Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
File: 1ots-3IKfJKhgMphS9sO2h8evp0.mft (raw, json)
Hash identifier: G0oHg3XvYa9ToLbNJPUP2/5dXvp+SGOptHkZ957jOAI=
Subject key identifier: FD:18:89:00:8B:EE:81:56:B3:79:78:53:AE:28:44:1E:0E:FC:A4:B3
Authority key identifier: D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
Certificate issuer: /CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Certificate serial: 019CAC46CB3835C194423BC29578F09FE93E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
Manifest number: 0E46
Signing time: Mon 02 Mar 2026 02:00:46 +0000
Manifest this update: Mon 02 Mar 2026 02:00:46 +0000
Manifest next update: Tue 03 Mar 2026 02:00:46 +0000
Files and hashes: 1: 1ots-3IKfJKhgMphS9sO2h8evp0.crl (hash: JEpN99zTcbsUoQ94tKOdW+8pZ6txvACQgNToQP/FzQ0=)
2: TbY4MLo9QmUSVk5hp07D_lX76Hc.roa (hash: GGTbtNI+aaL18L5FZQerRlg9rpMiVGf3/pLxdG5oxu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:cb:38:35:c1:94:42:3b:c2:95:78:f0:9f:e9:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Validity
Not Before: Mar 2 02:00:46 2026 GMT
Not After : Mar 3 02:00:46 2026 GMT
Subject: CN=fd1889008bee8156b3797853ae28441e0efca4b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f3:06:cc:13:d5:ea:d8:9e:c9:81:2c:fb:e8:
50:b7:57:df:c9:4e:dd:92:4a:1f:29:93:ca:6b:09:
78:9f:63:ee:8d:74:80:9c:35:52:d4:1d:23:4b:7d:
72:b5:40:ce:0e:3d:ff:d9:c7:ec:fb:ec:e7:73:9c:
91:33:06:b1:5d:46:32:f7:7d:f8:86:e4:23:78:89:
a2:5d:d9:2d:34:13:30:e2:fd:1c:f5:a3:9f:01:42:
52:db:c8:e2:2f:b8:70:4b:1a:de:b8:97:70:93:fc:
61:76:26:33:e4:2c:62:e7:c8:08:cd:31:d1:93:b9:
15:33:85:cc:ad:31:48:b9:ea:ff:bc:ff:9e:fe:c7:
d3:79:b5:08:95:30:d1:94:1f:1e:0a:b8:84:1a:84:
a1:0f:9d:18:78:cc:72:97:bd:c0:58:33:66:17:df:
39:4b:ce:7c:44:d2:e2:85:49:8d:0e:cb:40:d1:00:
e5:a2:fe:46:4b:4f:7d:53:20:69:77:e1:27:49:d0:
01:a6:ee:e7:7e:10:2f:d3:48:bb:90:f6:a3:db:ba:
9a:c3:8f:e1:02:6e:6a:3a:48:de:30:da:25:61:bf:
9c:79:92:8c:08:1c:69:a9:0f:fb:09:0a:f2:b2:1e:
65:6f:c3:34:27:fe:23:8f:d7:eb:44:1c:2d:80:55:
cb:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:18:89:00:8B:EE:81:56:B3:79:78:53:AE:28:44:1E:0E:FC:A4:B3
X509v3 Authority Key Identifier:
keyid:D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:09:2f:70:fb:f9:b0:dc:46:bc:52:5b:f4:2b:fd:c5:9c:33:
17:14:7a:e9:5a:bf:4e:9f:e1:d2:ff:1f:1e:bc:25:9f:84:cd:
98:73:84:ff:69:a8:93:f8:4b:ec:a4:68:47:1c:c0:01:af:c9:
d5:aa:42:08:9a:03:bd:42:34:49:71:19:e1:84:96:ce:70:eb:
7c:06:fa:4b:eb:86:71:e2:ab:1c:35:22:40:93:8e:12:ac:b9:
45:2f:85:d0:f9:7a:09:10:92:fb:b6:6c:a3:94:ad:e5:9e:cc:
ae:17:0b:86:43:71:1d:28:db:e8:99:bf:2c:8a:2f:0e:ee:65:
93:61:94:8b:5a:39:25:ec:13:8d:c6:60:3a:ef:1d:99:4c:4e:
c9:9b:53:28:fb:12:ac:38:e6:d7:5c:fe:7f:84:0c:7f:58:00:
63:92:eb:f2:e8:cf:20:7a:75:1c:84:84:7b:94:7f:70:2f:a6:
0e:9b:a2:a8:79:f7:af:ca:fe:4d:9d:dc:d0:b6:cd:3d:d1:d1:
a4:4a:eb:6f:71:e7:2f:cc:d1:37:3c:be:4a:c6:0b:08:06:08:
58:e0:ec:13:22:44:85:bf:c1:d5:08:dd:c9:c1:e4:98:af:6e:
8f:e6:52:79:d6:d5:03:14:4d:c9:29:d1:2c:58:34:21:e8:bb:
d6:01:b5:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:13:22 2026 by rpki-client