Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
File: sO8ZvLI6LwTFhqwTEakbx8oql2U.mft (raw, json)
Hash identifier: k3PleGN+AZ9thmS8bzMOcCb8TWewmWFS4ZDeWZaSXWo=
Subject key identifier: 3C:B1:27:4E:0A:11:79:34:33:40:2E:BE:29:32:6E:94:F1:74:2A:54
Authority key identifier: B0:EF:19:BC:B2:3A:2F:04:C5:86:AC:13:11:A9:1B:C7:CA:2A:97:65
Certificate issuer: /CN=b0ef19bcb23a2f04c586ac1311a91bc7ca2a9765
Certificate serial: 019CACEB4BE0B2AB41425CA264C4AF42227E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
Manifest number: 0C38
Signing time: Mon 02 Mar 2026 05:00:27 +0000
Manifest this update: Mon 02 Mar 2026 05:00:27 +0000
Manifest next update: Tue 03 Mar 2026 05:00:27 +0000
Files and hashes: 1: OrnUiGaAfgoX-LuOUbvnk6uPbH4.roa (hash: vcOnRHWoru5B6kfcxHP5t0EEOsXRGZHYwZLGuEiEtsg=)
2: sO8ZvLI6LwTFhqwTEakbx8oql2U.crl (hash: 0qUvf7Gv7Yk54CchUq9W/bm+vrZ8/9GkZF2NRPbrdEU=)
3: wA59sXSCzQX_lnDI9OMnkp5P6yQ.roa (hash: 3unU8/VgG8FeuLF+n9dZ02OE5LTcBxSZEPgG5bjCfR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:4b:e0:b2:ab:41:42:5c:a2:64:c4:af:42:22:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0ef19bcb23a2f04c586ac1311a91bc7ca2a9765
Validity
Not Before: Mar 2 05:00:27 2026 GMT
Not After : Mar 3 05:00:27 2026 GMT
Subject: CN=3cb1274e0a11793433402ebe29326e94f1742a54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:88:e9:1a:99:a9:f8:73:c6:b8:ec:df:2f:17:
b6:12:43:84:31:da:01:c6:7e:3a:fc:ae:80:73:c4:
94:e2:ca:c1:71:79:17:a8:84:20:43:f5:3d:a8:67:
7d:5a:7d:67:e2:54:3e:82:53:c6:e2:92:1d:7b:cc:
24:f4:73:6a:c7:39:49:3d:d6:8c:97:9f:a9:1d:1f:
02:d6:bd:d5:da:48:fc:00:ad:29:c5:05:2f:74:b0:
68:70:57:08:5c:92:bb:a0:7e:c3:7d:00:d0:f2:87:
ec:b6:08:60:73:34:38:ec:63:65:5e:2f:db:ef:ae:
af:72:b9:c4:d2:7b:7b:61:69:84:4e:e9:a8:a2:bf:
d0:33:b7:26:ed:ab:f0:d2:b3:b1:c2:86:ab:11:4f:
48:5d:41:e8:40:e4:ae:5f:a1:41:03:f8:93:9e:93:
24:a7:a1:45:e6:18:2f:8f:40:fc:02:5e:34:fc:3d:
79:4d:39:65:8c:52:bc:54:b2:3c:ea:29:87:76:8c:
84:d8:47:78:1f:28:0f:e5:0b:60:39:ef:59:96:0c:
95:3e:11:d0:28:52:ae:50:41:6d:88:d8:c5:2d:d7:
0e:5c:52:d9:36:44:74:8a:bd:52:69:40:15:6b:4a:
71:9d:7b:19:cb:59:05:ec:84:ea:c7:e2:da:e4:97:
fb:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:B1:27:4E:0A:11:79:34:33:40:2E:BE:29:32:6E:94:F1:74:2A:54
X509v3 Authority Key Identifier:
keyid:B0:EF:19:BC:B2:3A:2F:04:C5:86:AC:13:11:A9:1B:C7:CA:2A:97:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:5f:6e:4b:73:9f:f1:f1:0a:d8:bd:69:64:be:54:3c:a2:2b:
b9:b8:6f:b2:c9:47:d6:01:95:31:49:a3:03:57:27:9b:4a:36:
3a:2c:83:76:a7:ec:ba:17:3b:32:19:5e:62:b4:44:1b:7c:06:
e3:63:a4:ec:f8:ab:fa:87:53:73:a5:b4:69:35:d0:9c:7c:5d:
74:c4:f5:5a:13:ad:f9:02:3a:b3:51:07:5d:e2:ef:51:57:27:
05:f9:b2:05:f6:6e:cf:60:98:1a:1f:ad:89:48:c5:b1:2e:2f:
40:b9:97:1b:1f:eb:92:f1:fc:62:03:56:e8:b2:1f:4e:3d:c8:
bf:46:4f:e0:32:0c:15:d7:53:5a:bd:3c:2d:16:56:09:d9:ba:
35:b6:c9:36:99:a5:73:60:19:f2:80:03:80:80:47:4a:bf:2e:
ee:ed:72:e9:05:2c:7f:bb:d9:54:09:7c:a2:67:24:c9:54:b1:
9a:7e:bb:fc:c8:97:9a:b5:d0:37:a9:7d:ab:6b:dc:67:a4:d5:
7a:31:69:25:55:b6:b0:94:01:5d:a9:36:8d:36:8e:e5:81:13:
73:5b:3a:d7:06:a7:90:f3:28:35:39:6c:95:65:c6:a1:2b:dc:
00:22:91:4d:67:cb:1c:0c:0a:97:45:ab:45:6c:ec:2e:4a:55:
66:f5:f5:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:40:03 2026 by rpki-client