Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
File: OoOZNq7v8ohnjncmMwIPolm9nPI.mft (raw, json)
Hash identifier: UBpx4T1fF1LQwTOyZPwme96Q54l4A26dyQ5/rglcYEQ=
Subject key identifier: B1:CF:61:6D:7E:64:3C:85:A1:C1:7B:13:37:59:D1:4E:17:6E:74:31
Authority key identifier: 3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
Certificate issuer: /CN=3a839936aeeff288678e772633020fa259bd9cf2
Certificate serial: 019CAC4723361FEC868A5806B4872701A254
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
Manifest number: 0811
Signing time: Mon 02 Mar 2026 02:01:09 +0000
Manifest this update: Mon 02 Mar 2026 02:01:09 +0000
Manifest next update: Tue 03 Mar 2026 02:01:09 +0000
Files and hashes: 1: OoOZNq7v8ohnjncmMwIPolm9nPI.crl (hash: PIsSZmSaQM/40umBF+FSpTU5qGPjKILj+tGWKjDwv+g=)
2: PMdpUUy3N8aucFQis2EHtpFZuIY.roa (hash: 4gf7AvqhQ7Z0YpFJcEQijaezm8f7LNn2p+OXg9bnpFY=)
3: y2_r5sbY9Lv_uRDh7BVz6TP_Rqk.roa (hash: elggw6C3t4Wz+4yMu7U0O34nBVY/GyhPWM7xDo4hWNU=)
4: z1DkqtK6bhv2xKbEFbpfSZsh_Yg.roa (hash: x3T0qFMVxxd2FdR3A4LaLQ4+c2t85rP2XyfqD4Q6wxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:23:36:1f:ec:86:8a:58:06:b4:87:27:01:a2:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a839936aeeff288678e772633020fa259bd9cf2
Validity
Not Before: Mar 2 02:01:09 2026 GMT
Not After : Mar 3 02:01:09 2026 GMT
Subject: CN=b1cf616d7e643c85a1c17b133759d14e176e7431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e6:a8:ec:16:a8:fa:9e:c2:4b:cb:6f:ac:66:
4b:1f:58:74:35:ea:64:52:c9:c8:6f:5a:fc:1b:ec:
1a:fe:63:9b:e1:ae:bb:ec:8f:01:ee:52:1e:19:f6:
f2:f3:cb:4a:e0:11:ac:1b:d0:52:70:62:f3:b9:bf:
03:70:7d:b3:b9:e9:c9:b9:8e:83:b2:9d:6e:cf:f1:
7b:0d:92:02:50:df:00:40:a1:1e:ec:10:00:e4:3a:
20:22:91:bb:c0:83:eb:ad:4a:e2:fa:13:d8:39:24:
c8:23:00:80:89:b0:d2:99:80:cf:a9:d4:9d:15:36:
82:01:20:65:aa:a9:10:97:06:bf:8c:e1:1a:a8:d5:
ed:ea:df:2d:a3:66:d2:e0:8d:83:79:64:71:aa:6b:
7f:f1:17:b7:db:19:c2:ea:41:2e:27:15:bb:fe:cc:
34:06:c6:2f:8d:b4:39:2c:b2:a4:eb:8f:f6:9d:f4:
3c:9c:93:74:4b:09:29:52:fd:61:5f:38:32:9c:34:
d6:b4:78:1a:02:f7:61:30:83:8a:89:1b:7d:79:f0:
55:2c:94:e4:67:1e:65:4d:7b:47:c1:e8:1a:12:61:
5f:7e:4c:39:12:79:2b:f5:55:95:e0:b2:d2:03:d2:
66:7c:cc:22:76:f5:fe:2f:d4:df:67:7e:9b:d1:d5:
cd:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:CF:61:6D:7E:64:3C:85:A1:C1:7B:13:37:59:D1:4E:17:6E:74:31
X509v3 Authority Key Identifier:
keyid:3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:e3:2d:ab:6a:ff:c3:6a:36:68:2a:d3:c5:c0:c1:74:60:fe:
74:31:14:fa:58:9f:b3:52:48:d0:23:b1:c7:b3:2a:9b:a7:c6:
fb:19:af:a4:43:88:c6:0e:43:bd:28:e6:82:02:95:61:34:b7:
ae:df:c7:79:4c:93:63:65:3b:ff:6a:6d:e8:36:ca:6e:53:a7:
6c:10:19:44:86:3f:57:c1:0c:68:82:39:26:11:6c:66:84:1c:
12:1c:b5:fe:fe:da:b3:7b:f9:3b:a7:3e:13:11:6e:72:60:b5:
11:6f:fa:2b:3e:b7:20:64:c4:37:9d:39:fd:19:8e:b6:97:77:
24:11:c3:93:01:03:6a:93:c6:73:d7:84:99:8b:1c:b5:7c:b8:
05:c1:95:22:65:b5:85:89:ea:51:37:b8:3a:65:3a:ef:d3:2c:
9c:f8:ee:45:58:47:d3:e9:ad:aa:56:32:ed:1c:08:79:55:ad:
ce:42:c3:8f:e3:18:94:8d:2a:31:28:46:e8:25:f6:5c:d8:59:
57:d0:c2:30:63:ec:bc:92:11:1d:a2:ce:06:38:ec:bd:c7:96:
86:e4:a9:ff:8d:23:df:3a:89:79:14:ad:62:52:3d:d7:8c:6a:
cc:bc:d4:7b:1b:cf:f6:23:0a:3f:f4:60:b2:da:9d:0c:f7:47:
a3:08:45:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:46:35 2026 by rpki-client