Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.mft
File: O-0CE2aYcB90xJ-KKp5z6E7JgbY.mft (raw, json)
Hash identifier: 4nYLrgkvukQFQqCluaVvyw8TgEBOpTpT98D6fnR9JQk=
Subject key identifier: 00:C5:C5:09:A1:4C:34:03:80:9F:72:D3:AC:D6:E4:0D:65:22:B6:88
Authority key identifier: 3B:ED:02:13:66:98:70:1F:74:C4:9F:8A:2A:9E:73:E8:4E:C9:81:B6
Certificate issuer: /CN=3bed02136698701f74c49f8a2a9e73e84ec981b6
Certificate serial: 019CABD924410B24FA9B6FB0559DAAE5780B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O-0CE2aYcB90xJ-KKp5z6E7JgbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.mft
Manifest number: 0C7F
Signing time: Mon 02 Mar 2026 00:01:00 +0000
Manifest this update: Mon 02 Mar 2026 00:01:00 +0000
Manifest next update: Tue 03 Mar 2026 00:01:00 +0000
Files and hashes: 1: 6OqYpjTrIpJEFTsBWA83LbKcJQ4.roa (hash: XXKKzvXUqSOAEvvL2Pf15G7qc8hgGL7KY3Js1JGQrFI=)
2: O-0CE2aYcB90xJ-KKp5z6E7JgbY.crl (hash: 1rSiGwpti5GECxKq81RUpJ13fNx0AvRdZuEc1dQihes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/O-0CE2aYcB90xJ-KKp5z6E7JgbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:24:41:0b:24:fa:9b:6f:b0:55:9d:aa:e5:78:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bed02136698701f74c49f8a2a9e73e84ec981b6
Validity
Not Before: Mar 2 00:01:00 2026 GMT
Not After : Mar 3 00:01:00 2026 GMT
Subject: CN=00c5c509a14c3403809f72d3acd6e40d6522b688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:47:de:c5:54:a5:64:b0:bb:71:d7:b0:a6:eb:
80:9a:63:4e:b6:e6:ec:7c:2c:ed:f9:95:62:67:ff:
63:6c:91:36:c5:22:2f:5c:10:2e:f3:28:12:c7:f8:
94:f3:33:7a:b3:e6:0d:a6:78:92:ea:c1:27:e4:2b:
7e:8b:82:df:ca:01:e7:23:a6:28:91:00:3c:3c:de:
fc:e2:b9:a0:24:8f:b5:4d:e4:2d:ea:25:e9:e7:a5:
f1:69:15:f1:0b:39:ef:f4:a0:03:fd:3d:ef:37:2a:
23:f3:cf:2d:6b:28:f4:57:5b:da:cf:f6:54:93:76:
d5:d4:eb:9f:5e:31:3f:56:b2:81:bd:fe:e5:88:00:
46:9d:f6:8f:8e:6d:51:c4:8b:84:3e:0e:7f:50:21:
b7:1e:bc:d4:de:5f:d8:97:1b:92:88:e2:77:c3:48:
b9:ae:f8:75:b0:ae:48:26:1f:62:f5:c4:b7:98:df:
8e:d4:b9:92:27:2b:a3:0f:80:a2:62:69:17:f1:2d:
25:ae:a6:34:e0:51:69:a8:d2:7c:fa:e6:46:78:ce:
8d:31:12:b8:21:0f:4c:43:25:52:e0:dd:40:41:27:
6b:c2:6a:10:8b:18:1f:c2:29:c1:96:16:1b:9d:bb:
a8:83:4b:ab:ae:26:c7:d8:48:94:73:c4:55:bb:ad:
ab:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:C5:C5:09:A1:4C:34:03:80:9F:72:D3:AC:D6:E4:0D:65:22:B6:88
X509v3 Authority Key Identifier:
keyid:3B:ED:02:13:66:98:70:1F:74:C4:9F:8A:2A:9E:73:E8:4E:C9:81:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-0CE2aYcB90xJ-KKp5z6E7JgbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9faed1-f642-4e82-8a73-ed99ef64adbf/1/O-0CE2aYcB90xJ-KKp5z6E7JgbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:6c:d8:d8:54:1b:23:93:13:b8:51:01:0f:68:e6:39:39:8e:
