d:9c:0d:3f:47:e2:63:ba:8b:87:01:af:3d:eb:e4:
20:cc:21:0f:95:0c:0a:3c:a0:e2:a6:11:32:97:d8:
9f:a8:be:7f:97:21:92:c6:a4:52:8f:25:39:36:55:
20:94:90:60:42:4d:2a:01:31:fc:26:d0:b0:ca:b4:
21:2c:a3:92:6f:14:0f:c8:09:20:64:97:af:93:e9:
6f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:19:8D:E4:09:9D:B3:36:03:43:78:34:6C:F1:13:47:3D:FF:89:B8
X509v3 Authority Key Identifier:
keyid:76:53:A9:8A:74:9E:56:97:44:A1:ED:E2:C9:40:F2:E4:33:C4:40:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:3f:30:30:5f:33:13:8e:c8:d7:0f:45:1e:5f:4d:1c:1a:33:
36:4c:c8:58:4f:2c:d8:f5:f2:55:1d:de:36:de:2e:67:ef:6f:
be:bc:f4:27:b6:1f:76:0e:be:78:ab:09:8a:96:66:c1:b1:1c:
6c:fb:34:fe:f4:28:c9:9a:10:39:c6:7e:80:9b:6e:2f:78:f7:
bc:f1:67:37:22:b2:07:64:29:be:57:69:c9:b7:4b:b1:0e:60:
21:ba:f0:b7:2a:36:a6:d5:3e:b2:1a:fe:17:63:8c:6f:c7:5f:
2f:63:7d:e2:1d:b2:56:b8:44:e1:f3:54:6c:61:3b:3f:34:79:
b7:de:90:fb:e9:81:fc:7d:db:f7:61:43:12:11:b6:56:8d:d1:
2c:a1:59:f1:a2:35:25:6f:22:39:4f:50:27:f0:83:70:7f:4d:
cc:a4:84:50:1f:38:f3:ac:91:36:4a:e4:88:a4:35:53:5e:06:
da:d0:d0:e5:3c:0b:12:6f:8e:ee:13:89:b7:ba:21:ec:79:d4:
46:56:dd:f2:4c:9d:44:36:17:97:28:5b:61:90:aa:0c:65:47:
c6:0d:0f:31:98:07:ff:98:be:5d:83:b2:75:00:9c:35:0e:41:
0a:1d:e2:1a:2b:08:b9:16:42:c0:97:17:7b:22:4d:e3:c7:32:
a5:a1:5a:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:57:27 2026 by rpki-client