Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
File: O2HIth_0q5daL2xn0LzmN5Ni4v4.mft (raw, json)
Hash identifier: gDdEDofNsDgLW8tcB5K82HZLsMpMl1qcDfO0QfdaYBE=
Subject key identifier: FA:2F:F1:39:77:94:36:54:DF:F0:83:BF:AA:8B:BA:BA:3B:73:F9:F5
Authority key identifier: 3B:61:C8:B6:1F:F4:AB:97:5A:2F:6C:67:D0:BC:E6:37:93:62:E2:FE
Certificate issuer: /CN=3b61c8b61ff4ab975a2f6c67d0bce6379362e2fe
Certificate serial: 019CAC4758422FDC0F4FD5B45089FEC1B254
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2HIth_0q5daL2xn0LzmN5Ni4v4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
Manifest number: 0B5B
Signing time: Mon 02 Mar 2026 02:01:22 +0000
Manifest this update: Mon 02 Mar 2026 02:01:22 +0000
Manifest next update: Tue 03 Mar 2026 02:01:22 +0000
Files and hashes: 1: GbMgngzItY4uIndF-XcuFLKJhR4.roa (hash: wGyJex/ofBYcPy2R1/ePo/0rQqidiA5P6cvt53DFaE4=)
2: O2HIth_0q5daL2xn0LzmN5Ni4v4.crl (hash: KLI9YfpoKkxLD1yjI70O5vFW8aZGSvi8NToCGHOqKps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2HIth_0q5daL2xn0LzmN5Ni4v4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:58:42:2f:dc:0f:4f:d5:b4:50:89:fe:c1:b2:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b61c8b61ff4ab975a2f6c67d0bce6379362e2fe
Validity
Not Before: Mar 2 02:01:22 2026 GMT
Not After : Mar 3 02:01:22 2026 GMT
Subject: CN=fa2ff13977943654dff083bfaa8bbaba3b73f9f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a8:bb:d7:28:19:fb:44:6a:1f:40:76:57:08:
4c:3d:43:57:a4:2b:40:a2:50:0b:c2:9d:bd:f0:4e:
09:4a:42:a6:0d:8c:c1:15:94:1b:fa:ea:db:2c:3d:
e3:81:ef:89:85:f5:58:60:b3:bd:8e:43:1d:fb:d8:
17:62:ad:8e:0e:58:41:6b:53:ed:06:ba:a7:ea:91:
20:83:58:56:3c:ea:89:b4:ea:8c:8a:5e:d1:4e:52:
57:8a:ff:6f:4a:d1:59:d6:6c:97:e9:0e:3b:65:9b:
96:e4:c2:35:09:80:6d:06:96:b1:f5:45:b8:ac:7a:
32:19:a3:9b:c8:f5:fa:9a:d5:e1:cc:93:2a:5c:ec:
26:be:ec:b3:d4:39:15:96:9d:c8:77:91:bf:75:1f:
0a:40:70:65:d9:f2:f5:f7:7c:b8:94:12:67:72:66:
e5:b4:60:4d:ef:a1:36:55:cf:4e:fd:6f:36:2d:23:
f2:75:46:e9:b8:57:41:d6:8e:97:ca:df:a7:fa:9b:
a4:54:ca:09:18:31:f5:e4:66:a9:9c:21:0b:37:36:
66:9d:f3:00:07:83:9c:06:28:c4:ad:97:93:88:a2:
f2:39:78:32:b3:a6:a6:02:e0:23:81:8c:34:7b:1f:
2d:e7:46:1a:ec:be:06:0a:c8:75:fa:fc:3b:9b:78:
de:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:2F:F1:39:77:94:36:54:DF:F0:83:BF:AA:8B:BA:BA:3B:73:F9:F5
X509v3 Authority Key Identifier:
keyid:3B:61:C8:B6:1F:F4:AB:97:5A:2F:6C:67:D0:BC:E6:37:93:62:E2:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2HIth_0q5daL2xn0LzmN5Ni4v4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:72:83:c5:bf:f1:e3:e1:77:4e:ea:d2:cc:6f:ef:a1:1f:82:
a7:46:87:44:4c:ae:bf:80:db:1c:c5:67:df:9e:39:a1:11:51:
e8:11:1e:53:1d:bd:8c:0a:38:8f:68:1e:b8:2a:ab:8f:45:a4:
29:ae:22:73:f5:e7:67:2e:34:41:90:82:31:19:39:58:da:40:
4c:5c:4d:fb:cc:e4:a9:76:b9:54:7c:6e:48:bc:41:f5:ef:35:
86:d9:f7:d7:3f:07:5a:9a:fc:bd:4c:b7:1d:21:9a:39:6d:d8:
dd:28:97:b0:78:9b:4d:e1:37:b6:c9:83:f3:f1:b3:1d:4d:ca:
b3:10:f5:b8:98:02:18:3c:08:9a:fc:b3:b8:41:84:7c:e9:89:
1e:13:d4:dd:9c:65:5f:ca:7b:ae:56:17:cb:de:19:0a:60:06:
61:e0:9d:13:23:19:da:7e:eb:a6:63:84:f7:ad:f8:7b:f9:2c:
bd:4c:98:88:7d:45:cb:fe:f5:99:a5:6f:a2:7d:3d:d0:d8:40:
cf:3d:ac:cd:3e:03:12:c1:f5:50:ea:a9:f9:af:8a:95:bc:b7:
e2:8e:cf:60:b3:54:4b:c5:18:ec:8d:fa:41:33:49:d9:95:1b:
28:29:0a:47:6c:5a:a0:44:65:f1:48:61:b6:60:40:44:cc:91:
4f:15:66:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:13:00 2026 by rpki-client