90:26:5a:b8:5b:d8:5e:dd:d9:66:91:96:f2:0b:84:25:10:aa:
14:26:c8:d4:9c:4d:75:95:7c:c6:0c:9e:77:46:15:a9:07:9c:
99:bd:80:68:d9:55:fe:02:33:8f:21:72:e8:63:8e:8c:74:e5:
76:fd:48:57:83:ab:4c:53:a2:4d:2a:4b:7c:c1:0c:4c:d4:a1:
fc:5c:c4:88:ff:01:6e:ce:90:73:8c:54:cb:16:0a:fa:8e:ae:
1f:a3:9f:4d:1f:f0:aa:14:c3:63:48:25:4a:96:d7:d8:ad:bb:
30:bc:59:42:58:25:64:6a:68:d4:6f:72:6c:80:e7:48:d7:4c:
77:fc:50:b7:b7:e0:07:27:d3:d7:16:8e:87:ce:82:4e:31:31:
9d:42:14:19:bb:ce:ef:1d:f5:06:a3:2c:17:b8:22:43:f6:5e:
02:47:9f:67:af:1f:5e:34:0a:0d:c2:6c:e8:c3:4d:93:94:2d:
b5:76:84:c1:e3:35:94:11:b0:48:59:a7:73:37:c9:41:4f:81:
b6:a9:47:af:a7:9e:15:65:a7:09:4d:01:f4:66:52:43:1a:7e:
08:9c:79:27:c9:1d:87:2a:b0:72:5e:45:ad:13:aa:c1:72:1a:
a7:65:5a:f8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2SRBCyT6m2+wVZ2q5XgLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZWQwMjEzNjY5ODcwMWY3NGM0OWY4YTJhOWU3M2U4NGVj
OTgxYjYwHhcNMjYwMzAyMDAwMTAwWhcNMjYwMzAzMDAwMTAwWjAzMTEwLwYDVQQD
EygwMGM1YzUwOWExNGMzNDAzODA5ZjcyZDNhY2Q2ZTQwZDY1MjJiNjg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvkfexVSlZLC7cdewpuuAmmNOtubs
fCzt+ZViZ/9jbJE2xSIvXBAu8ygSx/iU8zN6s+YNpniS6sEn5Ct+i4LfygHnI6Yo
kQA8PN784rmgJI+1TeQt6iXp56XxaRXxCznv9KAD/T3vNyoj888tayj0V1vaz/ZU
k3bV1OufXjE/VrKBvf7liABGnfaPjm1RxIuEPg5/UCG3HrzU3l/YlxuSiOJ3w0i5
rvh1sK5IJh9i9cS3mN+O1LmSJyujD4CiYmkX8S0lrqY04FFpqNJ8+uZGeM6NMRK4
IQ9MQyVS4N1AQSdrwmoQixgfwinBlhYbnbuog0urribH2EiUc8RVu62r2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFADFxQmhTDQDgJ9y06zW5A1lIraIMB8GA1UdIwQY
MBaAFDvtAhNmmHAfdMSfiiqec+hOyYG2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTy0wQ0UyYVljQjkweEotS0twNXo2RTdKZ2JZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS85ZmFlZDEtZjY0Mi00ZTgyLThhNzMt
ZWQ5OWVmNjRhZGJmLzEvTy0wQ0UyYVljQjkweEotS0twNXo2RTdKZ2JZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS85ZmFlZDEtZjY0Mi00ZTgyLThhNzMtZWQ5OWVmNjRhZGJm
LzEvTy0wQ0UyYVljQjkweEotS0twNXo2RTdKZ2JZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKmzY2FQb
I5MTuFEBD2jmOTmOkCZauFvYXt3ZZpGW8guEJRCqFCbI1JxNdZV8xgyed0YVqQec
mb2AaNlV/gIzjyFy6GOOjHTldv1IV4OrTFOiTSpLfMEMTNSh/FzEiP8Bbs6Qc4xU
yxYK+o6uH6OfTR/wqhTDY0glSpbX2K27MLxZQlglZGpo1G9ybIDnSNdMd/xQt7fg
ByfT1xaOh86CTjExnUIUGbvO7x31BqMsF7giQ/ZeAkefZ68fXjQKDcJs6MNNk5Qt
tXaEweM1lBGwSFmnczfJQU+BtqlHr6eeFWWnCU0B9GZSQxp+CJx5J8kdhyqwcl5F
rROqwXIap2Va+A==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:05:36 2026 by rpki-client