Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.mft
File: 2OtznG09xxpiBsjzcSQm_1MqCv4.mft (raw, json)
Hash identifier: oZF6IO7qAtUQH5XGJU6yZnEyvJ6x28j6/E3u2+tCmAY=
Subject key identifier: 90:AF:11:DA:54:B6:80:67:47:53:83:69:F6:BA:FF:AD:BD:EB:B6:67
Authority key identifier: D8:EB:73:9C:6D:3D:C7:1A:62:06:C8:F3:71:24:26:FF:53:2A:0A:FE
Certificate issuer: /CN=d8eb739c6d3dc71a6206c8f3712426ff532a0afe
Certificate serial: 019CAF110055EF0E97D4DE1DD81C6B252B37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2OtznG09xxpiBsjzcSQm_1MqCv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.mft
Manifest number: 01B8
Signing time: Mon 02 Mar 2026 15:00:52 +0000
Manifest this update: Mon 02 Mar 2026 15:00:52 +0000
Manifest next update: Tue 03 Mar 2026 15:00:52 +0000
Files and hashes: 1: 2OtznG09xxpiBsjzcSQm_1MqCv4.crl (hash: O6+ok8BmgoZrpc9fPjTqRbE9H8zg7bR1hDMht7RecQ4=)
2: R5Mpv-TpKjDBFOnu2VvpT48qfkY.roa (hash: 4BhY6rNGdaN8G7ZNz8xS2aBWkhA6dXSAvcpryese42E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2OtznG09xxpiBsjzcSQm_1MqCv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:11:00:55:ef:0e:97:d4:de:1d:d8:1c:6b:25:2b:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8eb739c6d3dc71a6206c8f3712426ff532a0afe
Validity
Not Before: Mar 2 15:00:52 2026 GMT
Not After : Mar 3 15:00:52 2026 GMT
Subject: CN=90af11da54b6806747538369f6baffadbdebb667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1c:18:4f:00:78:ff:6d:bc:28:7e:dd:83:4a:
2d:b2:67:8c:ca:ed:86:20:17:50:75:e9:f1:85:6a:
8c:7e:a1:1b:ed:57:f0:f2:8f:ed:52:e1:a1:5e:95:
c5:0b:d5:ae:73:32:60:40:75:fa:4f:92:96:a0:5e:
ab:35:f5:f5:99:53:45:1f:89:eb:66:0b:8d:36:54:
5c:6d:21:10:74:8f:c0:d7:d4:bd:e5:a0:0c:a2:c4:
02:4d:d1:b0:39:d6:14:84:16:a7:00:a9:79:95:e3:
73:b0:39:ec:06:64:ba:92:c2:01:6c:d9:e7:cf:18:
23:33:d8:d5:d6:17:ad:ed:87:be:56:d7:03:30:6a:
3d:a5:ae:b4:8c:d9:e1:db:d8:7a:9d:82:cf:45:0d:
38:93:31:1b:ce:7e:03:f3:c4:b5:c1:91:6b:be:86:
fb:fb:38:79:4c:c0:f9:76:3b:ea:46:af:f8:a3:0b:
f9:f6:92:4a:e4:e3:5f:f0:f6:31:1c:08:05:2b:e3:
33:d5:1e:b0:14:1c:4a:5a:54:90:4c:71:95:44:8b:
05:d0:33:5f:6f:ea:d5:f9:47:32:72:2a:d9:f3:7d:
ae:45:b0:ce:fd:c4:46:37:9d:83:bc:47:8a:52:36:
77:de:b7:01:3e:74:47:7f:4d:60:10:1e:ce:ff:3a:
f9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:AF:11:DA:54:B6:80:67:47:53:83:69:F6:BA:FF:AD:BD:EB:B6:67
X509v3 Authority Key Identifier:
keyid:D8:EB:73:9C:6D:3D:C7:1A:62:06:C8:F3:71:24:26:FF:53:2A:0A:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2OtznG09xxpiBsjzcSQm_1MqCv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:47:c7:d9:e0:c8:a2:d2:87:fc:2a:3f:2b:93:80:40:fc:50:
20:6d:8b:80:1d:66:06:4d:06:50:aa:db:aa:66:90:0c:9c:06:
3c:04:e5:ec:03:fd:43:9f:aa:18:dd:5f:42:96:7a:cb:61:e6:
bf:11:5b:f0:80:e5:59:67:a8:8f:e5:e8:8a:4c:a1:38:e4:9f:
f7:19:0d:65:ef:66:0f:eb:f0:95:88:bf:0e:77:20:22:09:b5:
db:03:fa:da:ba:47:2e:93:c6:84:1a:22:43:b5:82:9a:c2:24:
b7:9d:6e:43:8d:7d:e0:a6:75:70:3b:2d:83:59:77:1b:c0:34:
9b:d4:d1:6b:40:76:bd:10:70:f4:1e:77:0f:40:52:8c:11:0f:
34:a1:69:a0:c9:3f:59:3a:8e:67:2d:1a:e8:1f:64:39:e0:cb:
5e:0a:8b:b1:c3:aa:ac:2e:0d:87:91:b8:e7:7a:2a:a2:7c:96:
01:39:3b:72:b0:72:9a:fc:87:de:4b:1f:36:58:90:83:a6:ce:
9c:47:65:4a:76:0a:9d:05:9e:99:4e:eb:bf:9c:e2:dd:5b:30:
7e:b8:17:35:82:89:17:20:16:95:bc:6e:73:81:c4:80:39:5e:
86:b8:d0:2e:fa:1d:19:89:27:04:0b:ca:2c:53:0c:ce:ca:c4:
d4:19:13:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 18:34:59 2026 by rpki-client