Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
File: o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft (raw, json)
Hash identifier: oR2H3tn6XlVuyr9l6zIuB/7tt00VbGuZoNvaynZDNQQ=
Subject key identifier: 49:3A:18:69:4D:1A:05:ED:91:B7:00:80:B0:EE:E8:69:A5:60:39:3A
Authority key identifier: A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
Certificate issuer: /CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Certificate serial: 019CACEB4B9F3B599AEADF11ACFE7386019B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
Manifest number: 1839
Signing time: Mon 02 Mar 2026 05:00:27 +0000
Manifest this update: Mon 02 Mar 2026 05:00:27 +0000
Manifest next update: Tue 03 Mar 2026 05:00:27 +0000
Files and hashes: 1: IXapM66e7MdcAVdK5ZgSYj804cY.roa (hash: Zge2mwt6CQnb9dk3bDCs3Oo7c63bsf/jL0cP3knXpFI=)
2: o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl (hash: bNvB4ULsZesIJ2WjlIUzIN9sC8Z4hsZNTi4JYHwSBpY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:4b:9f:3b:59:9a:ea:df:11:ac:fe:73:86:01:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Validity
Not Before: Mar 2 05:00:27 2026 GMT
Not After : Mar 3 05:00:27 2026 GMT
Subject: CN=493a18694d1a05ed91b70080b0eee869a560393a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:f3:87:4c:50:54:46:9d:38:47:99:30:aa:58:
39:f5:97:ee:fa:dd:a2:70:96:03:fc:d4:e5:a5:f8:
e8:0b:f3:40:ea:a0:70:de:39:f6:68:f0:25:7a:55:
72:35:8d:0f:a3:99:91:bd:a0:30:01:fb:f3:33:5d:
24:50:62:08:1a:c4:0e:17:38:b4:ea:63:78:cc:28:
8d:76:08:ad:f6:c9:5f:6e:15:ec:d8:c4:9b:10:7e:
90:58:9d:13:e8:d4:6c:79:e8:59:e0:3c:b8:7d:ec:
d2:fe:8d:7f:c9:77:de:71:4c:57:7e:b5:c7:22:47:
4a:60:1e:41:c2:84:ce:ef:52:d7:06:7b:0f:5e:6d:
d3:b7:d4:d1:ba:7e:00:69:8b:da:7a:c4:cd:8f:63:
9f:27:2d:34:48:ec:f7:a0:cf:05:cf:91:a4:05:80:
11:b2:87:b1:84:2d:72:c3:8c:b4:80:9a:ad:04:fd:
81:28:70:8d:66:5e:c9:2b:2d:64:40:a2:ed:5c:ae:
e7:c9:44:4c:18:4c:2c:db:b5:85:cb:53:90:02:5f:
50:3f:28:99:ef:e6:95:83:06:fc:ce:ab:30:82:af:
3a:5b:1c:5f:c6:7b:d3:49:7d:38:4c:9b:48:d8:d7:
a6:e1:e9:98:73:c8:19:3f:ba:5a:d8:b8:7b:ba:52:
64:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:3A:18:69:4D:1A:05:ED:91:B7:00:80:B0:EE:E8:69:A5:60:39:3A
X509v3 Authority Key Identifier:
keyid:A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:ad:20:5f:a3:00:5e:e2:a1:c0:43:c6:0f:d1:21:65:ab:e1:
aa:73:4d:95:37:5a:c3:ff:49:f5:95:98:83:83:13:58:a7:ca:
91:a7:bc:82:d7:ff:14:7a:62:f8:e7:75:60:66:2a:1a:78:5b:
a4:b3:3e:c6:f1:60:1d:1e:30:03:ea:4f:45:93:19:22:85:31:
af:f1:26:f7:c3:09:39:9a:89:3c:c4:a0:17:d5:73:ee:46:4c:
0b:c1:27:2e:e1:16:4e:7a:e7:8c:0f:92:ec:ed:ad:75:a5:cd:
67:6b:00:a5:3f:d2:52:dc:e3:48:b3:db:61:e7:e1:9c:1f:83:
65:3c:c2:f9:56:aa:09:70:03:54:0a:4d:16:6f:25:d6:fd:cb:
38:c3:18:fa:40:d1:f3:fd:77:fc:c6:f2:65:00:f5:97:10:6f:
f0:35:14:a7:47:45:5b:ae:8c:12:cd:1f:1a:f3:3a:f6:5c:f4:
6b:39:c3:35:bc:8f:e2:a7:ac:95:48:ab:50:8c:01:9c:89:d0:
c0:15:e8:d0:7c:af:42:6a:45:da:45:c0:a9:22:25:50:0d:bc:
dd:60:af:c2:5f:05:5b:b8:ca:f7:b6:04:3e:c1:b9:79:10:7e:
c7:55:89:72:31:7d:f3:48:f8:5e:29:b4:db:25:99:15:35:7b:
9d:44:af:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:28:20 2026 by rpki-client